Security Researcher

Bitbns Security Lab is looking for a security researcher to perform red teaming and penetration testing on cryptocurrency exchange infrastructure and applications.

The scope of this role includes performing end-to-end full-stack engagements - from scoping, to threat modeling, information gathering, discovery, vulnerability exploitation, lateral movement, post-exploitation, and executive reporting. Your engagements will include internal, external, web, mobile, and other environments.

Responsibilities:

• Parlaying your passion for hacking, security research, and vulnerability discovery into practical exploitation and adversary activities across the kill chain. You will identify vulnerabilities by simulating external and internal attacks, which exercise and validate bitbns’s ability to prevent, detect, respond and recover
• Perform network penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments
• Identify security monitoring weaknesses and recommend SOC detection improvements
• Recognize and safely utilize attacker tools, tactics, and procedures
• Develop scripts, tools, or methodologies to to enhance the Offensive Security team’s operations
• Thoroughly document and effectively communicate exploit chain/proof of concept scenarios for client stakeholders

Requirements:

• 3+ years of professional experience in cyber security or related field
• Proven technical project management experience
• Experienced in working remotely on a widely distributed team
• Proven knowledge of exploit techniques, and common TTPs
• Senior knowledge of at least one programming or scripting languages