Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Product Security Analyst

$135k - $155k

hackerone

HackerOne is a global leader in Continuous Threat Exposure Management (CTEM). The HackerOne Platform unites agentic AI solutions with the ingenuity of the world's largest community of security researchers to continuously discover, validate, prioritize, and remediate exposures across code, cloud, and AI systems. Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming, and code security, HackerOne delivers measurable, continuous reduction of cyber risk for enterprises. Industry leaders, including Anthropic, Crypto.com, General Motors, Goldman Sachs, Lufthansa, Uber, UK Ministry of Defence, and the U.S. Department of Defense, trust HackerOne to safeguard their digital ecosystems. HackerOne was recognized in Gartner's Emerging Tech Impact Radar: AI Cybersecurity Ecosystem report for its leadership in AI Security Testing and has been named a Most Loved Workplace for Young Professionals (2024). HackerOne is at a pivotal inflection point in the security industry. Offensive security is no longer optional - it is the standard for forward-thinking companies that want to build trust and resilience in a world where AI-driven innovation and adversaries are moving faster than ever. With the industry shifting, HackerOne stands apart: we combine the ingenuity of the largest security research community with a best-in-class AI-powered platform, trusted by the world's top organizations. Product Security Analyst Remote Locations: Boston, MA; Austin, TX; Washington, DC; Seattle, WA; San Francisco Bay Area, CA. Position Summary HackerOne is a global leader in offensive security solutions. Our HackerOne Platform combines AI with the ingenuity of the largest community of security researchers to find and fix security, privacy, and AI vulnerabilities across the software development lifecycle. As a Product Security Analyst, you will join HackerOne's Technical Services organization and work directly with some of the world's most skilled security researchers to help customers identify and remediate impactful vulnerabilities. You will play a critical role in validating, reproducing, and communicating security findings across bug bounty and vulnerability disclosure programs while helping maintain a high-quality experience for both customers and hackers. As we continue evolving our AI-powered offensive security platform, this role offers an opportunity to deepen technical expertise in web and mobile application security while collaborating with globally distributed teams and the broader hacker community. At HackerOne, we embrace a Flexible Work approach that gives us the freedom to do our best work while also fostering the connections and community that make us stronger. Reflecting this philosophy, this is a remote role targeted for candidates within ~50 miles of Boston MA, Austin TX, Washington DC, Seattle WA, or San Francisco Bay Area CA. We believe this balance of proximity and flexibility gives Hackeronies the chance to occasionally come together - fostering collaboration, connection, and in-person moments that enrich our culture - while still preserving the benefits of remote work. What You Will Do Evaluate vulnerability reports submitted by security researchers to determine validity, severity, exploitability, and business impact for HackerOne customers using Data-Driven Decision Making and established security frameworks such as CVSS. Independently reproduce reported vulnerabilities across web and mobile applications, applying First Principles Problem Solving to validate findings, identify root causes, and clearly communicate impact. Collaborate directly with security researchers to gather missing information, clarify technical details, and improve report quality while maintaining clear and professional communication with customers. Create concise, technically accurate summaries for validated findings, including reproduction steps, impact analysis, and remediation guidance. Demonstrate Change Agility by adapting to evolving customer environments, changing program scopes, emerging attack techniques, and shifting operational priorities. Contribute to an AI-First approach by leveraging automation and AI-enabled workflows to improve operational efficiency, report analysis, and vulnerability triage quality. Partner cross-functionally with Technical Services teammates and customer-facing teams to ensure timely handling of vulnerabilities and a high-quality customer experience. Proactively identify opportunities to improve internal processes, documentation, tooling, and triage workflows to enhance scalability and consistency across the Technical Services organization. Note: some weekend shifts will be required. Minimum Qualifications 3+ years of hands‑on experience performing security testing, vulnerability research, or ethical hacking on web and mobile applications. Strong technical understanding of common application security vulnerabilities, including the OWASP Top 10. Experience using security testing tools such as Burp Suite and familiarity with vulnerability scoring frameworks including CVSS. Excellent written and verbal communication skills in English, including the ability to communicate technical concepts clearly to both technical and non‑technical audiences. Ability and desire to work weekend shifts from time to time. Preferred Qualifications Experience participating in bug bounty or vulnerability disclosure programs. Experience reproducing and validating vulnerabilities submitted by external researchers or customers. Familiarity with scripting or automation used in security testing or operational workflows. Demonstrated ability to manage competing priorities and maintain operational excellence in a fast‑paced, globally distributed environment. Compensation Band Tier A (SF Bay Area) - $135,000 to $155,000 Tier B (all other locations) - $120,000 to $140,000 (+ equity) Job Benefits Health (medical, vision, dental), life, and disability insurance* Equity stock options Retirement plans Paid public holidays and unlimited PTO Paid maternity and parental leave Leaves of absence (including caregiver leave and leave under CO's Healthy Families and Workplaces Act) Employee Assistance Program *Eligibility may differ by country We're committed to building a global team! For certain roles outside the United States, India, the U.K., and the Netherlands, we partner with Remote.com as our Employer of Record (EOR). Visa/work permit sponsorship is not available. Employment at HackerOne is contingent on a background check. HackerOne is an Equal Opportunity Employer in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, pregnancy, disability or veteran status, or any other protected characteristic as outlined by international, federal, state, or local laws. This policy applies to all HackerOne employment practices, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. HackerOne makes hiring decisions based solely on qualifications, merit, and business needs at the time. For US based roles only: Pursuant to the San Francisco Fair Chance Ordinance, all qualified applicants with arrest and conviction records will be considered for the position. Compensation Range: $120K - $155K #J-18808-Ljbffr hackerone

