Regístrate para acceder a todas las funciones de nuestro servicio
  • Búsqueda de ofertas de trabajo
  • Favoritas
  • Crear CV
    Nuevo
  • Salario
  • Alertas de empleo

Security Analyst, Bug Bounty

The Consulting Solutions

Who we are

About Stripe

Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world’s largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone’s reach while doing the most important work of your career.

About the team

In this role, you’ll join Stripe’s Vulnerability Management team, whose mission is to “Surface vulnerabilities at scale across Stripe.” Our vision is to create a culture of continuous excellence in managing vulnerabilities. The bug bounty program is an important pillar of this mission, acting as a critical line of defense in Stripe’s security “immune system.”

What you’ll do

We seek a highly technical and detail-oriented Security Analyst to join our team, focusing on the front lines of bug bounty triage and researcher engagement. In this role, you’ll be responsible for the end‑to‑end lifecycle of security vulnerability reports from our bug bounty program. You’ll own the overall effectiveness of Stripe’s bug bounty program with autonomy to implement continuous improvements (e.g., researcher campaigns, scoring transparency).

You’ll play a key role in understanding the root cause of vulnerabilities, coordinating timely resolutions, and directly impacting the security posture of Stripe’s products. A core aspect of this role is developing a deep understanding of Stripe and acquired company products, assets, and their configuration to effectively assess and prioritize vulnerabilities.

Responsibilities

  • Analyze, assess, reproduce, and triage incoming security vulnerability reports from the bug bounty program
  • Communicate clearly and effectively with security researchers to follow up on unclear reports, drive report clarity, and increase engagement with top hackers
  • Understand the root cause of security vulnerabilities to help product and engineering teams fix them, and advise on the right mitigation strategies
  • Drive the lifecycle of submissions through to resolution, coordinating with product and engineering stakeholders
  • Act as the security bridge between external researchers and internal teams to facilitate rapid and effective remediation
  • Conduct in-depth data analysis on bug reports and vulnerability patterns to identify systemic risks and inform new security initiatives
  • Provide tactical support for vulnerability management triage processes to augment the team as needed
  • Prepare and implement improvements to the overall bug bounty program
  • Provide feedback and requirements for tool development to enhance triage and security workflows, leveraging opportunities for automation

Who you are

We’re looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement.

Minimum requirements

  • Proven ability to follow bug reports and accurately triage security vulnerabilities
  • Familiarity with web security issues and exploit methodologies (e.g., OWASP Top 10, CWEs)
  • Competent in offensive security tools (e.g., Burp Suite, custom scripting)
  • Ability to think like an attacker to understand the impact of vulnerabilities
  • Proficient in clear communication, conveying technical concepts to various stakeholders
  • Experience in one of the following areas
    • Bug bounty program or triaging security vulnerability reports
    • Knowledge of Stripe products and general security expertise

Preferred qualifications

  • Experience in technical support, operations, or similar roles with technical systems exposure
  • Prior participation in or experience with bug bounty programs
  • Experience analyzing source code for security vulnerabilities
  • Proficiency in scripting languages (e.g., Python, Ruby) for automation
  • Familiarity with cloud-based services (e.g., AWS, GCP)
  • Certifications such as OSWA or BSCP
#J-18808-Ljbffr

Oferta de empleo publicada 18 horas atrás
Ofertas similares que pueden interesarteSegún la Security Analyst, Bug Bounty en Madrid
  •  ...Stripe is seeking a Security Analyst to join our Vulnerability Management team in Madrid. You will manage the end-to-end lifecycle of security vulnerability reports from our bug bounty program, triaging, engaging researchers, and guiding remediation with product and engineering... 
    Ofertas de empleo recomendadas

    The Consulting Solutions

    Madrid
    18 horas atrás
  •  ...Airbus in Getafe (Madrid) is seeking a Security Analyst to ensure a secure hiring process by identifying potential threats associated with new hires. The position requires in-depth analysis of candidates and open-source research to verify alignment with Airbus values.... 
    Ofertas de empleo recomendadas
    Temporal

    Airbus

    Madrid
    1 día atrás
  • ## Security Analyst (Temp Agency)Applylocations: Getafe Areatime type: Full timeposted on: Posted Todayjob requisition id: JR10422026****Job Description:******Security Analyst**Secure Hiring process with the aim of identifying potential threats or risk associated with... 
    Ofertas de empleo recomendadas
    Temporal
    Trabajar en la oficina
    Horario flexible

    Airbus

    Madrid
    1 día atrás
  •  ...Airbus is looking for an Incident Response Analyst based in Getafe to support its international Incident Response Team. The successful candidate will manage security incidents and contribute to SOC service delivery. This role involves investigating SOC alerts, improving... 
    Ofertas de empleo recomendadas
    Trabajo híbrido

