Security Operator

About RunSybil

Founded in 2023 by Ari Herbert-Voss and Vlad Ionescu, RunSybil is on a mission to automate hacker intuition. We are building Sybil, an AI-driven pentester that discovers vulnerabilities before they are exploited. As adversaries adopt AI to expand their attack surface, we are putting cutting-edge offensive security into the hands of defenders. Backed by strong investor support and early customer traction, our team includes experts from OpenAI, Meta, Mandiant, Palantir, Cruise, Trail of Bits, and Aptiv.

About the Role

We are looking for a Security Operator to join our security research team. You will work hands-on with web application vulnerabilities every day, assessing findings, confirming exploitability, rating severity, and delivering clear, accurate reports that customers rely on to understand and remediate their risk.

This role does not require software engineering experience. It requires deep familiarity with web vulnerabilities, sharp analytical judgment, and the ability to communicate findings precisely. If you have spent time in bug bounty, application security, or pentesting and have a strong eye for what is real and what is noise, we want to hear from you.

What You Will Do

• Assess and validate web application vulnerabilities across a range of targets and confirm exploitability and scope

• Reproduce findings hands-on using tools like Burp Suite

• Rate severity accurately using established frameworks such as CVSS and OWASP

• Write clear, accurate, customer-facing finding descriptions and remediation guidance that security practitioners trust and developers can act on

• Maintain consistent standards across a high volume of findings

• Surface patterns, edge cases, and unusual behaviors to the broader team

• Identify patterns across findings and share feedback on where and how Sybil can improve

We Are Looking for Someone Who Brings

• 2 or more years of hands-on experience with web application vulnerabilities through bug bounty, penetration testing, application security, or a similar role

• Solid, practical understanding of OWASP Top 10 and common web vulnerability classes: you have actually found and confirmed these, not just read about them

• Experience reproducing and validating findings manually, including in ambiguous or noisy environments

• Comfort with tools like Burp Suite, browser developer tools, or similar for hands-on verification

• Strong written communication: you can describe a vulnerability, its impact, and how to fix it in plain language

• Attention to detail and consistency: you apply the same standard to the hundredth finding that you applied to the first

• Self-direction: you manage your own work without needing someone to structure your day

Location

Hybrid role based in New York City or San Francisco with remote flexibility when needed.

Compensation: The base salary for this full-time position ranges from $130,000-$150,000. In addition to base salary, we offer meaningful equity. We want everyone here to have ownership in what we're building.

Diverse teams build better products. RunSybil is committed to hiring people who bring different perspectives, lived experiences, and backgrounds to our work. We encourage candidates of all races, ethnicities, gender identity and expression, sexual orientation, disability or medical conditions, ages, religions, and socioeconomic backgrounds to apply. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. If you're excited about this role but don't check every box, we still want to hear from you.