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Product Security Analyst in Washington DC vacancy
  • HackerOne is looking for a Product Security Analyst to evaluate vulnerabilities and collaborate with security researchers. This remote role allows for deepening technical expertise in security while maintaining a high-quality customer experience. Candidates must have strong... 
    Suggested
    Remote job

    Apply

    Washington DC
    4 days ago
  •  ...application due to a disability, contact this employer to ask for an accommodation or an alternative application process. Industrial Security Analyst Full Time Professional Washington, DC, US 4 days ago Requisition ID: 1250 USGI is seeking an Industrial Security Analyst to... 
    Suggested
    Full time
    Temporary work
    Work at office

    Universal Strategy Group

    Washington DC
    8 hours ago
  •  ...Location: Washington, DC Overtime Exempt: Yes Reports To: ARMADA HQ Security Clearance Required: Secret Clearance CONTINGENT UPON AWARD*****...  ...***** Duties & Responsibilities The Physical Security (PHYSEC) Analyst provides expert-level support for physical security policy... 
    Suggested
    Full time
    For contractors
    Work at office
    Local area
    Relocation

    Armada

    Washington DC
    2 days ago
  • $60k - $130k

     ...Physical Security Analyst In this role you will be a part of the U.S. Coast Guard headquarters team that provides policy and security program...  ...compliance. Develop physical security training and awareness products. Prepare comprehensive recommendations, reports, letters, and... 
    Suggested
    Hourly pay
    Contract work
    Work experience placement
    Local area
    Worldwide

    Watermark Risk Management International, LLC

    Washington DC
    2 days ago
  • $62k - $141k

     ...Cyber threats are evolving, and perimeter security and automated protection aren’t enough—it’s time to go threat hunting. We need your...  ...the attackers come to us, let’s go find them. Systems Security Analyst We’re looking for a specialist who can think like a cyber attacker... 
    Suggested
    Local area

    Booz Allen Hamilton

    Arlington, VA
    1 day ago
  •  ...Looking for an innovative organization and the opportunity to learn and grow professionally? We can help! We are seeking a IT Security Operations Analyst for the IT Technology Services contract. This project will provide IT service desk, systems, network, and security... 
    Full time
    Contract work
    Part time
    Work at office
    Remote work
    Monday to Friday

