At YesWeHack we’re on a mission - to make the world a safer place by stopping cyber attack breaches by leveraging our global Ethical Hackers’ Network (90,000+).
Founded in 2015, YesWeHack is the EU #1 bug bounty platform, with offices in France, Singapore, Switzerland, Germany. We provide a disruptive approach to Cyber Security through Bug Bounty programs, by connecting more than 70,000 Ethical Hackers worldwide with organizations to secure their exposed scopes the agile way.

JOB DESCRIPTION

At YesWeHack, we are strengthening our APAC team with passionate executives and are currently hiring for a Security Analyst.
As a Security Analyst, you will participate in the qualification of vulnerability reports submitted by our community of ethical hackers, to its analysis and to support our clients in the assessment vulnerabilities in order to better understand the impacts and possible solutions. You will also participate in creating internal tools, as well as their maintenance and evolution for the benefit of our hackers’ community.
Your main missions will be:

Security Analyst:

• Creation and reproduction of Proof-of-Concept.
• Assessment of the severity of vulnerabilities according to the context.
• Restitution, technical popularization to our customers.
• Ensure dialogue with our community of ethical hackers.
• Monitor the vulnerability reports workflow.
• Coordinate with the Customer Success Manager (CSM) department

R&D:

• Development of internal solutions related to the position.
• Development of tools for our community.

Skills that you master:

• Security fundamentals such as the Top 10 OWASP
• The CVSS criticality assessment system and its application
• Specific tools such as BurpSuite
• Development in Python
• Fluent English (spoken/written)

The following notions will be are a plus:

• Development on Frameworks such as Django / Flask
• Participation in Open Source projects
• Constant monitoring of Cybersecurity subjects (CVE, research, vulnerabilities, etc.)

Please refer the Job description for details