Professional penetration testing or Bug Bounty experience. Preferred Certifications: * OSCP, OSWA, OSWE, eWPT, BSCP, GPEN, or GWAPT. Job Type: Remote Time Zone: CST Duration : 3M+ Extendible
Professional penetration testing or Bug Bounty experience. Preferred Certifications: * OSCP, OSWA, OSWE, eWPT, BSCP, GPEN, or GWAPT. Job Type: Remote Time Zone: CST Duration : 3M+ Extendible
Senior Vulnerability Engineer
$117K - $160K/yr
This is a 100% remote position, with an opportunity to work a hybrid schedule for candidates based ... Correlate red team, penetration testing, and bug bounty findings with vulnerability data to ...
Senior Vulnerability Engineer
$117K - $160K/yr
This is a 100% remote position, with an opportunity to work a hybrid schedule for candidates based ... Correlate red team, penetration testing, and bug bounty findings with vulnerability data to ...
With a growing engineering org, an active bug bounty program fielding 30+ open submissions at any ... Remote first global workforce * Industry leading Medical, Dental and Vision health insurance*
With a growing engineering org, an active bug bounty program fielding 30+ open submissions at any ... Remote first global workforce * Industry leading Medical, Dental and Vision health insurance*
If you're located beyond that distance, the role is fully remote. For location-specific details ... Bug Bounty Program Management: Own and expand Vercel's bug bounty program. You will triage and ...
If you're located beyond that distance, the role is fully remote. For location-specific details ... Bug Bounty Program Management: Own and expand Vercel's bug bounty program. You will triage and ...
2229 Information Security Engineer IV
Cincinnati, OH · Remote
$148K - $166K/yr
REMOTE EST/CST Years of Experience: 5-20 TOP SKILLS: Must Have * Experience with vulnerability ... ESSENTIAL DUTIES & RESPONSIBILITIES: · VDP & Bug Bounty Triage o Review and triage vulnerability ...
Quick apply
2229 Information Security Engineer IV
Cincinnati, OH · Remote
$148K - $166K/yr
REMOTE EST/CST Years of Experience: 5-20 TOP SKILLS: Must Have * Experience with vulnerability ... ESSENTIAL DUTIES & RESPONSIBILITIES: · VDP & Bug Bounty Triage o Review and triage vulnerability ...
Run Bug Bounty Operations: Serve as the expert validation layer for Smartsheet's bug bounty program ... Remote
Run Bug Bounty Operations: Serve as the expert validation layer for Smartsheet's bug bounty program ... Remote
$106K - $145K/yr
... bug bounty. Drive findings to closure and feed recurring issues back into preventive controls ... We have a hybrid model in our Limassol office, or fully remote outside office locations. * We ...
$106K - $145K/yr
... bug bounty. Drive findings to closure and feed recurring issues back into preventive controls ... We have a hybrid model in our Limassol office, or fully remote outside office locations. * We ...
Division Security Champion
Exton, PA · Remote
Oversee incident response, vulnerability remediation, forensics, post-mortems, and bug bounty ... REMOTE
Division Security Champion
Exton, PA · Remote
Oversee incident response, vulnerability remediation, forensics, post-mortems, and bug bounty ... REMOTE
Division Security Champion
Exton, PA · Remote
Oversee incident response, vulnerability remediation, forensics, post-mortems, and bug bounty ... REMOTE
Division Security Champion
Exton, PA · Remote
Oversee incident response, vulnerability remediation, forensics, post-mortems, and bug bounty ... REMOTE
Enterprise Account Executive
Chicago, IL · On-site +1
Prior experience selling crowdsourced security, Bug Bounty, or Attack Surface Management solutions ... Environment - remote, work-from-home 100% of the time. Pay Range Disclosure At Bugcrowd, we strive ...
Enterprise Account Executive
Chicago, IL · On-site +1
Prior experience selling crowdsourced security, Bug Bounty, or Attack Surface Management solutions ... Environment - remote, work-from-home 100% of the time. Pay Range Disclosure At Bugcrowd, we strive ...
Remote Commitment: 10-40 hours/week What You'll Do * Review and analyze real-world application ... Experience in penetration testing, secure code review, or bug bounty programs * Familiarity with ...
Remote Commitment: 10-40 hours/week What You'll Do * Review and analyze real-world application ... Experience in penetration testing, secure code review, or bug bounty programs * Familiarity with ...
Senior Application Security Engineer
OR · Remote
$114K - $156K/yr
This role will be remote. About the Opportunity Our SRE/Cloud Security teams are a dynamic blend of ... Investigate, triage, and respond to Bug Bounty program submissions, validating findings and working ...
Quick apply
Senior Application Security Engineer
OR · Remote
$114K - $156K/yr
This role will be remote. About the Opportunity Our SRE/Cloud Security teams are a dynamic blend of ... Investigate, triage, and respond to Bug Bounty program submissions, validating findings and working ...