    Airbus

    Getafe, Comunidad de Madrid
    4 días atrás
  •  ...Security Analyst – Airbus Defence and Space SAU Location: Getafe (Madrid) Job Summary Secure Hiring process with the aim of identifying potential threats or risk associated with new hires, ensuring that recruitments are carried out in accordance with corporate... 
    Ofertas de empleo recomendadas
    Temporal
    Trabajar en la oficina

    Airbus

    Getafe, Comunidad de Madrid
    4 días atrás
  • Perfil del candidato Grado en ciberseguridad o ingeniería informática. Máster de más de 5 años de experiencia en respuesta a incidentes siguiendo el flujo de mejora continua (preparación, detección, análisis, contención, erradicación y recuperación). Experiencia...
    Indefinido
    Tiempo completo
    Trabajar en la oficina
    Remoto
    Jornada intensiva

    Reale Seguros

    Madrid
    4 días atrás
  • Reale Seguros busca un profesional en ciberseguridad para su oficina central en Madrid. El candidato ideal debe tener un grado en ciberseguridad o ingeniería informática, junto con un máster y más de 5 años de experiencia en respuesta a incidentes. Las responsabilidades...
    Indefinido
    Trabajar en la oficina
    Remoto

    Reale Seguros

    Madrid
    4 días atrás
  • 40000 €/año

     ...Overview We are looking for a professional with solid experience in SAP Security, particularly in SAP S/4HANA environments, capable of designing, implementing, and governing security solutions aligned with corporate policies. The ideal candidate will have a strategic... 
    Empleo permanente
    Contrato
    Remoto
    Trabajo híbrido
    2 días a la semana
    3 días a la semana

    Grupo Digital

    San Agustín del Guadalix, Comunidad de Madrid
    2 días atrás
  • 40000 €/año

     ...Grupo Digital in Madrid is seeking a security specialist with solid SAP Security experience, especially SAP S/4HANA, to design, implement, and govern security solutions in line with corporate policies. The role is permanent and hybrid (2-3 days remote per week) with... 
    Empleo permanente
    Remoto
    Trabajo híbrido
    2 días a la semana
    3 días a la semana

    Grupo Digital

    San Agustín del Guadalix, Comunidad de Madrid
    1 día atrás
  •  ...This position is at Airbus The selection process will be fully managed by Airbus. -- **Job Description:** **Security Analyst** Secure Hiring process with the aim of identifying potential threats or risk associated with new hires, ensuring that recruitments are carried... 
    Temporal
    Tiempo completo
    Trabajar en la oficina
    Horario flexible

    Airbus

    Getafe, Comunidad de Madrid
    5 días atrás
  •  ...Descripción del empleo Estamos en búsqueda de un perfil System & Security Analyst con la siguiente experiencia: * Experiencia en **resiliencia...  ...Security**. * Experiencia en **seguridad en el desarrollo (Secure SDLC)** y aplicación de guías **OWASP** para desarrollo... 
    Tiempo completo
    Remoto

    Devoteam

    Madrid
    5 días atrás
  •  ...for all candidates. Our global Cyber Security organization, headed by the Chief Information...  ...in the entire organization. We aim to secure the digital transformation in a...  ...CISSP, Microsoft M365 Security Operations Analyst, or ITIL are considered advantageous  BENEFITS... 
    Empleo permanente
    Desde casa
    Horario flexible

    BASF Digital Solutions S.L.

    Madrid
    Hace un mes
  • 40000 €/año

     ...We are looking for a professional with solid experience in SAP Security, particularly in SAP S/4HANA environments, capable of designing, implementing, and governing security solutions aligned with corporate policies. The ideal candidate will have a strategic mindset,... 
    Freelance
    Tiempo completo
    Empleo permanente
    Contrato
    Remoto
    Trabajo híbrido
    2 días a la semana
    3 días a la semana

    Grupo Digital

    San Agustín del Guadalix, Comunidad de Madrid
    12 días atrás
  •  ...Director | Identity & Security | Specialist Sales | Services Business Development | Europe Our Purpose Mastercard powers economies...  ...a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships... 

    JobPath Partners LLC

    Madrid
    4 días atrás
  •  ...shared or dedicated processing instances. It's this global reach and innovation that sets us apart. Role Summary The Compliance Analyst is responsible for managing the AML and KYC requirements, while supporting the business in identifying, assessing, and mitigating... 
    Práctica
    Trabajar en la oficina

    Paymentology

    Madrid
    2 días atrás
  • Responsibilities Monitorizar de forma diaria los portafolios de las líneas Retail (Turismos, Motos y Vehículos Comerciales) Asegurar el seguimiento de la evolución técnica y comercial Realizar el seguimiento de iniciativas de steering de portafolio Colaborar...

