Maintain and improve the relationship with the community of researchers and bug hunters
Create new campaigns, and think of creative ways to bring new skilled researchers to the program
Prepare tutorials and tools that will provide researchers a better understanding of how to test Wix products
Build creative tools and services based on security issues that arrive through the bounty program
Requirements: A penetration tester, or bug bounty hunter with 2+ years of hands-on experience in web-application penetration testing
In-depth knowledge of web application vulnerabilities (OWASP top 10), their exploitation in the real world, and browser security mechanisms
Participated in bug bounty programs, or live hacking events
Good written and verbal communication skills
Able to manage reports at scale, analyze their severity, impact and prioritize them
Passionate about new attack vectors and vulnerabilities
Excited by the idea of taking on lots of responsibility, you can work independently and be flexible
Youre an open-minded self-learner who can see the big picture, analyze complex systems, identify potential failure points and find opportunities for big security wins
An advantage if you:
Managed a bug bounty program
Published a blog, article or security research
Lead a community, or are an active community member
Have past experience speaking in security conferences and events
This position is open to all candidates.