Senior Application Security Engineer
New York, NY · Remote
$125K - $171K/yr
This role will be remote. About the Opportunity Our SRE/Cloud Security teams are a dynamic blend of ... Investigate, triage, and respond to Bug Bounty program submissions, validating findings and working ...
Senior Application Security Engineer
New York, NY · Remote
$125K - $171K/yr
This role will be remote. About the Opportunity Our SRE/Cloud Security teams are a dynamic blend of ... Investigate, triage, and respond to Bug Bounty program submissions, validating findings and working ...
Senior Application Security Engineer
Meridian, ID · Remote
$111K - $152K/yr
This role will be remote. About the Opportunity 👉 Write a clear, high-level overview of the role ... Investigate, triage, and respond to Bug Bounty program submissions, validating findings and working ...
Senior Application Security Engineer
Meridian, ID · Remote
$111K - $152K/yr
This role will be remote. About the Opportunity 👉 Write a clear, high-level overview of the role ... Investigate, triage, and respond to Bug Bounty program submissions, validating findings and working ...
Senior Product Security Engineer II
OR · Remote
$114K - $156K/yr
Bug bounty research experience #LI-Remote
Senior Product Security Engineer II
OR · Remote
$114K - $156K/yr
Bug bounty research experience #LI-Remote
Active involvement in cybersecurity communities, research, or bug bounty programs * Certifications ... Flexible work hours with hybrid remote options * Opportunity to work with international ...
Active involvement in cybersecurity communities, research, or bug bounty programs * Certifications ... Flexible work hours with hybrid remote options * Opportunity to work with international ...
Principal Application Security Engineer
OR · Remote
$58.75 - $78.50/hr
This role can be fully remote and must reside in US. In this role, you will help us drive our ... Drive our security assessment, penetration testing and bug bounty programs * Participate in ...
Principal Application Security Engineer
OR · Remote
$58.75 - $78.50/hr
This role can be fully remote and must reside in US. In this role, you will help us drive our ... Drive our security assessment, penetration testing and bug bounty programs * Participate in ...
Security Engineer 1, Application Security - Remote US
$60.25 - $80.25/hr
CTF wins, published CVEs, bug bounty finds, or security research that shows you can actually ... Our team is global and remote-first. However, if you are interested in moving to NYC, we offer $10 ...
Security Engineer 1, Application Security - Remote US
$60.25 - $80.25/hr
CTF wins, published CVEs, bug bounty finds, or security research that shows you can actually ... Our team is global and remote-first. However, if you are interested in moving to NYC, we offer $10 ...
Remote - within the United States This is a fully remote role. Candidates must be authorized to ... bug bounty programs • Security research publications or blog posts • Contributions to open ...
Remote - within the United States This is a fully remote role. Candidates must be authorized to ... bug bounty programs • Security research publications or blog posts • Contributions to open ...
Sr/Staff Security Engineer
$117K - $160K/yr
Conduct or coordinate penetration tests, red team exercises, and bug bounty triage; drive ... Fully remote company * Flexible PTO
Sr/Staff Security Engineer
$117K - $160K/yr
Conduct or coordinate penetration tests, red team exercises, and bug bounty triage; drive ... Fully remote company * Flexible PTO
Remote Bug Bounty information
See salary details
$25 - $25.83
0% of jobs
$25.83 - $26.66
0% of jobs
$26.66 - $27.49
0% of jobs
$27.49 - $28.32
0% of jobs
$28.32 - $29.15
0% of jobs
$29.15 - $29.98
18% of jobs
$30.06 is the 25th percentile. Wages below this are outliers.
$29.98 - $30.81
71% of jobs
$30.81 - $31.64
3% of jobs
$31.64 - $32.47
2% of jobs
$32.47 - $33.30
3% of jobs
$33.30 - $34.13
2% of jobs
$25
$30
$34
How much do remote bug bounty jobs pay per hour?
As of Jun 29, 2026, the average hourly pay for remote bug bounty in the United States is $30.69, according to ZipRecruiter salary data. Most workers in this role earn between $30.05 and $30.05 per hour, depending on experience, location, and employer.
What is the difference between Remote Bug Bounty vs Remote Penetration Tester?
| Aspect | Remote Bug Bounty | Remote Penetration Tester |
|---|---|---|
| Credentials | Knowledge of security vulnerabilities, bug bounty platforms | Certifications like OSCP, CEH, CISSP often preferred |
| Work Environment | Freelance, project-based, remote | Consulting, in-house or remote, often more structured |
| Industry Usage | Tech companies, cybersecurity platforms, bug bounty programs | Security firms, corporate security teams, consulting firms |
| Search & Comparison Intent | Focus on finding vulnerabilities through bug bounty programs | Focus on conducting comprehensive security assessments |
Remote Bug Bounty roles involve identifying vulnerabilities via bug bounty platforms, often freelance and project-based. Remote Penetration Testers perform in-depth security assessments, usually with formal certifications and structured engagements. While both roles require cybersecurity knowledge, bug bounty work emphasizes finding bugs in live environments, whereas penetration testing involves simulated attacks to evaluate security posture.
