CNO Developer
$129K - $177K/yr
Desire to contribute to CTF events, bug bounty programs, and speaking at the security conferences * Rapid Prototype Software Development Security Clearance: * Active TS/SCI level clearance. Must be ...
CNO Developer
$129K - $177K/yr
Desire to contribute to CTF events, bug bounty programs, and speaking at the security conferences * Rapid Prototype Software Development Security Clearance: * Active TS/SCI level clearance. Must be ...
CNO Developer
Chantilly, VA · On-site
$130K - $178K/yr
... events, bug bounty programs, and speaking at the security conferences • Rapid Prototype Software Development Company : Accenture Federal Services is a leading US federal services company and ...
CNO Developer
Chantilly, VA · On-site
$130K - $178K/yr
... events, bug bounty programs, and speaking at the security conferences • Rapid Prototype Software Development Company : Accenture Federal Services is a leading US federal services company and ...
CNO Developer
Chantilly, VA · On-site
$130K - $178K/yr
... events, bug bounty programs, and speaking at the security conferences • Rapid Prototype Software Development Company : Accenture Federal Services is a leading US federal services company and ...
CNO Developer
Chantilly, VA · On-site
$130K - $178K/yr
... events, bug bounty programs, and speaking at the security conferences • Rapid Prototype Software Development Company : Accenture Federal Services is a leading US federal services company and ...
You will play a critical role in validating, reproducing, and communicating security findings across bug bounty and vulnerability disclosure programs while helping maintain a high-quality experience ...
New
You will play a critical role in validating, reproducing, and communicating security findings across bug bounty and vulnerability disclosure programs while helping maintain a high-quality experience ...
New
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
The Lead will manage a comprehensive vulnerability management program for The Department of U.S ... and Bug Bounty assessments. Requirements * A minimum of 5 years of experience performing ...
The Lead will manage a comprehensive vulnerability management program for The Department of U.S ... and Bug Bounty assessments. Requirements * A minimum of 5 years of experience performing ...
Cyber Capability Developer
Chantilly, VA · On-site
... bug bounty programs, and security conferences. • Advanced application of risk assessment methodologies. • Complex malware analysis, digital forensics, and software reverse engineering. • ...
Cyber Capability Developer
Chantilly, VA · On-site
... bug bounty programs, and security conferences. • Advanced application of risk assessment methodologies. • Complex malware analysis, digital forensics, and software reverse engineering. • ...
The Lead will manage a comprehensive vulnerability management program for The Department of U.S ... Provide leadership and support for internal and external audits (e.g., OIG, NCATS) and Bug Bounty ...
The Lead will manage a comprehensive vulnerability management program for The Department of U.S ... Provide leadership and support for internal and external audits (e.g., OIG, NCATS) and Bug Bounty ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Quick apply
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Mixed vendor/platform environments, including COTS, GOTS, and custom developed tools * Digital forensics ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Mixed vendor/platform environments, including COTS, GOTS, and custom developed tools * Digital forensics ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Quick apply
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Cyber Capability Developer
Chantilly, VA · On-site
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Cyber Capability Developer
Chantilly, VA · On-site
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Cyber Capability Developer
Chantilly, VA · On-site
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Cyber Capability Developer
Chantilly, VA · On-site
Participation in capture the flag exercises, bug bounty programs, and security conferences * Advanced application of risk assessment methodologies * Complex malware analysis, digital forensics, and ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Mixed vendor/platform environments, including COTS, GOTS, and custom developed tools * Digital forensics ...
Participation in capture the flag exercises, bug bounty programs, and security conferences * Mixed vendor/platform environments, including COTS, GOTS, and custom developed tools * Digital forensics ...
Limited Cyberspace Operator
Annapolis Junction, MD · On-site
$112K - $257K/yr
Experience with commercial offensive security training platforms such as Hack The Box, TryHackMe, and Proving Grounds, or participation in commercial bug bounty programs * Experience with databases ...