    Terrestris Global Solutions

    Washington DC
    1 day ago
  • $85k - $95k

     ...Security Operations Analyst Location: Washington, DC Type: Contract Compensation: $85,000-95,000 Contractor Work Model: Remote – offsite NIGHT SHIFT - 4 x 10-hour shifts per week. 10 PM-8 AM Requirements 2-4 (+) years of related experience in security operations, research... 
    Contract work
    For contractors
    Local area
    Remote work
    10 hours per week
    Shift work
    Night shift

    System One

    Washington DC
    9 hours ago
  •  ...TLA is seeking a detail-oriented and proactive Information System Security Analyst to join our IT department. This critical role involves safeguarding our organization's sensitive data and computer systems from evolving cyber threats. The analyst will be responsible for... 

    TLA Inc

    Washington DC
    1 day ago
  • $73.5k - $92.5k

    The Security (SOC) Analyst will be a valued member of the EAB Information Security team. We work to keep our partners and EAB colleagues safe...  ...network Establishes strong relationships across the company with product and corporate IT teams, as well as with strategic service... 
    Immediate start
    Flexible hours

    EAB (Education Advisory Board)

    Washington DC
    4 days ago
  • $116k - $175k

    AIS (Applied Information Sciences) is seeking a Principal Facility Security Officer to support personnel security investigations for a federal client. The role ensures compliance with security and Intelligence Community requirements while analyzing investigative materials... 

    AIS (Applied Information Sciences)

    Washington DC
    3 days ago
  • $116k - $175k

    Applied Information Sciences is seeking a Principal Facility Security Officer in Washington, D.C. You will support the establishment of the Private Sector Clearance Program and ensure compliance with security directives. The ideal candidate will have extensive experience... 

    Applied Information Sciences

    Washington DC
    3 days ago
  • Talascend, LLC is seeking an Information Security Analyst for a contract opportunity in Washington, DC. This role involves managing enterprise anti-virus operations, troubleshooting malware incidents, and ensuring compliance with security standards. The ideal candidate... 
    Contract work
    Remote work

    Talascend

    Washington DC
    4 days ago
  • BluePath Labs is looking for a Program Analyst with TS/SCI clearance to support defense-related initiatives for the Department of War. The role involves analyzing complex regional security issues, drafting documents for senior leaders, and coordinating interagency events... 

    BluePath Labs (8(a) & SDVOSB)

    Washington DC
    2 days ago
  • ASET Partners is looking for a financial management professional in Washington, DC. This role involves assisting the CFO in reconciling obligations, alongside responsibilities for accounts payable and receivable. The ideal candidate must possess an active TS/SCI with CI...

    ASET Partners

    Washington DC
    4 days ago
  • $30 - $33 per hour

    Insight Global is seeking a Jr. Security Specialist in Arlington, Virginia to support the security of the Joint Worldwide Intelligence Communications Systems at the Pentagon. The role involves assisting DoD personnel with clearance issues, running DISS queries, and providing... 
    Hourly pay
    Worldwide

    Insight Global

    Arlington, VA
    5 days ago
  • Booz Allen Hamilton is seeking a Defense Mission Professional in Arlington, Virginia, to support space operations and defense security initiatives. Ideal candidates will possess extensive experience in Foreign Military Sales and Security Cooperation, along with a Secret... 
    Remote job

    Booz Allen Hamilton

    Arlington, VA
    4 days ago
  • $90k - $117k

    Mano Lani LLC is seeking a Financial Analyst III to provide advanced financial management and support to the DARPA Adaptive Capabilities Office. The role involves financial analysis, budget tracking, and program planning in a dynamic environment. Candidates should have... 
    Work at office

    Mano Lani

    Arlington, VA
    6 days ago
  • The International Monetary Fund is seeking a Security Analyst/Senior Security Analyst in Washington DC to enhance cybersecurity efforts. This role involves managing technical cyber risks, compliance, and governance while engaging with various teams to maintain a secure... 

