Professional penetration testing or Bug Bounty experience. Preferred Certifications: * OSCP, OSWA, OSWE, eWPT, BSCP, GPEN, or GWAPT. Job Type: Remote Time Zone: CST Duration : 3M+ Extendible
Professional penetration testing or Bug Bounty experience. Preferred Certifications: * OSCP, OSWA, OSWE, eWPT, BSCP, GPEN, or GWAPT. Job Type: Remote Time Zone: CST Duration : 3M+ Extendible
Senior Vulnerability Engineer
$117K - $160K/yr
This is a 100% remote position, with an opportunity to work a hybrid schedule for candidates based ... Correlate red team, penetration testing, and bug bounty findings with vulnerability data to ...
Senior Vulnerability Engineer
$117K - $160K/yr
This is a 100% remote position, with an opportunity to work a hybrid schedule for candidates based ... Correlate red team, penetration testing, and bug bounty findings with vulnerability data to ...
Run Bug Bounty Operations: Serve as the expert validation layer for Smartsheet's bug bounty program ... Remote
Run Bug Bounty Operations: Serve as the expert validation layer for Smartsheet's bug bounty program ... Remote
$45.25 - $60.50/hr
The environment is highly collaborative, remote-first, and built for engineers who enjoy solving real-world security challenges at scale. Accountabilities: * Own and manage bug bounty intake ...
$45.25 - $60.50/hr
The environment is highly collaborative, remote-first, and built for engineers who enjoy solving real-world security challenges at scale. Accountabilities: * Own and manage bug bounty intake ...
Prior experience selling crowdsourced security, Bug Bounty, or Attack Surface Management solutions ... Environment - remote, work-from-home 100% of the time. Pay Range Disclosure At Bugcrowd, we strive ...
Prior experience selling crowdsourced security, Bug Bounty, or Attack Surface Management solutions ... Environment - remote, work-from-home 100% of the time. Pay Range Disclosure At Bugcrowd, we strive ...
Application Security Engineer
Alafaya, FL · Remote
$95 - $104/hr
Remote Duration: Contract - 6+ months Pay Rate Range: $95.00 - $104.00 per hour (DOE ... Requirements: * 3+ years of experience in application security, penetration testing, bug bounty ...
Application Security Engineer
Alafaya, FL · Remote
$95 - $104/hr
Remote Duration: Contract - 6+ months Pay Rate Range: $95.00 - $104.00 per hour (DOE ... Requirements: * 3+ years of experience in application security, penetration testing, bug bounty ...
Active involvement in cybersecurity communities, research, or bug bounty programs * Certifications ... Flexible work hours with hybrid remote options * Opportunity to work with international ...
Active involvement in cybersecurity communities, research, or bug bounty programs * Certifications ... Flexible work hours with hybrid remote options * Opportunity to work with international ...
Principal Application Security Engineer
OR · Remote
$58.75 - $78.50/hr
This role can be fully remote and must reside in US. In this role, you will help us drive our ... Drive our security assessment, penetration testing and bug bounty programs * Participate in ...
Principal Application Security Engineer
OR · Remote
$58.75 - $78.50/hr
This role can be fully remote and must reside in US. In this role, you will help us drive our ... Drive our security assessment, penetration testing and bug bounty programs * Participate in ...
Remote (U.S.) - Georgia preferred This is a fully remote role. Candidates must be authorized to ... bug bounty programs • Security research publications or blog posts • Contributions to open ...
Remote (U.S.) - Georgia preferred This is a fully remote role. Candidates must be authorized to ... bug bounty programs • Security research publications or blog posts • Contributions to open ...
Security Engineer
San Francisco, CA · Remote
Help run penetration testing, offensive security exercises, and support our bug bounty program ... Remote
Security Engineer
San Francisco, CA · Remote
Help run penetration testing, offensive security exercises, and support our bug bounty program ... Remote
Sr/Staff Security Engineer
$117K - $160K/yr
Conduct or coordinate penetration tests, red team exercises, and bug bounty triage; drive ... Fully remote company * Flexible PTO
Sr/Staff Security Engineer
$117K - $160K/yr
Conduct or coordinate penetration tests, red team exercises, and bug bounty triage; drive ... Fully remote company * Flexible PTO
Offensive Security Engineer, Technical Lead (In Office or Remote)
Mclean, VA · On-site +1
$150K - $224K/yr
Demonstrate proficiency in chosen domain using public research, personal blog, active projects, bug bounty, and public disclosures. * Must be willing to work east coast hours We consider all ...
Offensive Security Engineer, Technical Lead (In Office or Remote)
Mclean, VA · On-site +1
$150K - $224K/yr
Demonstrate proficiency in chosen domain using public research, personal blog, active projects, bug bounty, and public disclosures. * Must be willing to work east coast hours We consider all ...
Application Security Engineer- Remote
$60.25 - $80.25/hr
Application Security Engineer - Remote or Hybrid | Cary, North Carolina We're a leader in data and ... Triage security findings received through a public bug bounty program, communicating with both the ...
