xbowcareers - Pentest Automation Engineer
Upload My Resume
Drop here or click to browse · PDF, DOCX, DOC, RTF, TXT
Requirements
• Profession experience with Typescript in automation tooling • Professional expertise in Linux, and CI/CD pipelines (in particular GitHub Actions) and other Infrastructure & DevOps tooling • Professional experience with Go or Python in automation tooling • Professional experience with additional cloud providers (GCP, Azure etc.) • Professional experience with DevOps and IaC technologies such as Kubernetes, Docker, Terraform
Responsibilities
• This role is responsible for designing, running, and maintaining an always-on testing program that applies XBOW across public bug bounty environments and partnered open-source projects. • Day to day, the individual will build and operate fully automated systems that handle everything from reconnaissance and safety validation to target selection, attack execution, and results analysis. They will continuously evaluate which systems to test based on exposure and business impact, integrate new and experimental XBOW capabilities into live workflows, and ensure all activity stays compliant with program rules. • A major focus of the role is developing and maintaining robust automation, internal tooling, and shared dashboards that give visibility into active testing efforts across the company. • Ownership and execution of a continuous program running XBOW against public bug bounty programs, e.g. companies using HackerOne. • Ownership and execution of a program running XBOW in collaboration with open-source projects (program to be launched in Q2). • Ensuring that targets are attackable and our activities would be within their bug-bounty scope. • Prioritizing targets based on attack surface and target value. • Incorporation of pre-release XBOW software (e.g. new attack techniques or validators) into the program schedule. • Full end-to-end automation of the attack pipeline, including: • Scanning and reconnaissance infrastructure • Safety / compliance checks • Automated target prioritization and selection • Automated attack dispatch and management. • Tooling for triage and analysis of findings. • Company-wide dashboard for all active programs.
Benefits
• Compensation & Equity: Competitive salary and a generous equity package, making you a true owner of the company. • Career Growth: Shape your role, lead the function, and grow with the company as we redefine cybersecurity. • Meaningful Work: You will tackle technically complex challenges and play a pivotal role in the growth of our business, working alongside an amazing team and some of the world’s experts to shape how AI transforms cybersecurity. • WHAT ELSE YOU SHOULD KNOW • Location: Remote (all team members are remote but we meet regularly and you’re supported to travel to collaborate with colleagues in person) • Contract: Full-time. • We aren't focused on seniority titles at XBOW—so if you’re worried about “leveling,” don’t be. We care a lot more about mission fit, capability, and impact than what’s on your LinkedIn headline. • We believe in people who are driven by curiosity and a willingness to learn. Even if you don't check every box, we encourage you to apply if you're excited about the role and our mission.
No credit card. Takes 10 seconds.