1

Senior Bug Bounty Jobs (NOW HIRING)

... senior leaders, engineering teams, and external researchers - Own the long-term roadmap for specific areas of the Bug Bounty program and influence the broader team strategy A day in the life You will ...

... senior leaders, engineering teams, and external researchers - Own the long-term roadmap for specific areas of the Bug Bounty program and influence the broader team strategy A day in the life You will ...

Technical Program Manager, Bug Bounty

Seattle, WA · On-site

$146K - $190K/yr

... senior leaders, engineering teams, and external researchers - Own the long-term roadmap for specific areas of the Bug Bounty program and influence the broader team strategy A day in the life You will ...

Senior Vulnerability Engineer

$117K - $160K/yr

About the Job As a Senior Vulnerability Engineer, you will design, build, and scale systems for ... Correlate red team, penetration testing, and bug bounty findings with vulnerability data to ...

The Role We're seeking a Senior Product Security Engineer who is passionate about building and ... Contribute to our vulnerability management program, including triaging bug bounty and vulnerability ...

Senior Security Engineer

$117K - $160K/yr

As a Senior Security Engineer, you will lead efforts to secure the cloud infrastructure and harden ... from bug bounty, third-party pentests, and cloud security posture scans. • Mentor security ...

You will represent the organization to external security researchers via our Bug Bounty program, use a variety of tools to identify and manage application vulnerabilities, perform risk assessments ...

Senior Application Security Engineer

Broomfield, CO · On-site

$59.25 - $79/hr

You will represent the organization to external security researchers via our Bug Bounty program, use a variety of tools to identify and manage application vulnerabilities, perform risk assessments ...

Senior Application Security Engineer

Broomfield, CO · On-site

$59.25 - $79/hr

You will represent the organization to external security researchers via our Bug Bounty program, use a variety of tools to identify and manage application vulnerabilities, perform risk assessments ...

Senior Product Security Engineer

$117K - $160K/yr

The Role We're seeking a Senior Product Security Engineer who is passionate about building and ... Contribute to our vulnerability management program, including triaging bug bounty and vulnerability ...

SR. APPLICATION SECURITY ENGINEER At SpaceX we're leveraging our experience in building rockets and ... You will also be responsible for monitoring and responding to bug bounty submissions. Ideally, you ...

Senior Product Security Engineer

$117K - $160K/yr

... bug bounty awards, published research, or prior work experience • Ability to collaborate on cross-functional security initiatives and influence engineering teams on security best practices • ...

... Mars. SR. APPLICATION SECURITY ENGINEER At SpaceX we're leveraging our experience in building ... You will also be responsible for monitoring and responding to bug bounty submissions. Ideally, you ...

... Mars. SR. APPLICATION SECURITY ENGINEER At SpaceX we're leveraging our experience in building ... You will also be responsible for monitoring and responding to bug bounty submissions. Ideally, you ...

next page

Showing results 1-20

Senior Bug Bounty information

See salary details

$25K

$80.3K

$163.5K

How much do senior bug bounty jobs pay per year?

As of Jul 19, 2026, the average yearly pay for senior bug bounty in the United States is $80,287.00, according to ZipRecruiter salary data. Most workers in this role earn between $41,500.00 and $103,000.00 per year, depending on experience, location, and employer.

Can you make a living off of bug bounties?

A senior bug bounty hunter can potentially earn a full-time income by consistently finding high-quality vulnerabilities and participating in programs on platforms like HackerOne or Bugcrowr. However, income varies widely based on skill, experience, and the scope of bug bounty programs, and many hunters supplement their earnings with other cybersecurity work or consulting. Success often requires strong technical skills, persistence, and a good understanding of target systems.

What is the average bug bounty payment?

The average bug bounty payment varies depending on the severity of the vulnerability and the platform, but typically ranges from $100 to $1,000 for low to medium severity bugs. High-severity vulnerabilities can earn researchers $10,000 or more, with some top payouts exceeding $100,000. Bug bounty programs offered by companies like HackerOne and Bugcrowd often set these reward levels based on the impact and complexity of the findings.

What is the highest paid bug bounty?

Senior bug bounty hunters can earn rewards exceeding $1 million for discovering critical vulnerabilities in major platforms. The highest payouts are typically for zero-day exploits in widely used software or hardware, often involving complex skills and tools. Such high rewards are rare and usually involve coordinated disclosure and verification processes.

Will Facebook pay $500 if you find a bug in their code?

As a Senior Bug Bounty researcher, you can earn rewards through Facebook's bug bounty program, which offers payments that vary based on the severity and impact of the vulnerability found. While some bounties have paid $500 or more, the exact amount depends on the specific bug and program guidelines. Rewards are typically paid after verification and submission of detailed reports.

What are the key skills and qualifications needed to thrive as a Senior Bug Bounty Hunter, and why are they important?

To thrive as a Senior Bug Bounty Hunter, you need advanced knowledge of cybersecurity principles, vulnerability assessment, and exploit development, often demonstrated through hands-on experience and industry certifications like OSCP or CEH. Proficiency with penetration testing tools such as Burp Suite, Nmap, Metasploit, and familiarity with bug bounty platforms like HackerOne or Bugcrowd is essential. Strong analytical thinking, persistence, and clear technical communication set top performers apart in this role. These skills are crucial to effectively identify, document, and report security vulnerabilities, helping organizations strengthen their defenses and protect sensitive data.

What are Senior Bug Bounty professionals?

