XBOW is looking to solve the problem of offensive security practitioners being outpaced by attackers using AI, by creating a platform that puts security ahead in the arms race
Requirements
- Deep technical curiosity about attack vectors, vulnerability research, and security systems
- Hands-on experience in offensive security: penetration testing, red teaming, bug bounty, or security research
- Deep understanding of vulnerability classes, attack vectors, and security testing methodologies
- Experience with security automation tools and frameworks
- Background in security consulting or professional services
- Understanding of compliance and audit requirements for security testing
- Experience with threat modeling and risk assessment methodologies
Responsibilities
- Own product strategy for professional security testing tools and workflows
- Drive expansion into complex vulnerability classes: IDOR, prompt injection, session/auth issues, business logic flaws, DoS attacks
- Build actionable reporting and intelligence capabilities that provide insights beyond basic vulnerability scanners
- Define false positive reduction strategies and quality improvement initiatives
- Create global dashboard and analytics capabilities across applications, assessments, and organizational units
- Partner with security research community to understand emerging attack vectors and testing methodologies
- Build integrations with popular security testing tools and frameworks
Other
- Degree in a technology related field or equivalent experience
- Significant product management experience, preferably in security or developer productivity, scaling products from startup to $100M
- Action-oriented execution style with ability to rapidly prototype and iterate on security tools
- Strong connections in the security research and practitioner community
- Full-time contract
