Bug Hunter - Pursuits (Dark Web & Threat Intelligence)

About The Team

The Pursuits team produces dark web and threat intelligence on prospects, the companies Cyble's sales and presales teams are trying to win. Early, validated intelligence shows a prospect what's exposed about it (access for sale, leaks, vulnerable assets) and demonstrates Cyble's offering in action. Our internal customers are sales and presales, and our work directly supports new-client growth.

We cover the dark web (access sales, leaks, malicious tools, marketplaces) and threats from ransomware groups, extortion crews, hacktivists, and APTs, plus cloud storage exposures and other vulnerabilities. Our work is both proactive and driven by collaboration with other teams.

About The Role:

You find vulnerabilities and misconfigurations in a prospect's assets, applications, and domains using passive reconnaissance, then write them up clearly. The core of the job is surfacing impactful findings and detailing them in reports with proof-of-concept steps and remediation recommendations.

What You’ll Do at Cyble:

• Run passive reconnaissance on prospects' assets, applications, and domains to find vulnerabilities and misconfigurations (no active scanning or exploitation).
• Use OSINT and dark web research, along with other avenues, to gather relevant data on prospects.
• Write clear, impactful reports with proof-of-concept steps and remediation recommendations.
• Keep learning and stay current on the latest research techniques and tools.
• Work with the team to report findings accurately and on time.

What You’ll Need:

• A strong passion for information security and learning.
• Excellent written and verbal communication.
• Familiarity with passive reconnaissance techniques and tools.
• Familiarity with common web and infrastructure vulnerability classes and how to demonstrate them safely.
• Able to use AI tools effectively to speed up research and writing.
• A track record of impactful findings, with writeups or proof-of-concept work you can walk us through.

Bonus Points If You Have:

• Familiarity with OSINT and dark web research.
• Basic scripting (Python/regex) for parsing data and automating checks.
• Exposure to bug bounty programs or coordinated disclosure / CVE work.

How The Role Is Measured?

• Impactful findings delivered each week.
• Reports are clear, accurate, and timely, with reproducible proof-of-concept steps.

If you like working in an inclusive environment, you want to advance your career quickly, and your opinion is valued, look no further than Cyble, Inc. We are young, hungry, and ready to impact the cyber security landscape!

Cyble, Inc. takes into consideration an individual’s skillset, experience and location in making final salary determination.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected Veteran status age, or genetics, or any other characteristic protected by law.

Interview Process

1. CV Shortlist by the Hiring Panel
2. Cognitive Assessment via a platform called Xobin - It’s a 50-minute assessment, which is a mandatory step in our recruitment process for all roles.
3. Panel Discussions - Typically comprising a minimum of three interview rounds, along with a role-based assignment.