RiseMe
LoginSign Up
NCC Group logo
NCC Group Verified
Cybersecurity, IT Services, Software

Security Analyst - Bug Bounty

Illinois, Illinois, United StatesNullFull TimePosted 2 months agoVisa sponsorship available

Is this role right for you?

Upload your resume and get a skill-by-skill breakdown — see exactly where you match, where you're close, and what to highlight. Not a mystery percentage.

Get a tailored resume highlighting what this role needs.

Role summary

NCC Group is seeking a Security Analyst for its Bug Bounty Services team. This role involves analyzing and reproducing reported security vulnerabilities, communicating with global researchers, and producing high-quality client reports. The ideal candidate will have strong technical skills in web, mobile, and network security, proficiency in scripting/programming, and experience in bug bounty or vulnerability disclosure programs. A solid understanding of OWASP Top 10 is essential. The role also contributes to improving team processes and tooling, aiming to enhance client delivery and foster a safer digital world.

### Description

At NCC Group, we are looking for a highly capable Security Analyst to join our Bug Bounty Services team, someone who thrives in a fast‑paced vulnerability discovery environment and is passionate about working directly with the global security researcher community.

We’re seeking an individual with strong technical foundations in web, mobile, and network security, hands on experience validating vulnerabilities, and a solid understanding of the OWASP Top 10. You will bring proficiency in scripting or programming, a track record of working within vulnerability disclosure or bug bounty ecosystems, and ideally exposure to vulnerability management or QA practices.
Beyond technical skill, we are looking for someone who embodies our core behaviours, client‑focused, collaborative, always learning, inclusive, and dedicated to delivering brilliant outcomes. Someone who communicates clearly, works methodically, and takes ownership of their work, from in‑depth triage analysis to producing high‑quality reporting for our clients.
If you're motivated by enabling a safer digital world, enjoy analysing complex security reports, and want to contribute to improving processes, tooling, and client delivery across a global team, this role is the opportunity to do exactly that.

### Key Responsibilities

  • Analyze and fully reproduce potential security findings reported to our clients.
  • Communicate with the global researcher community to gather information and inform them of triage analysis outcomes.
  • Author and deliver NCC-quality vulnerability reports to the specifications of individual clients.
  • Drive or contribute to projects that improve Bug Bounty Services’ tooling, operational processes, and delivery quality.

### Skills, Knowledge & Expertise

  • Native speaker or CEFRL C2 English language proficiency
  • Proven experience in web application, network, and mobile application security testing.
  • Strong knowledge in OWASP Top 10
  • Recent professional experience that required regular use of a programming scripting language
  • Vulnerability Disclosure and Bug Bounty experience.
  • Vulnerability Management experience is a plus.
  • Software QA experience is a plus.
  • Experience with SAST and DAST testing tools is a plus.

### Job Benefits

We have a high-performance culture which is balanced evenly with world-class well-being initiatives and benefits:

  • Flexible Working: Balance your work and personal life with our flexible working options.
  • Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave.
  • Medicash & Critical Illness Scheme
  • Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme.
  • Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities.
  • Green Car Scheme: Drive green and save money with our eco-friendly car scheme.
  • Cycle Scheme: Stay fit and healthy with our cycle-to-work scheme.
  • Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet.
  • Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.

### About NCC Group

We assess, develop and manage cyber threats across our increasingly connected society. We advise global technology, manufacturers, financial institutions, critical national infrastructure providers, retailers and governments on the best way to keep businesses, software and personal data safe.
With our knowledge, experience and global footprint, we are best placed to help businesses identify, assess, mitigate & respond to the risks they face.
We are passionate about making the Internet safer and revolutionising the way in which organisations think about cyber security.
Headquartered in Manchester, UK, with over 35 offices across the world, NCC Group employs more than 2,000 people and is a trusted advisor to 15,000 clients worldwide.

Ready to apply?
You'll be redirected to NCC Group's application page.