... Security Manager (ISSM), Risk Management Framework (RMF), and cybersecurity risk management ... Bug Bounty Hunter VirtualHackingLabs Advanced+ Optional: GXPN, GWAPT, GRID, GPEN, CISSP, CCNA, CEH ...
Quick apply
... Security Manager (ISSM), Risk Management Framework (RMF), and cybersecurity risk management ... Bug Bounty Hunter VirtualHackingLabs Advanced+ Optional: GXPN, GWAPT, GRID, GPEN, CISSP, CCNA, CEH ...
... Security Manager (ISSM), Risk Management Framework (RMF), and cybersecurity risk management ... Bug Bounty Hunter VirtualHackingLabs Advanced+ Optional: GXPN, GWAPT, GRID, GPEN, CISSP, CCNA, CEH ...
Quick apply
... Security Manager (ISSM), Risk Management Framework (RMF), and cybersecurity risk management ... Bug Bounty Hunter VirtualHackingLabs Advanced+ Optional: GXPN, GWAPT, GRID, GPEN, CISSP, CCNA, CEH ...
Senior Cybersecurity Engineer
Houston, TX · On-site
$109K - $149K/yr
... management for Windows and macOS fleets. • Familiarity with advanced email threat protection platforms and bug bounty program operations. • Experience with infrastructure as code and container ...
Senior Cybersecurity Engineer
Houston, TX · On-site
$109K - $149K/yr
... management for Windows and macOS fleets. • Familiarity with advanced email threat protection platforms and bug bounty program operations. • Experience with infrastructure as code and container ...
Principal Product Security Engineer
$190K - $220K/yr
Experience managing bug bounty programs * Familiarity with languages such as Javascript, Go, Ruby, Python, or Scala * Experience working with cloud providers (AWS, GCP) and Developer SaaS solutions ...
Principal Product Security Engineer
$190K - $220K/yr
Experience managing bug bounty programs * Familiarity with languages such as Javascript, Go, Ruby, Python, or Scala * Experience working with cloud providers (AWS, GCP) and Developer SaaS solutions ...
Principal Product Security Engineer
New York, NY · On-site
$190K - $220K/yr
Experience managing bug bounty programs * Familiarity with languages such as Javascript, Go, Ruby, Python, or Scala * Experience working with cloud providers (AWS, GCP) and Developer SaaS solutions ...
Principal Product Security Engineer
New York, NY · On-site
$190K - $220K/yr
Experience managing bug bounty programs * Familiarity with languages such as Javascript, Go, Ruby, Python, or Scala * Experience working with cloud providers (AWS, GCP) and Developer SaaS solutions ...
CNO Developer
$129K - $177K/yr
Building, configuring, managing virtualized systems * Comfortable and willing to operate/maintain ... Desire to contribute to CTF events, bug bounty programs, and speaking at the security conferences
CNO Developer
$129K - $177K/yr
Building, configuring, managing virtualized systems * Comfortable and willing to operate/maintain ... Desire to contribute to CTF events, bug bounty programs, and speaking at the security conferences
Senior Security Engineer, AI Vulnerability Management
Menlo Park, CA · On-site
$134K - $185K/yr
Bug Bounty & Exploit Proficiency: Active experience participating in or managing Bug Bounty programs; a deep understanding of how attackers exploit vulnerabilities and how to translate those findings ...
Senior Security Engineer, AI Vulnerability Management
Menlo Park, CA · On-site
$134K - $185K/yr
Bug Bounty & Exploit Proficiency: Active experience participating in or managing Bug Bounty programs; a deep understanding of how attackers exploit vulnerabilities and how to translate those findings ...
Senior Security Engineer, Application & Platform Security
San Francisco, CA · On-site
$190K - $280K/yr
Intake, triage, prioritization, remediation tracking, and management of our bug bounty and responsible disclosure program. * Champion secure-by-design principles. Partner with engineering and product ...
Senior Security Engineer, Application & Platform Security
San Francisco, CA · On-site
$190K - $280K/yr
Intake, triage, prioritization, remediation tracking, and management of our bug bounty and responsible disclosure program. * Champion secure-by-design principles. Partner with engineering and product ...
Senior Security Engineer, AI Vulnerability Management
Menlo Park, CA · On-site
$134K - $185K/yr
Bug Bounty & Exploit Proficiency: Active experience participating in or managing Bug Bounty programs; a deep understanding of how attackers exploit vulnerabilities and how to translate those findings ...
Senior Security Engineer, AI Vulnerability Management
Menlo Park, CA · On-site
$134K - $185K/yr
Bug Bounty & Exploit Proficiency: Active experience participating in or managing Bug Bounty programs; a deep understanding of how attackers exploit vulnerabilities and how to translate those findings ...
Senior Cybersecurity Engineer
Houston, TX · On-site
$109K - $149K/yr
... management for Windows and macOS fleets. * Familiarity with advanced email threat protection platforms and bug bounty program operations. * Experience with infrastructure as code and container ...
