2

Remote Bug Bounty Program Jobs (NOW HIRING)

The development of the AWS researcher community is paramount to ensuring the success of our program ... Bug Bounty Program into the best on planet Earth. Key job responsibilities - Researching ...

The development of the AWS researcher community is paramount to ensuring the success of our program ... Bug Bounty Program into the best on planet Earth. Key job responsibilities - Researching ...

If you're located beyond that distance, the role is fully remote. For location-specific details ... Bug Bounty Program Management: Own and expand Vercel's bug bounty program. You will triage and ...

Senior Vulnerability Engineer

$117K - $160K/yr

This is a 100% remote position, with an opportunity to work a hybrid schedule for candidates based ... Support the execution of red team exercises, penetration tests, and bug bounty programs in ...

Our dedication to remote-first work, and strong culture of connection and global inclusion means ... Oversee the organization's bug bounty program, identifying trends in submissions to suggest broad ...

New

Contribute to our vulnerability management program, including triaging bug bounty and vulnerability disclosure reports and driving remediation efforts. * Security Automation : Develop and implement ...

Red Team Engineer/ Offensive Security Lead

$104K - $138K/yr

You will also assume ownership of security stage-gates within our CI/CD pipeline and support the operation of our internal Bug Bounty Program. If you've spent years thinking like an adversary and you ...

Senior Product Security Engineer

$117K - $160K/yr

Contribute to our vulnerability management program, including triaging bug bounty and vulnerability disclosure reports and driving remediation efforts. * Security Automation : Develop and implement ...

Senior Application Security Engineer

Meridian, ID · Remote

$111K - $152K/yr

This role will be remote. About the Opportunity Write a clear, high-level overview of the role ... Investigate, triage, and respond to Bug Bounty program submissions, validating findings and working ...

Senior Security Engineer

$117K - $160K/yr

Preferred : • Familiarity with compliance frameworks such as SOC 2, ISO 27001, and ISO 42001 • Hands-on experience in offensive security (eg, through bug bounty programs or CTFs) Company : Zip is ...

... our bug bounty program • Partner with engineering teams to design and deploy solutions which are inherently secure • Champion the use of tooling (linters, static analysis, posture assessment ...

next page

Showing results 1-20

Remote Bug Bounty Program information

See salary details

$16

$49

$78

How much do remote bug bounty program jobs pay per hour?

As of Jul 11, 2026, the average hourly pay for remote bug bounty program in the United States is $49.60, according to ZipRecruiter salary data. Most workers in this role earn between $31.73 and $66.83 per hour, depending on experience, location, and employer.

What are Remote Bug Bounty Programs?

Remote Bug Bounty Programs are initiatives run by organizations that invite independent security researchers, or 'bug hunters,' to find and report vulnerabilities in their software or systems. These programs are conducted entirely online, allowing participants from around the world to contribute remotely. Companies offer monetary rewards or other incentives for valid and impactful security findings. This approach helps organizations strengthen their security by leveraging a global pool of ethical hackers, while participants gain recognition and compensation for their expertise.

What are the biggest challenges faced by participants in a remote bug bounty program, and how can they be addressed?

One of the main challenges in remote bug bounty programs is staying motivated and disciplined without direct oversight, as participants often work independently. Additionally, understanding the specific security requirements and scope of each program can be complex, especially when dealing with varied platforms and reporting standards. To overcome these challenges, it's important to set personal goals, join online communities for peer support, and thoroughly review each program's documentation before starting. Effective communication with program coordinators can also help clarify expectations and facilitate successful submissions.

What is the difference between Remote Bug Bounty Program vs Remote Penetration Tester?

AspectRemote Bug Bounty ProgramRemote Penetration Tester
CredentialsTypically no formal certifications required, but cybersecurity knowledge helpsOften holds certifications like OSCP, CEH, or CISSP
Work EnvironmentParticipates remotely, often independently, on various platformsWorks remotely or on-site for clients, conducting security assessments
Employer & Industry UsageUsed by companies to crowdsource security testing; industry-wideEmployed by organizations or consulting firms to perform security audits

While both roles focus on cybersecurity, a Remote Bug Bounty Program involves independent testing on platforms to find vulnerabilities, whereas a Remote Penetration Tester conducts comprehensive security assessments for organizations, often with formal credentials and direct client engagement.

What are the key skills and qualifications needed to thrive in a Remote Bug Bounty Program role, and why are they important?

