At YesWeHack we’re on a mission - to make the world a safer place by stopping cyber attack breaches through our global Ethical Hackers Network (80,000+).
Founded in 2015, YesWeHack is the EU #1 bug bounty platform, with offices in France, Singapore, Switzerland, Germany. We provide a disruptive approach to Cyber Security through Bug Bounty programs, by connecting more than 80,000 Ethical Hackers worldwide with organizations to secure their exposed scopes the agile way.
At YesWeHack, we are strengthening our team in North America with passionate executives and are currently hiring for a Security Analyst (Fluent French, Montréal).
As a Security Analyst, you will participate in the qualification of vulnerability reports submitted by our community of ethical hackers, to its analysis and to support our clients in the assessment vulnerabilities in order to better understand the impacts and possible solutions. You will also participate in creating internal tools, as well as their maintenance and evolution for the benefit of our hackers’ community.
Your main missions will be:
Security Analyst:
-
Creation and reproduction of Proof-of-Concept.
- Assessment of the severity of vulnerabilities according to the context.
- Restitution, technical popularization to our customers.
- Ensure dialogue with our community of ethical hackers.
- Monitor the vulnerability reports workflow.
Coordinate with the Customer Success Manager (CSM) department
R&D:
-
Development of internal solutions related to the position.
Development of tools for our community.
Skills that you master:
-
Security fundamentals such as the Top 10 OWASP
- The CVSS criticality assessment system and its application
- Specific tools such as BurpSuite
Development in Python • Fluent English (spoken/written)
The following notions will be are a plus:
-
Development on Frameworks such as Django / Flask
- Participation in Open Source projects
- Constant monitoring of Cybersecurity subjects (CVE, research, vulnerabilities, etc.)
-
You are curious by nature, passionate about Cybersecurity and have a strong interest in understanding how an information system works and how to secure it.
-
You have participated in CTFs and Infosec learning platforms.
-
Rigorous, respectful of good security practices, your team spirit and your interpersonal skills will allow you to take on your main missions successfully.
We look forward to hearing from you.
At YWH, we are fun team, passionate about Tech!