1

Bug Bounty Program Jobs in Silver Spring, MD (NOW HIRING)

Projects include reforming digital services that provide military families access to critical benefits, running bug bounty programs to identify vulnerabilities and better secure defense systems ...

Projects include reforming digital services that provide military families access to critical benefits, running bug bounty programs to identify vulnerabilities and better secure defense systems ...

Desire to contribute to CTF events, bug bounty programs, and speaking at the security conferences * Rapid Prototype Software Development Security Clearance: * Active TS/SCI level clearance. Must be ...

Projects include reforming digital services that provide military families access to critical benefits, running bug bounty programs to identify vulnerabilities and better secure defense systems ...

Projects include reforming digital services that provide military families access to critical benefits, running bug bounty programs to identify vulnerabilities and better secure defense systems ...

CNO Developer

Chantilly, VA · On-site

$116K - $243K/yr

Desire to contribute to CTF events, bug bounty programs, and speaking at the security conferences * Rapid Prototype Software Development Security Clearance: * Active TS/SCI level clearance. Must be ...

Projects include reforming digital services that provide military families access to critical benefits, running bug bounty programs to identify vulnerabilities and better secure defense systems ...

Projects include reforming digital services that provide military families access to critical benefits, running bug bounty programs to identify vulnerabilities and better secure defense systems ...

Experience running bug-bounty, penetration testing, vulnerability scanning programs. * Experience setting up and maintaining SAST, DAST, IAST and SCA tooling * Experience using assessment tools such ...

And it's a rare chance to do that hands-on inside a program that helps protect the health data of ... validation, or Bug Bounty, with a track record of delivering engagements end to end: scoping ...

And it's a rare chance to do that hands-on inside a program that helps protect the health data of ... validation, or Bug Bounty, with a track record of delivering engagements end to end: scoping ...

And it's a rare chance to do that hands-on inside a program that helps protect the health data of ... validation, or Bug Bounty, with a track record of delivering engagements end to end: scoping ...

next page

Showing results 1-20

Bug Bounty Program information

See Silver Spring, MD salary details

$16

$51

$81

How much do bug bounty program jobs pay per hour?

As of Jul 17, 2026, the average hourly pay for bug bounty program in Silver Spring, MD is $51.28, according to ZipRecruiter salary data. Most workers in this role earn between $32.79 and $69.09 per hour, depending on experience, location, and employer.

What are some common challenges faced by professionals managing a Bug Bounty Program?

Professionals overseeing a Bug Bounty Program often encounter challenges such as efficiently triaging a high volume of vulnerability reports, ensuring clear communication with security researchers, and balancing quick response times with thorough investigation. Additionally, maintaining strong relationships with both internal development teams and external participants is crucial for program success. Staying updated on evolving security threats and continually refining program policies are ongoing responsibilities that require adaptability and collaboration.

What are the key skills and qualifications needed to thrive as a Bug Bounty Program participant, and why are they important?

To excel in a Bug Bounty Program, you need strong knowledge of cybersecurity fundamentals, vulnerability assessment, and web or software exploitation techniques, often backed by practical experience or certifications like OSCP or CEH. Familiarity with tools such as Burp Suite, Nmap, and Metasploit, as well as bug bounty platforms like HackerOne or Bugcrowd, is typically required. Critical thinking, persistence, and clear written communication are crucial soft skills for effectively identifying vulnerabilities and reporting them to organizations. These skills ensure you can discover security flaws efficiently, responsibly disclose them, and build a positive reputation in the cybersecurity community.

What is a Bug Bounty Program?

A Bug Bounty Program is an initiative offered by organizations that invites ethical hackers and security researchers to identify and report vulnerabilities in the company’s software, websites, or systems. Participants are typically rewarded with monetary compensation, recognition, or other incentives based on the severity of the bugs they find. These programs help organizations strengthen their security by leveraging the broader cybersecurity community, thus identifying issues before malicious hackers can exploit them. Bug bounty programs are widely used by tech companies to enhance security and build trust with users.

What is the difference between Bug Bounty Program vs Penetration Tester?

AspectBug Bounty ProgramPenetration Tester
CredentialsKnowledge of security vulnerabilities, bug reporting skillsCertifications like OSCP, CEH, CISSP often preferred
Work EnvironmentRemote, project-based, crowdsourcedConsulting firms, in-house teams, on-site or remote
Industry UsageTech companies, startups, open security initiativesSecurity firms, corporate security teams, government agencies
Search/Comparison IntentUnderstanding crowdsourced bug finding vs professional testingComparing freelance or company-based security assessments

The main difference is that Bug Bounty Programs are crowdsourced initiatives where individuals report vulnerabilities remotely, often without formal certifications. Penetration Testers are professionals with certifications who perform targeted security assessments, usually in a consulting or in-house setting. Both roles focus on identifying security flaws but differ in structure, credentials, and work environment.

