Triage Intake Analyst

HackerOne is a global leader in offensive security solutions. Our HackerOne Platform combines AI with the ingenuity of the largest community of security researchers to find and fix security, privacy, and AI vulnerabilities across the software development lifecycle. The platform offers bug bounty, vulnerability disclosure, pentesting, AI red teaming, and code security. We are trusted by industry leaders like Amazon, Anthropic, Crypto.com, General Motors, GitHub, Goldman Sachs, Uber, and the U.S. Department of Defense. HackerOne was named a Best Workplace for Innovators by Fast Company in 2023 and a Most Loved Workplace for Young Professionals in 2024. HackerOne Values HackerOne is dedicated to fostering a strong and inclusive culture. HackerOne is Customer Obsessed and prioritizes customer outcomes in our decisions and actions. We Default to Disclosure by operating with transparency and integrity, ensuring trust and accountability. Employees, researchers, customers, and partners Win Together by fostering empowerment, inclusion, respect, and accountability. POSITION SUMMARY Based in our Pune 0ffice - 4-5 days a week. As a Triage Analyst at HackerOne, you will be the first point of contact for incoming vulnerability reports. Your role will focus on the initial intake, evaluation, and assignment of these reports, ensuring they are directed to the appropriate triage team members for further analysis. This position is ideal for someone with foundational knowledge of security vulnerabilities who is eager to develop their expertise in vulnerability triage. WHAT YOU WILL DO - Initial Intake: Receive and process incoming vulnerability reports, ensuring that all necessary information is included before passing them on to the triage team. - Preliminary Assessment: Conduct an initial assessment of the reports to identify obvious false positives and ensure they align with the program's scope. - Collaboration: Work closely with the triage team to ensure smooth handoff and follow-up on any required additional information from hackers. - Documentation: Assist in maintaining accurate records of report intake and initial findings, supporting the team in tracking and prioritizing reports. - Communication: Provide clear and concise communication with hackers regarding the status of their submissions and any missing details required for further evaluation. - Continuous Learning: Stay updated on the latest security trends and vulnerabilities to enhance your understanding and support your growth within the triage team. - Validation: Responsible for validating quick wins, including redundant or basic vulnerabilities, ensuring they are efficiently and accurately assessed due to their ease and speed of validation. MINIMUM QUALIFICATIONS - 1+ years of experience working on vulnerability disclosure and bug bounty programs. - 1+ years of experience of web application security testing - Basic web and mobile application security understanding, including familiarity with the OWASP Top 10. - Experience using basic security testing tools (e.g., Burpsuite). - Strong attention to detail and ability to follow procedures for initial report intake. - Excellent written and verbal communication skills. - Self-motivated with a willingness to learn and grow within the security field. - Excellent decision making skills - Must be able to work from a HackerOne office in Pune 4-5 days per week - Able to work shift work. We are hiring for the following shifts: 8am - 5pm IST, 12:30-9.30pm IST, and 6.30pm - 3.30am IST. - English fluency India Compensation Bands: 2,160,000 INR - 2,385,000 INR per year #LI-MR1

HackerOne is a global leader in offensive security solutions. Our HackerOne Platform combines AI with the ingenuity of the largest community of security researchers to find and fix security, privacy, and AI vulnerabilities across the software development lifecycle. The platform offers bug bounty, vulnerability disclosure, pentesting, AI red teaming, and code security. We are trusted by industry leaders like Amazon, Anthropic, Crypto.com, General Motors, GitHub, Goldman Sachs, Uber, and the U.S. Department of Defense. HackerOne was named a Best Workplace for Innovators by Fast Company in 2023 and a Most Loved Workplace for Young Professionals in 2024.