Senior Bug Bounty professionals are experienced cybersecurity experts who participate in bug bounty programs to identify and report security vulnerabilities in software, websites, or systems. They leverage their advanced technical skills to find complex and critical bugs, often earning higher rewards and recognition from organizations. Typically, these professionals have a strong background in ethical hacking, penetration testing, and security research, enabling them to provide valuable insights to improve overall security.

What are some common challenges faced by Senior Bug Bounty professionals, and how can they best address them?

Senior Bug Bounty professionals often encounter challenges such as dealing with complex, undocumented systems, reporting duplicate vulnerabilities, and maintaining clear communication with organizations’ security teams. To overcome these hurdles, it’s important to stay up-to-date with the latest vulnerability trends, develop strong documentation habits, and build good relationships with program managers. Collaborating with other security researchers and participating in community discussions can also help in sharing knowledge and strategies for tackling difficult targets.
More about Senior Bug Bounty jobs
What cities are hiring for Senior Bug Bounty jobs? Cities with the most Senior Bug Bounty job openings:
What are the most commonly searched types of Bug Bounty jobs? The most popular types of Bug Bounty jobs are:
What states have the most Senior Bug Bounty jobs? States with the most job openings for Senior Bug Bounty jobs include:
Infographic showing various Senior Bug Bounty job openings in the United States as of July 2026, with employment types broken down into 11% Locum Tenens, 73% Full Time, 6% Part Time, 1% Temporary, 1% Contract, and 8% Summer. Highlights an 87% Physical, 1% Hybrid, and 12% Remote job distribution, with an average salary of $80,287 per year, or $38.6 per hour.
Technical Program Manager, Bug Bounty

Technical Program Manager, Bug Bounty

Amazon

Seattle, WA

$146K - $190K/yr

Full-time

Posted 27 days ago


Amazon rating

7.4

Company rating: 7.4 out of 10

Based on 6,974 frontline employees who took The Breakroom Quiz

6th of 39 rated national retailers


Job description

Amazon's Bug Bounty team is looking for a Technical Program Manager (TPM) to help us secure the services and applications that Amazon customers rely on every day. In this role, you'll drive complex, cross-functional programs that improve how we identify, triage, and resolve externally reported security vulnerabilities. You'll work across engineering, security, and business teams to improve processes, remove roadblocks, and ensure researchers have the access and support they need to help raise our security bar.
You'll partner with internal teams to close vulnerabilities quickly and effectively, and you'll help shape the future of how Amazon engages with the global security research community

This is a fast-paced, high-impact role that requires strong ownership, sound judgment, and the ability to dive deep into technical problems while keeping stakeholders aligned.
Key job responsibilities
- Lead technical programs that improve how Amazon responds to externally reported vulnerabilities
- Define and scale internal processes for vulnerability intake, triage, and resolution
- Build durable solutions that reduce repeat issues through automation, better tooling, and improved service team accountability
- Collaborate with partner teams to improve test account support and ensure researchers have the access they need to test securely and effectively
- Communicate clearly and regularly with senior leaders, engineering teams, and external researchers
- Own the long-term roadmap for specific areas of the Bug Bounty program and influence the broader team strategy
A day in the life
You will spend most days working with engineers, builder teams, and partner teams to improve how we handle bug bounty findings. You might be mapping out a plan to improve processes, coordinating across teams to roll out new tools, or identifying where we need better support for internal owners. Some days will focus on clearing blockers and aligning stakeholders

Others will focus on building the right systems to scale the program as Amazon grows.
About the team
The Bug Bounty team helps protect Amazon and its customers by working with external security researchers who report vulnerabilities in our public-facing services. We partner with security engineers and builder teams across the company to investigate findings, improve our response processes, and build systems that scale. Our mission is to raise the security bar across Amazon by learning from every bug

We value clear thinking, sound judgment, and strong ownership, and we work every day to make Amazon more secure for customers around the world.
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences

Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
In Amazon Security, it's in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness

Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture

When we feel supported in the workplace and at home, there's nothing we can't achieve.


What Amazon employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


Amazon logo

About Amazon

Sourced by ZipRecruiter

Amazon.com, Inc., commonly known as Amazon, is an American multinational technology company. It was founded by Jeff Bezos in 1994 and initially started as an online marketplace for books. Since then, Amazon has expanded its operations and become one of the largest e-commerce companies in the world. Amazon's primary business is its online retail platform, where customers can purchase a vast array of products, including electronics, clothing, books, home goods, and much more. The company offers a convenient and user-friendly shopping experience, with features such as fast shipping, customer reviews, and personalized recommendations. In addition to its e-commerce platform, Amazon has diversified its business into various other areas. One of its notable ventures is Amazon Web Services (AWS), a comprehensive cloud computing platform that provides services such as storage, compute power, and database management to individuals and businesses. AWS has become a leader in the cloud computing industry, powering many websites and applications worldwide. Amazon has also developed its own consumer electronics, including the popular Amazon Kindle e-reader, Fire tablets, Fire TV streaming devices, and the Alexa-powered Echo smart speakers. The Alexa voice assistant, integrated into these devices, allows users to interact with their devices using voice commands, perform tasks, and access information. Furthermore, Amazon has expanded into media and entertainment. It operates Prime Video, a streaming service that offers a wide range of movies, TV shows, and original content. Amazon Music provides a platform for streaming and purchasing digital music, while Audible offers audiobooks and other audio content. The company's commitment to customer satisfaction and convenience is demonstrated by its membership program, Amazon Prime. Prime members receive various benefits, including free two-day shipping, access to streaming services, exclusive deals, and more.

Industry

It services, book publishers, retail, real estate and computer and electronic product manufacturing

Company size

10,000+ Employees

Headquarters location

Seattle, WA, US