Junior Technical Pentest Manager

Job Summary

Bugcrowd is a dynamic and rapidly growing organization seeking a passionate and Junior Technical Pentest Manager to support our customers running Penetration Testing as a Service (PTaaS) on the Bugcrowd platform. In this high-energy role, you will act as a trusted advisor and advocate for our customers, working closely with sales, technical sales, pen testers, crowd members, and teams like Hacker Success. You will leverage your deep understanding of penetration testing methodologies to scope out tests and communicate complex offensive security concepts to a variety of stakeholders. The ideal candidate thrives under pressure, excels at context switching, and is committed to continual improvement in a fast-paced environment.

Responsibilities

• Customer Advocacy: Serve as a trusted advisor to customers, understanding their needs and advocating on their behalf to ensure successful outcomes.
• Engagement Management: Manage multiple penetration testing engagements end-to-end, ensuring they are delivered on time and meet or exceed customer expectations.
• Technical Scoping: Accurately scope penetration tests across various domains, including network, web applications, mobile, and APIs.
• Report Writing: Generate client deliverable reports and update any special requests as needed.
• Cross-functional Collaboration: Work closely with sales, technical sales, pen testers, crowd members, and the Hacker Success team to coordinate efforts and resources.
• Communication: Effectively communicate complex offensive security concepts to a diverse range of stakeholders, including technical and non-technical audiences.
• Global Coordination: Engage with hackers from around the world, facilitating clear communication and collaboration across different time zones and cultures.
• Time Management: Operate efficiently under tight deadlines, managing multiple priorities and regularly switching contexts without compromising quality.
• Problem Solving: Proactively identify and resolve issues that arise during engagements, employing strong analytical and critical thinking skills.
• Continuous Improvement: Stay up-to-date with the latest trends and advancements in offensive security, continuously seeking ways to improve processes and methodologies.
• Independent Work Ethic: Demonstrate the ability to work with little to no supervision, taking initiative and ownership of responsibilities.
• Soft Skills: Exhibit strong interpersonal skills, including open-mindedness, adaptability, and the ability to build rapport with both internal teams and external partners.

Education, Experience, Skills, & Abilities

• 1+ years experience in penetration testing or offensive security roles.
• 1+ years experience in engagement or project management within a consulting or delivery-based business.
• PTaaS platforms: Experience with PTaaS platforms and working with a global community of security researchers is a plus.
• Technical Proficiency : Broad understanding of multiple penetration testing methodologies, including but not limited to IoT, LLM, cryptography, network infrastructure, web applications, mobile platforms, and APIs.
• Communication Skills : Excellent verbal and written communication abilities, capable of tailoring messages to various audiences, from technical staff to executive leadership.
• Customer Focus : Strong commitment to customer satisfaction, acting as an advocate and trusted advisor to build long-term relationships.
• Global Perspective : Ability to effectively collaborate with a diverse, global community of hackers and security professionals.
• Time Management : Proven ability to work under pressure, meet deadlines, and manage multiple projects simultaneously.
• Problem-Solving Skills : Strong analytical thinking with a proactive approach to identifying and solving complex problems.
• Adaptability : Flexibility to adjust to changing priorities in a rapidly evolving environment.
• Self-Motivation : Demonstrated ability to work independently, take initiative, and drive projects to completion without close supervision.
• Passion and Energy : High levels of enthusiasm and a genuine passion for cybersecurity and offensive security practices.
• Continuous Learning : Commitment to personal and professional growth, staying current with industry developments and best practices.

Working Conditions

The ideal candidate must be able to complete all physical requirements of the job with or without reasonable accommodation.

Sitting and/or standing - Must be able to remain in a stationary position 50% of the time.

Carrying and /or lifting - Must be able to carry / move laptop as needed throughout the work day.

Environment - remote, work-from-home 100% of the time.

ADA Statement

Bugcrowd is committed to the full inclusion of all qualified individuals. In keeping with our commitment, Bugcrowd will take the steps to assure that people with disabilities are provided reasonable accommodations. Accordingly, if reasonable accommodation is required to fully participate in the job application or interview process, to perform the essential functions of the position, and/or to receive all other benefits and privileges of employment, please contact HR at

Culture

• At Bugcrowd, we understand that diversity in the workplace is vital to a company's success and growth. We strive to make sure that people are included and have a sense of being part of making Bugcrowd not only a great product but a great place to work.
• We regularly hear from both customers and researchers that Bugcrowd feels like a family, and we strive to maintain that internally as well.
• Our team consists of a broad range of people: musicians, adventure sports junkies, nature lovers, parents, cereal enthusiasts, night owls, cyclists, artists—you get the point.

At Bugcrowd, we are solving security threats and vulnerabilities that are relevant to everyone, therefore we believe solving these problems takes all kinds of backgrounds. We value the perspectives and experiences people from underrepresented backgrounds bring.

Disclaimer

This position has access to highly confidential, sensitive information relating to the technologies of Bugcrowd. It is essential that the applicant possess the requisite integrity to maintain the information in the strictest confidence.

Bugcrowd is EOE, Disability/Age Employer.

Individuals seeking employment at Bugcrowd are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Bugcrowd's Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Voluntary Self-Identification of Disability

Form CC-305

Page 1 of 1

OMB Control Number

Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. If you want to learn more about the law or this form, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at

Disability Status Select...

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

#J-18808-Ljbffr

---