What are popular job titles related to Bug Bounty Program jobs in Silver Spring, MD? For Bug Bounty Program jobs in Silver Spring, MD, the most frequently searched job titles are:
What job categories do people searching Bug Bounty Program jobs in Silver Spring, MD look for? The top searched job categories for Bug Bounty Program jobs in Silver Spring, MD are:
What cities near Silver Spring, MD are hiring for Bug Bounty Program jobs? Cities near Silver Spring, MD with the most Bug Bounty Program job openings:
Infographic showing various Bug Bounty Program job openings in Silver Spring, MD as of July 2026, with employment types broken down into 27% Locum Tenens, 32% Full Time, 13% Part Time, and 28% Summer. Highlights an 84% Physical, 4% Hybrid, and 12% Remote job distribution, with an average salary of $106,663 per year, or $51.3 per hour.
Limited Cyberspace Operator with Security Clearance

Limited Cyberspace Operator with Security Clearance

Booz Allen Hamilton

Annapolis Junction, MD • On-site

$112K - $257K/yr

Other

Medical, Life, Retirement, PTO

Re-posted 4 days ago


Booz Allen Hamilton rating

8.8

Company rating: 8.8 out of 10

Based on 48 frontline employees who took The Breakroom Quiz

9th of 58 rated business consultants


Job description

Job Number: R0240025 Limited Cyberspace Operator The Opportunity: As a Limited Cyberspace Operator, you will support cyberspace operations by developing and conducting access development, target e nga gement, and support of effects delivery on behalf of national security objectives. This role emphasizes tradecraft precision, long-term operational viability, counterintelligence awareness, and compartmented mission execution. This is your opportunity to help advance national security through cutting-edge cyber operations. Join us. The world can't wait. You Have: * 6+ years of experience supporting and conducting cyber operations
* Experience with vulnerability enumeration and exploitation frameworks, including Burp Suite, Met asploit, Cobalt Strike, and Mythic
* Experience assessing large-scale enterprise environments with divers e technologies, including Windows and non-Windows systems, hybrid infrastructures, segmented networks, and non-traditional domain architectures
* Knowledge of Linux or Unix operating systems and endpoint forensic artifacts, including storage subsystems, package management, system logging, persistence mechanisms, and incident response or threat hunting met hodologies
* Knowledge of modern web application security principles and common attack vectors, including authentication flaws, injection vulnerabilities, insecure deserialization, SSRF, XSS, and access control weaknesses aligned with OWASP guidance
* Ability to navigate complex enterprise networks, including pivoting across systems, enumerating logging posture, differentiating secure subnets, and maintaining ingress or egress communication paths
* Active TS/SCI clearance; willingness to take a polygraph exam * Bachelor's degree and 2+ years of experience conducting or planning cyber operations, or 6+ years of experience conducting or planning cyber operations in lieu of a degree Nice If You Have: * Experience with commer cia l offensive security training platforms such as Hack The Box, TryHackMe, and Proving Grounds, or participating in commer cia l bug bounty programs
* Experience with databases, back-end systems, and supporting infrastructure technologies
* Experience with scripting and programming focused on automating forensic, endpoint, and network operations, including repetitive analysis, system diagnostics, secure connectivity management, and incident response workflows
* Knowledge of corporate network security best practices across network, server, and endpoint environments
* Industry Certification s such as OSCP, OSW E, or GXPN Certification Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information ; TS/SCI clearance is required. Compensation At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page. Salary at Booz Allen is determined by various factors, including but not limited to location, the individual's particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $112,800.00 to $257,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen's total compensation package for employees. This posting will close within 90 days from the Posting Date. Identity Statement As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud. Candidate AI Usage Policy AI is a part of our daily work at Booz Allen, and we are committed to the responsible and ethical use of AI tools. However, we want to ensure a fair candidate process based on your own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) or other tools to assist with responses during interviews (whether in-person or virtual) is prohibited unless permission is explicitly provided. Work Model Our people-first culture prioritizes the benefits of collaboration, whether it occurs in person or virtually. To support engagement and effective communication, employees working virtually are generally expected to have their cameras on during meetings. * Remote: If this position is listed as remote, there may still be occasions when you are required to work in person at a Booz Allen or customer facility.
* Hybrid: If this position is listed as hybrid, you will be expected to work from a Booz Allen facility frequently, in alignment with leadership expectations and the needs of the role. You may also be required to work from or visit a customer facility.
* Onsite: If this position is listed as onsite, work will primarily be performed at a Booz Allen office or customer facility, where employees will collaborate directly with colleagues and customers as required by the role. Commitment to Non-Discrimination All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

What Booz Allen Hamilton employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


Booz Allen Hamilton logo

About Booz Allen Hamilton

Sourced by ZipRecruiter

Booz Allen Hamilton is a leading provider of management and technology consulting services to the US government in defense, intelligence, and civil markets. Headquartered in McLean, Virginia, the firm also serves major corporations, institutions, and not-for-profit organizations. Founded in 1914 by Edwin G. Booz, the company has a long-standing tradition of helping clients achieve success by delivering a wide range of consulting services that include strategic planning, human capital and learning, communication, systems development, and others. The company's mission is to empower people to change the world, and it has a reputation for maintaining the highest standards of integrity and-excellence.

Industry

It services

Company size

10,000+ Employees

Headquarters location

McLean, VA, US

Year founded

1914