1

Internship Bug Bounty Jobs (NOW HIRING)

Internship Bug Bounty information

See salary details

$8

$15

$21

How much do internship bug bounty jobs pay per hour?

As of Jul 11, 2026, the average hourly pay for internship bug bounty in the United States is $15.54, according to ZipRecruiter salary data. Most workers in this role earn between $12.50 and $17.55 per hour, depending on experience, location, and employer.

What are Internship Bug Bounty programs?

Internship Bug Bounty programs are opportunities for students or early-career professionals to gain hands-on experience in cybersecurity by participating in bug bounty initiatives. Participants help organizations find and report security vulnerabilities in their software or systems, often receiving rewards or recognition for their findings. These internships combine learning with practical, real-world experience and can help build valuable skills for a future career in security. They are ideal for those interested in ethical hacking, cybersecurity research, and improving overall digital safety.

What types of projects or tasks can I expect to work on during an Internship Bug Bounty role?

As an intern in a Bug Bounty program, you will typically be involved in identifying, reporting, and documenting security vulnerabilities in web applications, software, or networks. Your daily tasks may include participating in penetration testing exercises, conducting vulnerability assessments, and collaborating with experienced security professionals to learn best practices in ethical hacking. You'll also have opportunities to contribute to security research, write detailed vulnerability reports, and sometimes engage directly with development or IT teams to discuss findings and remediation steps. This hands-on experience helps build valuable technical and communication skills relevant to a career in cybersecurity.

What are the key skills and qualifications needed to thrive as a Bug Bounty Intern, and why are they important?

To thrive as a Bug Bounty Intern, you need a foundational understanding of cybersecurity concepts, web application security, and commonly exploited vulnerabilities, often supported by coursework or self-study in information security. Familiarity with tools like Burp Suite, OWASP ZAP, and basic scripting or programming languages, as well as knowledge of platforms such as HackerOne or Bugcrowd, is typically expected. Attention to detail, curiosity, persistence, and strong written communication set standout candidates apart, especially when documenting findings. These skills and qualities are crucial for effectively identifying, exploiting, and reporting security vulnerabilities in real-world systems.

What is the difference between Internship Bug Bounty vs Security Analyst?

AspectInternship Bug BountySecurity Analyst
Required CredentialsBasic cybersecurity knowledge, certifications like CompTIA Security+ (preferred)Advanced certifications like CISSP, CISA often required
Work EnvironmentProject-based, remote or on-site, often freelance or part-timeFull-time, corporate or agency setting, structured environment
Employer & Industry UsageTech companies, startups, independent platformsLarge organizations, government agencies, consulting firms

Internship Bug Bounty roles focus on gaining hands-on experience by participating in bug bounty programs, often in a flexible, project-based setting. Security Analysts typically hold more advanced roles with formal responsibilities in protecting organizational assets. While both roles involve cybersecurity, internships are entry-level and learning-focused, whereas Security Analysts are more experienced and responsible for ongoing security strategies.

More about Internship Bug Bounty jobs
What cities are hiring for Internship Bug Bounty jobs? Cities with the most Internship Bug Bounty job openings:
What are the most commonly searched types of Bug Bounty jobs? The most popular types of Bug Bounty jobs are:
What states have the most Internship Bug Bounty jobs? States with the most job openings for Internship Bug Bounty jobs include:
Infographic showing various Internship Bug Bounty job openings in the United States as of July 2026, with employment types broken down into 1% Locum Tenens, 86% Full Time, 7% Part Time, 1% Temporary, 1% Contract, and 4% Summer. Highlights an 87% Physical, 1% Hybrid, and 12% Remote job distribution, with an average salary of $32,333 per year, or $15.5 per hour.
Senior Product Security Engineer

Senior Product Security Engineer

Persona Identities, Inc

San Francisco, CA • On-site

$200K - $280K/yr

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 20 days ago


Job description

About Persona
Persona is the configurable identity platform built for businesses in a digital-first world. Verifying individuals and organizations is harder - but more important - than ever, with AI enabling fraudsters to launch sophisticated accounts at scale and regulations evolving rapidly.
We've built Persona to support practically every use case and industry - that's why we're able to serve a wide range of leading companies. For example, Reddit relies on Persona for age assurance and verification to comply with online safety regulations, protecting younger users while maintaining a seamless experience. Meanwhile, OpenAI relies on Persona to keep bad actors out, protecting one of the world's most powerful AI platforms from large-scale abuse in a time when AI is reshaping the way we work and live.
We're growing rapidly and looking for exceptional people to join us!
About the Role
Persona builds identity verification infrastructure where security isn't a layer we add later, it's core to everything we ship. When security fails at most companies, systems go down. At an identity verification company, real people's identities are compromised.
As AI tooling expands what engineers can build and how fast they can build it, the attack surface grows with it. Someone proactively needs to own that problem.
What you'll work on
This is a product security role embedded in a generalist security team. Right now that means:
  • Drive the full vulnerability lifecycle and how Persona responds to external threats.
  • Design and build autonomous systems and AI tooling that scale security across every team and product
  • Partner with product engineers to shape how new features and systems get built securely
  • Shape Persona's presence in the security research community - running the bug bounty program that powers it

Must-haves
  • 6+ years of software engineering experience
  • 3+ years in product security
  • You've translated security risk into product decisions with non-technical stakeholders
  • You've embedded security into an eng team's SDLC without becoming the team that says no to everything

Nice to have
  • Familiarity with SAST/DAST tooling, dependency scanning, or bug bounty programs
  • Compliance experience (SOC 2, HIPAA) in a cloud-native environment
  • You've built systems where data sensitivity wasn't an afterthought - HIPAA, financial data, identity, etc.

The team
Small and senior by design. High ownership from day one - this isn't a team where your work disappears into a large org.
Based in SF. Relocation assistance available.
Benefits and Perks
For full-time US-based employees (excluding internship and contractor opportunities), Persona offers a wide range of benefits, including medical, dental, and vision, 3% 401(k) contribution, unlimited PTO, quarterly mental health days, family planning benefits, professional development stipend, wellness benefits, among others.
For full-time UK employees, Persona offers a wide range of benefits, including private medical insurance, dental insurance, a 6% employer pension contribution, unlimited PTO, a monthly wellness stipend, professional development stipend, co-working stipend, and more.
As part of our interview process, all candidates will be asked to verify their identity with Persona. This step is used solely to confirm that candidates are who they say they are, and will have no impact on hiring decisions.