Senior Cybersecurity Engineer
Houston, TX · On-site
$109K - $149K/yr
... management for Windows and macOS fleets. * Familiarity with advanced email threat protection platforms and bug bounty program operations. * Experience with infrastructure as code and container ...
Senior Security Engineer - Automation
OR · Remote
$117K - $160K/yr
We actively manage our Bug Bounty program, ensuring swift response and remediation, and leverage cutting-edge tools like Cloudflare's WAF to build robust defenses. We offer an extensive number of ...
Quick apply
Senior Security Engineer - Automation
OR · Remote
$117K - $160K/yr
We actively manage our Bug Bounty program, ensuring swift response and remediation, and leverage cutting-edge tools like Cloudflare's WAF to build robust defenses. We offer an extensive number of ...
Senior Security Engineer - Automation
$117K - $160K/yr
We actively manage our Bug Bounty program, ensuring swift response and remediation, and leverage cutting-edge tools like Cloudflare's WAF to build robust defenses. We offer an extensive number of ...
Senior Security Engineer - Automation
$117K - $160K/yr
We actively manage our Bug Bounty program, ensuring swift response and remediation, and leverage cutting-edge tools like Cloudflare's WAF to build robust defenses. We offer an extensive number of ...
Enterprise Account Executive
Chicago, IL · On-site +1
Prior experience selling crowdsourced security, Bug Bounty, or Attack Surface Management solutions. * Familiarity with Salesforce and sales engagement tools. * A four-year degree from an accredited ...
Enterprise Account Executive
Chicago, IL · On-site +1
Prior experience selling crowdsourced security, Bug Bounty, or Attack Surface Management solutions. * Familiarity with Salesforce and sales engagement tools. * A four-year degree from an accredited ...
Senior Cybersecurity Engineer
Houston, TX · On-site
$105K - $145K/yr
... management for Windows and macOS fleets. * Familiarity with advanced email threat protection platforms and bug bounty program operations. * Experience with infrastructure as code and container ...
Senior Cybersecurity Engineer
Houston, TX · On-site
$105K - $145K/yr
... management for Windows and macOS fleets. * Familiarity with advanced email threat protection platforms and bug bounty program operations. * Experience with infrastructure as code and container ...
Lead Engineer, Penetration Tester
Brooklyn Park, MN · On-site
$132K - $238K/yr
Manage the full lifecycle of penetration testing from intake and scoping through discovery, testing ... Review and triage submissions from the Bug Bounty program; escalate critical findings to ...
Lead Engineer, Penetration Tester
Brooklyn Park, MN · On-site
$132K - $238K/yr
Manage the full lifecycle of penetration testing from intake and scoping through discovery, testing ... Review and triage submissions from the Bug Bounty program; escalate critical findings to ...
Head of Security
San Francisco, CA · On-site
... Manage our Bug Bounty Program • Implement security controls across Merge, from infrastructure to CI • Implement and run manual and automated security practices to mitigate vulnerabilities • ...
Head of Security
San Francisco, CA · On-site
... Manage our Bug Bounty Program • Implement security controls across Merge, from infrastructure to CI • Implement and run manual and automated security practices to mitigate vulnerabilities • ...
Staff+ Application Security Engineer
San Francisco, CA · On-site +1
$69.25 - $92.50/hr
Manage Anthropic's vulnerability management program, including integrating data ingestion pipelines ... Oversee Anthropic's bug bounty program. Set scope, validate submissions, perform root cause ...
Staff+ Application Security Engineer
San Francisco, CA · On-site +1
$69.25 - $92.50/hr
Manage Anthropic's vulnerability management program, including integrating data ingestion pipelines ... Oversee Anthropic's bug bounty program. Set scope, validate submissions, perform root cause ...
Senior Application Security Engineer (Offensive / Red Team)
$117K - $160K/yr
Manage the bug bounty program end to end - triage, impact assessment, risk scoring (CVSS), locating vulnerable code, providing mitigation guidance, thorough re-testing, and refining program policy ...
Senior Application Security Engineer (Offensive / Red Team)
$117K - $160K/yr
Manage the bug bounty program end to end - triage, impact assessment, risk scoring (CVSS), locating vulnerable code, providing mitigation guidance, thorough re-testing, and refining program policy ...
... bug bounty program • Partner with engineering teams to design and deploy solutions which are ... Ramp is a financial technology company that develops software for corporate spend management ...
... bug bounty program • Partner with engineering teams to design and deploy solutions which are ... Ramp is a financial technology company that develops software for corporate spend management ...
Sr. Application Security Engineer
$168K - $230K/yr
... manage their Starlink account and equipment. In this role, you will continually assess Starlink ... You will also be responsible for monitoring and responding to bug bounty submissions. Ideally, you ...
Sr. Application Security Engineer
$168K - $230K/yr
... manage their Starlink account and equipment. In this role, you will continually assess Starlink ... You will also be responsible for monitoring and responding to bug bounty submissions. Ideally, you ...
Bug Bounty Manager information
What does a typical week look like for a Bug Bounty Manager in terms of responsibilities and collaboration?
