← all jobs

Security Analyst

Work from home Full-time role Hiring

About RunSybil Founded in 2023 by Ari Herbert-Voss and Vlad Ionescu, RunSybil is on a mission to automate hacker intuition. We are building Sybil, an AI-driven pentester that discovers vulnerabilities before they are exploited. As adversaries adopt AI to expand their attack surface, we are putting cutting-edge offensive security into the hands of defenders. Backed by strong investor support and early customer traction, our team includes experts from OpenAI, Meta, Mandiant, Palantir, Cruise, Trail of Bits, and Aptiv.

About the Role

We are looking for a Security Analyst to join our security research team. You will work hands-on with web application vulnerabilities every day, assessing findings, confirming exploitability, rating severity, and delivering clear, accurate reports that customers rely on to understand and remediate their risk. This role does not require software engineering experience. It requires deep familiarity with web vulnerabilities, sharp analytical judgment, and the ability to communicate findings precisely. If you have spent time in bug bounty, application security, or pentesting and have a strong eye for what is real and what is noise, we want to hear from you.

What You Will Do

  • Assess and validate web application vulnerabilities across a range of targets and confirm exploitability and scope
  • Reproduce findings hands-on using tools like Burp Suite
  • Rate severity accurately using established frameworks such as CVSS and OWASP
  • Write clear, accurate, customer-facing finding descriptions and remediation guidance that security practitioners trust and developers can act on
  • Maintain consistent standards across a high volume of findings
  • Surface patterns, edge cases, and unusual behaviors to the broader team
  • Identify patterns across findings and share feedback on where and how Sybil can improve

We Are Looking for Someone Who Brings

  • 2 or more years of hands-on experience with web application vulnerabilities through bug bounty, penetration testing, application security, or a similar role
  • Solid, practical understanding of OWASP Top 10 and common web vulnerability classes: you have actually found and confirmed these, not just read about them
  • Experience reproducing and validating findings manually, including in ambiguous or noisy environments
  • Comfort with tools like Burp Suite, browser developer tools, or similar for hands-on verification
  • Strong written communication: you can describe a vulnerability, its impact, and how to fix it in plain language
  • Attention to detail and consistency: you apply the same standard to the hundredth finding that you applied to the first
  • Self-direction: you manage your own work without needing someone to structure your day

Location: Remote (US) Compensation: The base salary for this full-time position ranges from $130,000-$160,000. In addition to base salary, we offer meaningful equity. We want everyone here to have ownership in what we're building. Diverse teams build better products. RunSybil is committed to hiring people who bring different perspectives, lived experiences, and backgrounds to our work. We encourage candidates of all races, ethnicities, gender identity and expression, sexual orientation, disability or medical conditions, ages, religions, and socioeconomic backgrounds to apply. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. If you're excited about this role but don't check every box, we still want to hear from you.

More open positions

Senior Analyst - Cyber Threat Intel (Remote)

Work from home Full-time role

Threat Intelligence Analyst

Work from home Full-time role

Cyber Security Threat Analyst (Onsite Hybrid)

Work from home Full-time role

Threat Intelligence Liaison (US Federal)

Work from home Full-time role

Principal Cyber Threat Intelligence Researcher (Unit 42)

Work from home Full-time role

Software Engineer (Pleno) - AI Automation

Work from home Full-time role

Group Vice President, People Services

Work from home Full-time role

Channel Account Manager (French Speaking) - Owl Labs

Work from home Full-time role

Senior Remote Customer Service Representative – Healthcare Claims & Provider Support (CST/MST) – careerzynith

Work from home Full-time role

Remote Customer Service Representative – Independent Contractor Role with careerzynith, Supporting High‑Profile Clients Across Phone, Chat & Email

Work from home Full-time role

Sr. Business Analyst, SAP

Work from home Full-time role

[Remote] RTSM Study Analyst - Level I

Work from home Full-time role

[Remote] Remote Payroll Assistant (Houston)

Work from home Full-time role

Senior Business Development Representative - US

Work from home Full-time role

IT Security GRC Analyst - Remote

Work from home Full-time role

Senior Financial Modeling Analyst

Work from home Full-time role

[Remote] Principal Platform Engineer

Work from home Full-time role

Clinical Social Worker - Remote Position

Work from home Full-time role

Digital Marketing Content Producer (Short-Form Video & Social Media)

Work from home Full-time role

Remote Customer Service Representative – Consumer Experience & Support Specialist at careerzynith

Work from home Full-time role

[Remote] Product Manager II - US Derivatives

Work from home Full-time role