Overview Come join one of the most dynamic security teams in the industry! At Intuit, we work closely with security researchers and our development teams to protect our customers, products and services from the latest emerging threats. We are looking for a seasoned offensive security practitioner to act as a member of our Adversary Emulation team. You will leverage your experience to analyze, triage, report and track through remediation, potential findings from programs such as bug bounty, vulnerability disclosure and penetration testing. What you'll bring + 3+ years in a computer security role, including at least 2 years of experience in offensive security + Experience with security testing one or more of the following: web applications, APIs, desktop apps, mobile apps, source code auditing + Experience with Python, or similar scripting language + Proven results utilizing vulnerability scanning, penetration testing and/or bug bounty tools, techniques and proof-of-concepts + Deep understanding of OWASP Top 10 Vulnerabilities + Experience across multiple security disciplines + Experience with task ticketing systems + Good written and verbal communication skills + Experience communicating risks to product teams and report writing + Ability to analyze and reproduce vulnerability reports while assessing severity and impact Preferred Skills/Experience + Experience in Fintech + Experience triaging vulnerability reports + Active in the security community: research/white papers, blogs, talks, presentations, recent bug bounty submissions + Android/iOS security testing or programming experience + BS in Computer Science, Cybersecurity, or related field or equivalent relevant experience + Professional level certifications (OSCP, GPEN, GWAPT, etc) How you will lead + Triage incoming bug bounty reports while assessing severity and impact + Provide input into high quality reports to enable stakeholders understanding of the impact and required remediations based on identified defects and security deficiencies + Build relationships with, and act as a liaison between, product teams, security teams and security researchers + Communicating effectively and professionally with internal and external stakeholders + Collaborating with stakeholders to track vulnerability through resolution + Maintain awareness of new attack vectors, 0-days, tools and other developments in the space + Collaborating with the security teams for further vulnerability analysis EOE AA M/F/Vet/Disability. Intuit will consider for employment qualified applicants with criminal histories in a manner consistent with requirements of local law.