Application Security Engineer- Remote
$60.25 - $80.25/hr
Application Security Engineer - Remote or Hybrid | Cary, North Carolina We're a leader in data and ... Triage security findings received through a public bug bounty program, communicating with both the ...
Application Security Engineer
OR · Remote
$58.75 - $78.50/hr
Take part in our security assessment, penetration testing and bug bounty programs * Participate in ... Ability to work extended hours as required #LI-JC1 #LI-REMOTE
Application Security Engineer
OR · Remote
$58.75 - $78.50/hr
Take part in our security assessment, penetration testing and bug bounty programs * Participate in ... Ability to work extended hours as required #LI-JC1 #LI-REMOTE
Application Security Engineer
Post Falls, ID · On-site +1
$175K/yr
This is a remote position, but if you're near one of our local offices, you're welcome to come ... party bug bounty program pen tester, or in a similar security type role. Your job will be to ...
Application Security Engineer
Post Falls, ID · On-site +1
$175K/yr
This is a remote position, but if you're near one of our local offices, you're welcome to come ... party bug bounty program pen tester, or in a similar security type role. Your job will be to ...
Engineer Sr., Application Security
Miami, FL · Remote
$56.25 - $75/hr
... bug bounty programs. * Implement and automate new governance processes and controls to ensure that ... This position is classified as "remote." As a remote role, it allows employees to work full-time ...
Engineer Sr., Application Security
Miami, FL · Remote
$56.25 - $75/hr
... bug bounty programs. * Implement and automate new governance processes and controls to ensure that ... This position is classified as "remote." As a remote role, it allows employees to work full-time ...
Senior Application Security Engineer
Austin, TX · Remote
$180K - $210K/yr
Background meaningfully contributing to a bug bounty program * Experience with identity and access ... Remote
Senior Application Security Engineer
Austin, TX · Remote
$180K - $210K/yr
Background meaningfully contributing to a bug bounty program * Experience with identity and access ... Remote
Sr. Application Security Engineer
$60.25 - $80.25/hr
... moving, remote-first environment. Essential Functions and Responsibilities: * Lead security ... Own and operate the company's bug bounty program end-to-end: define program strategy and scope ...
Sr. Application Security Engineer
$60.25 - $80.25/hr
... moving, remote-first environment. Essential Functions and Responsibilities: * Lead security ... Own and operate the company's bug bounty program end-to-end: define program strategy and scope ...
Engineer Sr., Application Security
Miami, FL · Remote
$56.25 - $75/hr
... bug bounty programs. * Implement and automate new governance processes and controls to ensure that ... This position is classified as "remote." As a remote role, it allows employees to work full-time ...
Engineer Sr., Application Security
Miami, FL · Remote
$56.25 - $75/hr
... bug bounty programs. * Implement and automate new governance processes and controls to ensure that ... This position is classified as "remote." As a remote role, it allows employees to work full-time ...
Information Security Technical Analyst
Oakland, CA · Remote
$45 - $55/hr
Remote (West Coast - PST) Duration: 12-Month Contract Travel: None Compensation: $45-55/hr Note: A ... Support bug bounty programs by prioritizing and coordinating remediation efforts * Contribute to ...
Quick apply
Information Security Technical Analyst
Oakland, CA · Remote
$45 - $55/hr
Remote (West Coast - PST) Duration: 12-Month Contract Travel: None Compensation: $45-55/hr Note: A ... Support bug bounty programs by prioritizing and coordinating remediation efforts * Contribute to ...
Remote Bug Bounty information
See salary details
$25 - $25.83
0% of jobs
$25.83 - $26.66
0% of jobs
$26.66 - $27.49
0% of jobs
$27.49 - $28.32
0% of jobs
$28.32 - $29.15
0% of jobs
$29.15 - $29.98
18% of jobs
$30.06 is the 25th percentile. Wages below this are outliers.
$29.98 - $30.81
71% of jobs
$30.81 - $31.64
3% of jobs
$31.64 - $32.47
2% of jobs
$32.47 - $33.30
3% of jobs
$33.30 - $34.13
2% of jobs
$25
$30
$34
How much do remote bug bounty jobs pay per hour?
As of Jun 8, 2026, the average hourly pay for remote bug bounty in the United States is $30.69, according to ZipRecruiter salary data. Most workers in this role earn between $30.05 and $30.05 per hour, depending on experience, location, and employer.
What is the difference between Remote Bug Bounty vs Remote Penetration Tester?
| Aspect | Remote Bug Bounty | Remote Penetration Tester |
|---|---|---|
| Credentials | Knowledge of security vulnerabilities, bug bounty platforms | Certifications like OSCP, CEH, CISSP often preferred |
| Work Environment | Freelance, project-based, remote | Consulting, in-house or remote, often more structured |
| Industry Usage | Tech companies, cybersecurity platforms, bug bounty programs | Security firms, corporate security teams, consulting firms |
| Search & Comparison Intent | Focus on finding vulnerabilities through bug bounty programs | Focus on conducting comprehensive security assessments |
Remote Bug Bounty roles involve identifying vulnerabilities via bug bounty platforms, often freelance and project-based. Remote Penetration Testers perform in-depth security assessments, usually with formal certifications and structured engagements. While both roles require cybersecurity knowledge, bug bounty work emphasizes finding bugs in live environments, whereas penetration testing involves simulated attacks to evaluate security posture.