    International Monetary Fund

    Washington DC
    2 days ago
  • $81.85k - $110k

     ...Suitability/Public Trust Hybrid schedule Information Technology Overview GovCIO is currently hiring for a 2nd shift (3pm - 11:30pm) Security Analyst to support the US Courts in Washington, DC on-site Monday to Friday. Responsibilities Correlates threat data from various... 
    Full time
    Currently hiring
    Monday to Friday
    Flexible hours
    Afternoon shift

    GovCIO

    Washington DC
    4 days ago
  • Synertex LLC is seeking a Financial Analyst to support critical government and intelligence initiatives in Bethesda, Maryland. The ideal candidate will manage budgeting, forecasting, and billing while providing insightful analyses to senior leadership. Candidates must possess... 

    Synertex LLC

    Bethesda, MD
    3 days ago
  • $110k - $140k

    Ardent Eagle Solutions seeks a cybersecurity professional to perform security analysis at the NIGC HQ in Washington, DC. The ideal candidate will possess at least six years of experience in cybersecurity and threat monitoring, with the ability to obtain a U.S. Government... 
    Remote job

    Ardent Eagle Solutions

    Washington DC
    6 days ago
  • $40 per hour

    A leading cybersecurity firm is seeking experienced cybersecurity professionals to evaluate AI-generated content, solve technical problems, and provide feedback on AI systems. This position is remote, allowing work from anywhere in select countries. Candidates should have...
    Remote job
    Hourly pay

    DataAnnotation

    Washington DC
    2 days ago
  • Arenatechnologies is seeking an Operations Research Analyst to support systems engineering and testing at our headquarters in Alexandria...  ...along with opportunities to work with DHS and contribute to critical national security initiatives. #J-18808-Ljbffr Arenatechnologies
    Work at office

    Arenatechnologies

    Alexandria, VA
    4 days ago
  • Crisis24 is seeking a professional to monitor incidents and manage operational responses in Washington, D.C. You will oversee various public safety systems, respond to emergencies, and coordinate with the Protective Services Unit. The ideal candidate will have a graduate...

    Crisis24

    Washington DC
    4 days ago
  • Akima Infrastructure Services is seeking an IT Analyst in Alexandria, Virginia to support IT across all DoD OIG networks. The role involves...  ..., and implementing computer applications while ensuring system security and network efficiency. The ideal candidate will have a... 

    Akima Infrastructure Services

    Alexandria, VA
    4 days ago
  • ## Security Analyst/Senior Security Analyst (Cloud Security Assurance) - ITDSGGR (Contractual)Applylocations: USA, Washington DCtime type: Full timeposted on: Posted Yesterdaytime left to apply: End Date: July 9, 2026 (13 days left to apply)job requisition id: 25-R8630... 

    International Monetary Fund

    Washington DC
    2 days ago
  • A woman-owned small business is seeking a Configuration Management Analyst to provide technical support in implementing and maintaining the change management process. The role requires a Bachelor's Degree or an Associate's Degree with significant experience in program management... 

    BTAS

    Arlington, VA
    3 days ago
  • $116k - $175k

    Applied Information Sciences, Inc is seeking a Principal Facility Security Officer in Washington, DC. This role involves supporting personnel security investigations and adjudication processes in a federal environment. Ideal candidates will have a Bachelor's degree and... 

    Applied Information Sciences, Inc

    Washington DC
    5 days ago
  • Title: Security Analyst - Forensics & Malware Analysis Location: Chandler, AZ or Washington, DC Terms: Full-time Clearance: Active Secret...  ...Detail‑oriented with strong documentation discipline; your work product holds up under scrutiny Able to work independently on... 
    Full time
    Work experience placement
    Flexible hours

    Revolutional

    Washington DC
    5 days ago
  • $100k - $120k

    Overview Public Trust Clearance requirement. BRMi is seeking a Security Analyst to support cybersecurity operations, risk management, compliance, and information assurance activities in support of NIH enterprise IT environments. The Security Analyst will work closely... 
    Temporary work
    Local area
    Remote work
    Visa sponsorship
    Work visa

    BRMi

    Bethesda, MD
    2 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Product Security Analyst. Be the first to apply!