Role Overview
We are seeking a contractor to support our Security Operations team with alert triaging, bug bounty management, and day-to-day security operations. This role is critical to ensure timely handling of security alerts and vulnerability reports.
Key Responsibilities
- Triage security alerts based on type, severity, and impact.
- Perform initial analysis and validation of alerts from sources such as SIEM, DLP, and internal tools.
- Review and analyze bug bounty submissions and external vulnerability reports.
- Collaborate with internal teams to verify, reproduce, and assess issues.
- Document findings and provide actionable remediation recommendation.
- Manage JIRA tickets for security incidents, vulnerability reports, and operational tasks, ensuring timely updates, SLA adherence, and prompt closure.
- Contribute to improving alert handling and bug bounty response processes.
Required Skills
- Hands-on experience in Security Operations or Incident Response.
- Familiarity with common security alerts and threats (e.g., phishing, malware, suspicious activity) and bug bounty programs.
- Understanding of web and API security threats (e.g., OWASP Top 10) and cloud security risks.
- Strong analytical skills with a keen eye for detail.
- Clear communication skills — able to explain findings to both technical and non-technical audiences.
- Collaborative mindset, comfortable working across teams to solve problems.