To thrive in a Remote Bug Bounty Program role, you need a strong background in cybersecurity, vulnerability assessment, and ethical hacking, often supported by experience in penetration testing and security certifications like OSCP or CEH. Familiarity with tools such as Burp Suite, Nmap, Metasploit, and various bug bounty platforms is essential. Attention to detail, persistence, effective communication, and self-motivation are standout soft skills for this position. These abilities are crucial for identifying and responsibly reporting security vulnerabilities that help organizations strengthen their defenses.
More about Remote Bug Bounty Program jobs
What cities are hiring for Remote Bug Bounty Program jobs? Cities with the most Remote Bug Bounty Program job openings:
What are the most commonly searched types of Bug Bounty Program jobs? The most popular types of Bug Bounty Program jobs are:
What states have the most Remote Bug Bounty Program jobs? States with the most job openings for Remote Bug Bounty Program jobs include:
Security Engineer, AWS Bug Bounty

Security Engineer, AWS Bug Bounty

Amazon

Remote

Full-time

Posted 4 days ago


Amazon rating

7.4

Company rating: 7.4 out of 10

Based on 6,956 frontline employees who took The Breakroom Quiz

6th of 39 rated national retailers


Job description

Application deadline: Jul 11, 2026
AWS Security is a global team tasked with keeping the cloud safe. To help deliver for customers on this promise, the AWS Bug Bounty team is seeking a security engineer with strong security analytic skills to join our team!
The primary responsibility of this role is to leverage your experience and internal knowledge of AWS systems to effectively triage a diverse set of incoming reports which can pertain to any of AWS's 200+ services. Technical dive deep and curiosity are a way of life on this team in order to establish the true severity of a report and what defense in depth mechanisms need to happen beyond just an immediate patch.
Automation is the key to scaling and innovation at AWS and in this role you will write automation to reduce the load on humans; everything from developing ticketing, reporting and trend identification automation.
AWS Bug Bounty has a diverse set of customers: service owners and engineers, security leadership as well as our external crowd of researchers

Strong communication skills are required when providing excellent customer service for our customers, especially when growing our external crowd. As an engineer on the team, you will be expected to help deliver insights to leadership and assist service teams in prioritizing and remediating difficult security problems.
The development of the AWS researcher community is paramount to ensuring the success of our program and of our customers. As such we seek to earn researcher trust by being as transparent as possible with our responses to their reporting and our reward structures

As part of this team you will be expected to develop external messaging for both researchers and our own customer base. Above all else, a strong sense of Customer obsession is necessary to focus on the ultimate goal of keeping Amazon and its Customers secure with the highest priority.
This role will provide you with challenging opportunities, both technologically and as a leader to grow AWS's Bug Bounty Program into the best on planet Earth.
Key job responsibilities
- Researching, reproducing, and responding to security issues reported through the bug bounty program
- Technical Escalation
- Managing relationships with external security researchers working with AWS's bug bounty program
- Perform deep analysis of new vulnerability classes
- Driving improvements to team tooling, automation, and processes
- Influencing program direction
- Identify and drive resolution of vulnerability trends
- Attend industry conferences and assist in hosting on site hack-a-thons and other researcher engagement activities
A day in the life
Our mornings typically start by looking at the queue of submitted reports that have already undergone initial triage by our third party partners

We single out reports that need urgent attention and then do a deep dive: reproducing, root causing and where appropriate extending the findings in the report to demonstrate maximum impact. Once done we coordinate with the internal stakeholders to drive the report until remediation.
We maintain a close partnership with other security teams across Amazon to surface reports and trend data that are relevant to their mission.
About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply

If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
In Amazon Security, it's in our nature to learn and be curious

Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony

Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there's nothing we can't achieve. .


What Amazon employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


Amazon logo

About Amazon

Sourced by ZipRecruiter

Amazon.com, Inc., commonly known as Amazon, is an American multinational technology company. It was founded by Jeff Bezos in 1994 and initially started as an online marketplace for books. Since then, Amazon has expanded its operations and become one of the largest e-commerce companies in the world. Amazon's primary business is its online retail platform, where customers can purchase a vast array of products, including electronics, clothing, books, home goods, and much more. The company offers a convenient and user-friendly shopping experience, with features such as fast shipping, customer reviews, and personalized recommendations. In addition to its e-commerce platform, Amazon has diversified its business into various other areas. One of its notable ventures is Amazon Web Services (AWS), a comprehensive cloud computing platform that provides services such as storage, compute power, and database management to individuals and businesses. AWS has become a leader in the cloud computing industry, powering many websites and applications worldwide. Amazon has also developed its own consumer electronics, including the popular Amazon Kindle e-reader, Fire tablets, Fire TV streaming devices, and the Alexa-powered Echo smart speakers. The Alexa voice assistant, integrated into these devices, allows users to interact with their devices using voice commands, perform tasks, and access information. Furthermore, Amazon has expanded into media and entertainment. It operates Prime Video, a streaming service that offers a wide range of movies, TV shows, and original content. Amazon Music provides a platform for streaming and purchasing digital music, while Audible offers audiobooks and other audio content. The company's commitment to customer satisfaction and convenience is demonstrated by its membership program, Amazon Prime. Prime members receive various benefits, including free two-day shipping, access to streaming services, exclusive deals, and more.

Industry

It services, book publishers, retail, real estate and computer and electronic product manufacturing

Company size

10,000+ Employees

Headquarters location

Seattle, WA, US