[Remote] Principal Security Research Consultant
Note: The job is a remote job and is open to candidates in USA. Include Security is looking for experienced application Security Consultants. The Principal Security Research Consultant will focus on finding vulnerabilities in various applications and conducting research on security issues, while also providing support and guidance to junior consultants.
Responsibilities
- Finding critical vulnerabilities during web app code reviews
- Conducting research on security vulnerabilities in software and consumer products
- Creating research posts as a deliverable for research efforts
- Providing technical support to Senior Security Consultants
- Assisting in the screening & interviewing of candidates
- Contributing to a variety of business support areas
Skills
- Experience in finding critical vulnerabilities during web app code reviews
- Experience with mobile apps, client apps, server apps, APIs, and embedded devices/IoT
- Experience in Reversing
- Ability to provide technical support to Senior Security Consultants
- Assists in the screening & interviewing of candidates
- Contributes to a variety of business support areas
- Significant research focus on security vulnerabilities in software and consumer products
- Ability to create research posts as a deliverable
- Prepared to share examples of existing public research
- Five years of field experience or exceptional skills to equal or surpass that mark
- Experience in web hacking and other types of hacks (Reversing, Mobile, Client/Server, Crypto, Kernels, etc.)
- Experience in consulting, enterprise assessment work, or top performance in bug bounties
- Ability to lead client readout calls and communicate assessment findings
- Comfortable providing technical leadership to more junior consultants
- Experience in writing blog posts and providing report QA
- Ability to work in a no-nonsense environment optimized for vulnerability discovery
- Willingness to share and collaborate with the team
- Self-sufficient and does not require micromanagement
- Strong technical writing skills to describe work
- Ability to work with large and complex source trees
Benefits
- 100% coverage from top tier health/dental plans and partial coverage of dependents
- Telecommuting? Yes, almost exclusively. Travel is an option if you want it, but it's currently ~1% of our total work.
- We have full-time technical project managers (TPM), who take care of all the administrative stuff for you (organizing meetings, client updates, report QA organization/management, etc.).
- Paid time off On top of, an average of 11 the US Holidays, we offer four (4) weeks of paid time off.
- You will get a minimum of four (4) weeks of dedicated research time (actual time is employee-specific, but we do have a minimum).
- Flexible working hours By default we work during the EST or PST business hours. But, if you want to start your day a bit later or earlier that usually isn’t a problem.
- Healthy work/life balance If you’re working over 45hrs in a given week then there is something wrong, bring it up to management so we can work on fixing it.
- Sales bonuses
- Referral bonuses
- Company laptop
- Long term paid sabbatical
- Conference travel
- 401(k) retirement savings plan
Company Overview