Security Engineer

Help protect the 70million+ players at Chess.com by working with the security community to proactively identify and close security vulnerabilities through our Bug Bounty program. 


Qualifications:

  • 2+ years professional experience in web application security

  • Strong written communication skills in English

  • Familiarity with Burp or similar tools for viewing and tampering with web requests

  • Prior experience with a Bug Bounty program is a big plus

  • Experience in PHP or JS


Responsibilities:

  • Triage, reproduce, and assess vulnerability reports submitted through the Bug Bounty program

  • Fix security vulnerabilities surfaced by Bounty reports, or work with other developers to get the issues fixed

  • Identify patterns or systemic security problems and help us design clean solutions