What is a Remote Bug Bounty hunter?
A Remote Bug Bounty hunter is a cybersecurity professional who works from any location to find and report vulnerabilities in software, websites, or systems. They participate in bug bounty programs offered by companies or platforms, which reward individuals for responsibly disclosing security flaws. Remote Bug Bounty hunters use their skills to test for issues such as cross-site scripting, SQL injection, or authentication weaknesses. Their work helps organizations improve their security and protect user data, while also earning rewards or recognition for their discoveries.
What are the key skills and qualifications needed to thrive as a Remote Bug Bounty Hunter, and why are they important?
To thrive as a Remote Bug Bounty Hunter, you need a solid understanding of cybersecurity concepts, vulnerability assessment, and web application security, often supported by knowledge from certifications like CEH or OSCP. Familiarity with tools such as Burp Suite, Nmap, Metasploit, and automated scanning platforms is essential for identifying and reporting security flaws. Attention to detail, persistence, and strong written communication skills distinguish top performers in this field. These skills and qualities are crucial to effectively discovering, documenting, and responsibly disclosing vulnerabilities in diverse remote environments.
What are some common challenges remote bug bounty hunters face when working independently?
Remote bug bounty hunters often encounter challenges such as staying motivated without direct supervision, managing communication across different time zones with program managers, and keeping up with the latest security vulnerabilities and tools on their own. Additionally, prioritizing which programs to participate in and efficiently documenting findings for submission can be demanding. Building a professional network remotely and managing a healthy work-life balance are also important aspects to consider for long-term success.
More about Remote Bug Bounty jobs
What cities are hiring for Remote Bug Bounty jobs? Cities with the most Remote Bug Bounty job openings:
What are the most commonly searched types of Bug Bounty jobs? The most popular types of Bug Bounty jobs are:
What states have the most Remote Bug Bounty jobs? States with the most job openings for Remote Bug Bounty jobs include:
What job categories do people searching Remote Bug Bounty jobs look for? The top searched job categories for Remote Bug Bounty jobs are:
Job description
The Staff/Senior Staff IT Developer (Application Security) will design and secure internal applications, conduct security code reviews, perform penetration testing, and collaborate with cross-functional teams in an Agile environment.
Key Responsibilities:
Job Type: Remote
Time Zone: CST
Duration: 3M+ Extendible
Key Responsibilities:
- Design secure, scalable IT solutions focused on performance.
- Conduct security code reviews for quality and best practices.
- Identify and remediate vulnerabilities (e.g., XSS, SQLi, CSRF, SSRF).
- Perform web app penetration testing (manual/automated).
- Evaluate SAST/DAST findings and manage issues in Jira.
- Validate bug bounty vulnerabilities.
- Translate business requirements into technical specifications.
- Troubleshoot complex issues and support Engineering teams.
- Document designs, processes, and configurations.
- Provide technical guidance as a subject matter expert.
- Mitigate technical risks and foster innovation in Agile teams.
- Bachelor's in Computer Science, Cybersecurity, or equivalent.
- 5+ years in software development, including hands-on coding in languages like Java, Dart, JavaScript, TypeScript, Python, Go, or Kotlin, with a focus on secure coding practices.
- 2-3 years in a lead or senior capacity, demonstrating ability to guide technical decisions, mentor teams, or architect complex systems.
- 3+ years in application security, including professional penetration testing or equivalent Bug Bounty experience, with expertise in identifying and mitigating vulnerabilities (e.g., XSS, SQLi, CSRF).
- Practical experience with tools like Burp Suite Pro, SAST/DAST, and platforms like AWS/GCP/Azure, Kubernetes, Docker, and GitHub.
- Experience with AWS/GCP/Azure, SQL databases, RESTful APIs, GitHub.
- Advanced penetration testing skills; proficient with Burp Suite Pro.
- Knowledge of cryptographic algorithms (AES, SHA, HMAC, RSA, ECC).
- Familiarity with OWASP Top 10 and security best practices.
- Experience with Agile (Scrum, Kanban).
- Strong problem-solving and communication skills.
- Professional penetration testing or Bug Bounty experience.
- OSCP, OSWA, OSWE, eWPT, BSCP, GPEN, or GWAPT.
Job Type: Remote
Time Zone: CST
Duration: 3M+ Extendible
About Right Skale
Sourced by ZipRecruiter
Industry
Software development
Company size
201 - 500 Employees
Headquarters location
Pleasanton, CA, US
Year founded
2016