What is a Remote Bug Bounty hunter?
A Remote Bug Bounty hunter is a cybersecurity professional who works from any location to find and report vulnerabilities in software, websites, or systems. They participate in bug bounty programs offered by companies or platforms, which reward individuals for responsibly disclosing security flaws. Remote Bug Bounty hunters use their skills to test for issues such as cross-site scripting, SQL injection, or authentication weaknesses. Their work helps organizations improve their security and protect user data, while also earning rewards or recognition for their discoveries.
What are the key skills and qualifications needed to thrive as a Remote Bug Bounty Hunter, and why are they important?
To thrive as a Remote Bug Bounty Hunter, you need a solid understanding of cybersecurity concepts, vulnerability assessment, and web application security, often supported by knowledge from certifications like CEH or OSCP. Familiarity with tools such as Burp Suite, Nmap, Metasploit, and automated scanning platforms is essential for identifying and reporting security flaws. Attention to detail, persistence, and strong written communication skills distinguish top performers in this field. These skills and qualities are crucial to effectively discovering, documenting, and responsibly disclosing vulnerabilities in diverse remote environments.
What are some common challenges remote bug bounty hunters face when working independently?
Remote bug bounty hunters often encounter challenges such as staying motivated without direct supervision, managing communication across different time zones with program managers, and keeping up with the latest security vulnerabilities and tools on their own. Additionally, prioritizing which programs to participate in and efficiently documenting findings for submission can be demanding. Building a professional network remotely and managing a healthy work-life balance are also important aspects to consider for long-term success.
More about Remote Bug Bounty jobs
What cities are hiring for Remote Bug Bounty jobs? Cities with the most Remote Bug Bounty job openings:
What are the most commonly searched types of Bug Bounty jobs? The most popular types of Bug Bounty jobs are:
What states have the most Remote Bug Bounty jobs? States with the most job openings for Remote Bug Bounty jobs include:
What job categories do people searching Remote Bug Bounty jobs look for? The top searched job categories for Remote Bug Bounty jobs are:
Job description
The Staff/Senior Staff IT Developer (Application Security) will design and secure internal applications, conduct security code reviews, perform penetration testing, and collaborate with cross-functional teams in an Agile environment.
Key Responsibilities:
Job Type: Remote
Time Zone: CST
Duration: 3M+ Extendible
Key Responsibilities:
- Design secure, scalable IT solutions focused on performance.
- Conduct security code reviews for quality and best practices.
- Identify and remediate vulnerabilities (e.g., XSS, SQLi, CSRF, SSRF).
- Perform web app penetration testing (manual/automated).
- Evaluate SAST/DAST findings and manage issues in Jira.
- Validate bug bounty vulnerabilities.
- Translate business requirements into technical specifications.
- Troubleshoot complex issues and support Engineering teams.
- Document designs, processes, and configurations.
- Provide technical guidance as a subject matter expert.
- Mitigate technical risks and foster innovation in Agile teams.
- Bachelor's in Computer Science, Cybersecurity, or equivalent.
- 5+ years in software development, including hands-on coding in languages like Java, Dart, JavaScript, TypeScript, Python, Go, or Kotlin, with a focus on secure coding practices.
- 2-3 years in a lead or senior capacity, demonstrating ability to guide technical decisions, mentor teams, or architect complex systems.
- 3+ years in application security, including professional penetration testing or equivalent Bug Bounty experience, with expertise in identifying and mitigating vulnerabilities (e.g., XSS, SQLi, CSRF).
- Practical experience with tools like Burp Suite Pro, SAST/DAST, and platforms like AWS/GCP/Azure, Kubernetes, Docker, and GitHub.
- Experience with AWS/GCP/Azure, SQL databases, RESTful APIs, GitHub.
- Advanced penetration testing skills; proficient with Burp Suite Pro.
- Knowledge of cryptographic algorithms (AES, SHA, HMAC, RSA, ECC).
- Familiarity with OWASP Top 10 and security best practices.
- Experience with Agile (Scrum, Kanban).
- Strong problem-solving and communication skills.
- Professional penetration testing or Bug Bounty experience.
- OSCP, OSWA, OSWE, eWPT, BSCP, GPEN, or GWAPT.
Job Type: Remote
Time Zone: CST
Duration: 3M+ Extendible
About Right Skale
Sourced by ZipRecruiter
Industry
Software development
Company size
201 - 500 Employees
Headquarters location
Pleasanton, CA, US
Year founded
2016