    Jobtailor

    Madrid
    18 horas atrás
  •  ...Corpay, Inc. is currently searching for a KYC Compliance Analyst to join their team in Madrid. This role involves critical responsibilities...  ...attention to detail. Join Corpay to contribute to a culture of innovation and secure payment solutions globally. #J-18808-Ljbffr... 

    Corpay, Inc.

    Madrid
    1 día atrás
  • de 35000 a 40000 €/año

     ...What We Need CORPAY is currently looking to hire a KYC Compliance Analyst within our Corpay Cross-Border business line and is located in...  ...payment solutions help businesses control, simplify, and secure payment for fuel, general payables, toll and lodging expenses.... 

    Corpay, Inc.

    Madrid
    1 día atrás
  •  ...that runs the real economy. Learn more about our vision in our manifesto. About the Role We are looking for a GRC Analyst to join our Security team. Your mission is to scale our compliance frameworks and ensure we maintain a “continuously audit-ready” state. You... 

    Dormont Manufacturing Co

    Madrid
    3 días atrás
  •  ...Paymentology is seeking a Compliance Analyst to manage AML and KYC requirements, ensuring robust compliance risk management. The role involves conducting risk assessments, preparing detailed compliance reports, and overseeing compliance audits. Applicants should have... 

    Paymentology

    Madrid
    2 días atrás
  •  ...Accenture is seeking an Application Security Consultant to join our Cybersecurity team in Madrid. You'll manage security measures, ensuring...  ...applications and systems, this role demands strong skills in Secure Development and Threat Management. Fluency in English and... 

    Accenture

    Madrid
    4 días atrás
  • Würth en San Sebastián de los Reyes busca un profesional en Prevención de Riesgos Laborales con sólida formación técnica y experiencia en el sector. Serás responsable de realizar auditorías y formaciones, y trabajarás de la mano con el equipo comercial para brindar soluciones...
    Aprendiz
    Horario flexible

    Wurth

    San Sebastián de los Reyes, Comunidad de Madrid
    2 días atrás
  • Ultimate.ai is looking for a Cybersecurity Expert in Madrid to define product security activities within a Security Management System. You will analyse regulations like 'Part-Is' to ensure compliance and engage with various stakeholders to enhance security strategies.... 
    Empleo permanente
    Contrato

    Ultimate.ai

    Madrid
    4 días atrás
  • Consultor/a de Seguridad ENS (Esquema Nacional de Seguridad) – Govertis - Telefónica Tech En Govertis, parte de Telefónica Tech, estamos en la búsqueda de un/a Consultor/a de Seguridad ENS con una sólida experiencia demostrable en proyectos de adecuación y certificación...
    Autónomo

    Govertis

    Madrid
    2 días atrás
  • Responsibilities Colaborar en un proyecto del sector bancario en modalidad híbrida. Analizar y gestionar riesgos tecnológicos. Implementar estándares de ciberseguridad en el equipo de Blue Team. Contribuir al mantenimiento de la seguridad en entornos cloud ...

    Jobtailor

    Madrid
    18 horas atrás
  • Iberia, la mayor aerolínea española, busca un Analista de Seguridad de la Aviación para asegurar la normativa de seguridad y la calidad de la experiencia de viaje. El candidato deberá tener experiencia en operaciones aeroportuarias y un título universitario. Las responsabilidades...

    Iberia

    Madrid
    1 día atrás
  • Govertis, parte de Telefónica Tech, busca un/a Consultor/a de Seguridad ENS con experiencia en certificación y cumplimiento normativo. Esta posición involucra la evaluación de sistemas y la elaboración de documentación esencial para el Esquema Nacional de Seguridad. ...

    Govertis

    Madrid
    2 días atrás
  •  ...to join our Cybersecurity team. The role of an Application Security Consultant is focused on protection, providing clients with the...  ...tasks Manage group of people and projects. Definition of the secure software development life cycle. Definition of applications... 

    Accenture

    Madrid
    5 días atrás
  •  ...En GP DIGITAL buscamos SENIOR SECURITY SPECIALIST para importante cliente internacional en el ámbito de la ciberseguridad que ofrece a sus clientes soluciones innovadoras y adaptadas a sus necesidades de detección, análisis y respuesta a amenazas de primer nivel a... 
    Indefinido
    Trabajar en la oficina
    Inicio inmediato
    Trabajo híbrido

    Grupo-Digital

    Madrid
    4 días atrás
  • ## Information Security Governance ExpertApplylocations: Madridtime type: Full timeposted on: Posted Todayjob requisition id: 202604-110433At...  ...projects—from GenAI to cloud-native platforms—are resilient, "Secure by Design," and compliant with global regulations.****The Team*... 
    Inicio inmediato

    F. Hoffmann-La Roche AG

    Madrid
    18 horas atrás

¿Quieres recibir más ofertas?

Suscríbete y recibe ofertas similares para Security Analyst, Bug Bounty. ¡Entérate antes que nadie!