Limited Cyberspace Operator
Annapolis Junction, MD · On-site
$112K - $257K/yr
Experience with commercial offensive security training platforms such as Hack The Box, TryHackMe, and Proving Grounds, or participation in commercial bug bounty programs * Experience with databases ...
Limited Cyberspace Operator with Security Clearance
Annapolis Junction, MD · On-site
$69K - $158K/yr
Experience with commer cia l offensive security training platforms such as Hack The Box, TryHackMe, and Proving Grounds or participation in commer cia l bug bounty programs * Experience with ...
Limited Cyberspace Operator with Security Clearance
Annapolis Junction, MD · On-site
$69K - $158K/yr
Experience with commer cia l offensive security training platforms such as Hack The Box, TryHackMe, and Proving Grounds or participation in commer cia l bug bounty programs * Experience with ...
Bug Bounty Program information
See Silver Spring, MD salary details
$16.90 - $22.75
6% of jobs
$22.75 - $28.60
14% of jobs
$32.36 is the 25th percentile. Wages below this are outliers.
$28.60 - $34.45
7% of jobs
$34.45 - $40.30
1% of jobs
$40.30 - $46.15
13% of jobs
The median wage is $49.50 / hr.
$46.15 - $52
15% of jobs
$52 - $57.86
3% of jobs
$57.86 - $63.71
9% of jobs
$67.51 is the 75th percentile. Wages above this are outliers.
$63.71 - $69.56
11% of jobs
$69.56 - $75.41
15% of jobs
$75.41 - $81.26
6% of jobs
$16
$51
$81
How much do bug bounty program jobs pay per hour?
As of Jun 26, 2026, the average hourly pay for bug bounty program in Silver Spring, MD is $51.28, according to ZipRecruiter salary data. Most workers in this role earn between $32.79 and $69.09 per hour, depending on experience, location, and employer.
How do I join a bug bounty program?
To join a bug bounty program, you typically need to register on the platform hosting the program, such as HackerOne or Bugcrowd, and agree to their rules and scope. Developing skills in web security, using tools like Burp Suite or OWASP ZAP, and understanding responsible disclosure are essential. Some programs may require prior experience or certifications like OSCP or CEH.
What are some common challenges faced by professionals managing a Bug Bounty Program?
Professionals overseeing a Bug Bounty Program often encounter challenges such as efficiently triaging a high volume of vulnerability reports, ensuring clear communication with security researchers, and balancing quick response times with thorough investigation. Additionally, maintaining strong relationships with both internal development teams and external participants is crucial for program success. Staying updated on evolving security threats and continually refining program policies are ongoing responsibilities that require adaptability and collaboration.
How much do bug bounties get paid?
Bug bounty programs pay security researchers based on the severity and impact of the vulnerabilities they discover, with rewards ranging from $100 to over $100,000 for critical issues. Payments vary depending on the program, the organization, and the complexity of the bug, and researchers often use platforms like HackerOne or Bugcrowd to participate.
Which bug bounty pays the most?
Bug bounty programs from large technology companies like Apple, Google, and Microsoft tend to offer the highest payouts, often reaching hundreds of thousands of dollars for critical vulnerabilities. Successful bug bounty hunters typically have strong technical skills, knowledge of security testing tools, and experience in identifying high-impact security flaws.
What are the key skills and qualifications needed to thrive as a Bug Bounty Program participant, and why are they important?
To excel in a Bug Bounty Program, you need strong knowledge of cybersecurity fundamentals, vulnerability assessment, and web or software exploitation techniques, often backed by practical experience or certifications like OSCP or CEH. Familiarity with tools such as Burp Suite, Nmap, and Metasploit, as well as bug bounty platforms like HackerOne or Bugcrowd, is typically required. Critical thinking, persistence, and clear written communication are crucial soft skills for effectively identifying vulnerabilities and reporting them to organizations. These skills ensure you can discover security flaws efficiently, responsibly disclose them, and build a positive reputation in the cybersecurity community.
What is a Bug Bounty Program?