A Bug Bounty Manager typically spends the week overseeing vulnerability reports, coordinating with security researchers, and prioritizing remediation efforts with engineering teams. They review incoming submissions, validate findings, and communicate with both internal stakeholders and external participants to ensure clear understanding and timely resolution of issues. Collaboration is key in this role, as managers often work closely with developers, legal, and compliance teams to align on security priorities and program updates. Additionally, they may analyze program metrics and provide feedback to improve the bounty process.
What are the key skills and qualifications needed to thrive as a Bug Bounty Manager, and why are they important?
To thrive as a Bug Bounty Manager, you need expertise in cybersecurity, vulnerability management, and a solid understanding of software development, typically supported by a degree in computer science or related field. Familiarity with bug bounty platforms (such as HackerOne or Bugcrowd), vulnerability tracking tools, and relevant certifications like CISSP or CEH is important. Strong communication, analytical thinking, and stakeholder management skills help you coordinate between security researchers and internal teams. These skills ensure effective vulnerability reporting, timely remediation, and the overall security posture of the organization.
What are Bug Bounty Managers?
Bug Bounty Managers are professionals responsible for overseeing bug bounty programs, which incentivize security researchers to find and report vulnerabilities in a company's software or systems. They coordinate the design, implementation, and management of these programs, ensuring that reported issues are validated, prioritized, and addressed efficiently. Bug Bounty Managers also communicate with security researchers, internal security teams, and stakeholders to improve the organization's security posture. Their role is crucial in fostering a collaborative relationship between the organization and the security community.
What is the difference between Bug Bounty Manager vs Security Analyst?
| Aspect | Bug Bounty Manager | Security Analyst |
|---|---|---|
| Required Credentials | Certifications like OSCP, CEH, or CISSP; experience in bug bounty programs | Certifications such as CISSP, GIAC, or CEH; strong knowledge of security protocols |
| Work Environment | Focus on managing bug bounty programs, coordinating with researchers, and analyzing reports | Monitoring security systems, conducting vulnerability assessments, and incident response |
| Employer & Industry Usage | Tech companies, cybersecurity firms, organizations running bug bounty programs | Corporate security teams, government agencies, consulting firms |
The Bug Bounty Manager primarily oversees bug bounty initiatives, managing researcher collaborations and triaging reports. In contrast, a Security Analyst focuses on analyzing security threats, conducting assessments, and maintaining overall security posture. Both roles require security certifications and a strong understanding of vulnerabilities, but their daily tasks and focus areas differ significantly.
More about Bug Bounty Manager jobs
What cities are hiring for Bug Bounty Manager jobs? Cities with the most Bug Bounty Manager job openings:
What are the most commonly searched types of Bug Bounty jobs? The most popular types of Bug Bounty jobs are:
What states have the most Bug Bounty Manager jobs? States with the most job openings for Bug Bounty Manager jobs include:
What job categories do people searching Bug Bounty Manager jobs look for? The top searched job categories for Bug Bounty Manager jobs are:
Cyber Security Instructor / Trainer (ISSO / ISSM / RMF & Risk Management)
Agile Business Concepts, LLCDestin, FL • On-site
Contractor
Posted 4 days ago
Job description
We are seeking an experienced Cyber Security Instructor/Trainer to deliver high-quality training in Information System Security Officer (ISSO), Information System Security Manager (ISSM), Risk Management Framework (RMF), and cybersecurity risk management practices. The ideal candidate will have hands-on experience in DoD/IC environments and a strong ability to translate complex security concepts into practical, engaging instruction.
HackTheBox Certified Active Directory Pentesting Expert
HackTheBox Certified Penetration Testing Specialist
HackTheBox Certified Bug Bounty Hunter
VirtualHackingLabs Advanced+
Optional:
GXPN, GWAPT, GRID, GPEN, CISSP, CCNA, CEH Master, Security+
Key Responsibilities:
- Develop and deliver training programs on ISSO, ISSM roles, RMF processes, and risk management methodologies
- Provide instruction on security controls, system authorization (A&A), and compliance frameworks (e.g., NIST, DoD RMF)
- Create course materials, labs, and real-world scenarios to enhance learning outcomes
- Mentor students and professionals on cybersecurity best practices and certification preparation
- Stay current with evolving cybersecurity threats, policies, and regulatory requirements
- Support curriculum updates based on industry standards and government guidelines
Qualifications:
- 5+ years of cybersecurity experience, with direct ISSO/ISSM or RMF experience
- Strong knowledge of NIST RMF, security controls, and risk assessment methodologies
- Experience supporting DoD or Intelligence Community environments preferred
- Relevant certifications such as CISSP, CISM, Security+, or CAP preferred
- Excellent communication and presentation skills
Preferred:
- Prior teaching, training, or instructional design experience
- Active security clearance (Secret or higher) is a plus
About Agile Business Concepts
Sourced by ZipRecruiter
Industry
It services
Company size
11 - 50 Employees
Headquarters location
Reston, VA, US
Year founded
2006