A Bug Bounty Program is an initiative offered by organizations that invites ethical hackers and security researchers to identify and report vulnerabilities in the company’s software, websites, or systems. Participants are typically rewarded with monetary compensation, recognition, or other incentives based on the severity of the bugs they find. These programs help organizations strengthen their security by leveraging the broader cybersecurity community, thus identifying issues before malicious hackers can exploit them. Bug bounty programs are widely used by tech companies to enhance security and build trust with users.
Will Facebook pay $500 if you find a bug in their code?
As a bug bounty program participant, Facebook's bug bounty rewards vary depending on the severity and impact of the vulnerability found. While some reports have received payments of $500 or more, the amount is not guaranteed and depends on the quality and significance of the bug. Participants should review Facebook's bug bounty guidelines for specific payout details and submission criteria.
What is the difference between Bug Bounty Program vs Penetration Tester?
| Aspect | Bug Bounty Program | Penetration Tester |
|---|---|---|
| Credentials | Knowledge of security vulnerabilities, bug reporting skills | Certifications like OSCP, CEH, CISSP often preferred |
| Work Environment | Remote, project-based, crowdsourced | Consulting firms, in-house teams, on-site or remote |
| Industry Usage | Tech companies, startups, open security initiatives | Security firms, corporate security teams, government agencies |
| Search/Comparison Intent | Understanding crowdsourced bug finding vs professional testing | Comparing freelance or company-based security assessments |
The main difference is that Bug Bounty Programs are crowdsourced initiatives where individuals report vulnerabilities remotely, often without formal certifications. Penetration Testers are professionals with certifications who perform targeted security assessments, usually in a consulting or in-house setting. Both roles focus on identifying security flaws but differ in structure, credentials, and work environment.
What are popular job titles related to Bug Bounty Program jobs in Silver Spring, MD? For Bug Bounty Program jobs in Silver Spring, MD, the most frequently searched job titles are:
What job categories do people searching Bug Bounty Program jobs in Silver Spring, MD look for? The top searched job categories for Bug Bounty Program jobs in Silver Spring, MD are:
What cities near Silver Spring, MD are hiring for Bug Bounty Program jobs? Cities near Silver Spring, MD with the most Bug Bounty Program job openings:
Accenture Federal Services rating
8.4
Based on 19 frontline employees who took The Breakroom Quiz
46th of 430 rated business services
Job description
Accenture Federal Services is seeking multiple CNO Software Engineers / Developers who want to work alongside our customer to support their critical National Security Mission. The successful candidates will be in a customer facing role, working with them directly to understand the requirements/constraints and develop the best solution to successfully complete the mission. Every project provides new learning opportunities and a chance to enhance your skills. If this sounds appealing to you - we'd love to chat!
Responsibilities include:
- Conducting CNO related software development; frontend, middleware and/or backend
- Building, configuring, managing virtualized systems
- Comfortable and willing to operate/maintain customer-provided COTS, GOTS or custom developed tools and capabilities
- Testing and validating including risk assessment
- Working with the customer to understand requirements and develop solutions
Here's what you need:
- 5 years' experience with Bachelor degree in Computer Science, Computer Engineering or other Software Development related degree OR 3 years' experience with Master degree in Computer Science, Computer Engineering or other Software Development related degree
- SW Engineering with C, C++ or Python programming
- Experience with vulnerability research
Bonus points if you have:
- Experience using CI/CD pipelines for Git version Control Systems
- Experience in Digital Forensic and Software Reverse Engineering
- Comfortable navigating the command line
- Desire to contribute to CTF events, bug bounty programs, and speaking at the security conferences
- Rapid Prototype Software Development
Security Clearance:
- Active TS/SCI level clearance. Must be willing to undergo a polygraph.
#LI-Cyber
What Accenture Federal Services employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Accenture Federal Services
Sourced by ZipRecruiter
Industry
It services
Company size
10,000+ Employees
Headquarters location
Arlington, VA, US
Year founded
1989