Security analysis of internal and third-party applications.
Vulnerability assessment in web applications and APIs.
Review of SAST/DAST scan findings and support in remediation.
Netrix Global provides the people, processes, and technology needed to run and scale modern, data-driven businesses that are always on and always secure. They work with clients of all sizes and specialize in solutions for healthcare, manufacturing, government, education, financial services, and legal industries.
Lead and execute offensive engagements, including red and purple team exercises.
Author comprehensive assessment deliverables detailing technical execution and remediation.
Contribute to thought leadership through research, conference speaking, and tool development.
GuidePoint Security delivers cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. With over 1,200 employees and strategic partnerships, they serve as a trusted advisor to more than 6,200 customers.
Design, build, and maintain security tools, scripts, and automations.
Partner with Engineering teams to manage and drive remediation of security vulnerabilities.
Evaluate and prioritize security risks based on industry standards and business context.
Weedmaps is a global leader in the cannabis industry. They are dedicated to transparency, education, and community, serving cannabis to consumers and businesses in the U.S. and worldwide.
Conduct security assessments using SAST, DAST, and SCA tools to identify vulnerabilities.
Perform code reviews and provide secure coding guidance to development teams.
Evaluate AI/ML model security and implement protections against prompt injection.
Hims & Hers is a health and wellness platform focused on providing affordable and personalized care. They are a public company traded on the NYSE, committed to a talent-first flexible/remote work approach featuring outstanding benefits and a strong culture.
Design, deploy, and manage security tools and infrastructure to detect and prevent threats across cloud (AWS and GCP), corporate, and product environments.
Work collaboratively with engineering and product teams to integrate security into the SDLC (Secure Software Development Life Cycle) via threat modeling, code reviews, and automated testing.
Conduct security assessments, penetration testing, and vulnerability management to identify and remediate risks in our applications and services.
Acorns is a financial wellness app helping people and families save and invest money for the long term. Since 2014, Acorns has grown into a global company with multiple life-stage products serving the needs of kids, teens, adults, and parents.
Preventively perform penetration tests and actively combat attacks.
Drive automation with regards to security testing, analyze and mitigate data and cyber risks.
Be a trusted advisor on information and IT security, working in a team of specialists.
Deutsche Telekom IT Solutions is part of the global Deutsche Telekom Group, ranked Hungary’s most attractive employer in 2025. With 5,300+ talented colleagues across Europe, they deliver cutting-edge IT and telecom solutions and are committed to excellence.
Create, manage, and maintain the application security strategy and roadmap.
Develop, execute, and track the performance of security measures to protect Alma’s data, applications, and systems.
Build and provide high-quality application security documentation and training to engineers.
Alma simplifies access to high-quality, affordable mental health care by making it easy and financially rewarding for therapists to accept insurance. Alma has over 20,000 therapists in their growing network and was named one of Inc’s Best Workplaces in 2022 and 2023.
Drive and enable proactive identification, analysis, and remediation of security vulnerabilities.
Respond to manage pen testing and bug bounty programs.
Work in partnership with Software Architecture, Risk/Compliance, the SRE team, and other partners, to integrate security capabilities into the SDLC.
Subsplash builds The Ultimate Engagement Platform™ for churches, Christian ministries, non-profits, and businesses around the world. They are a family-owned and operated company of 290+ mission-driven people.
Support the ISSO with information system security activities.
Perform Assessment and Authorization efforts under the Risk Management Framework.
Develop and maintain RMF documentation and coordinate vulnerability remediation.
GovCIO transforms government IT with innovative services and solutions. They foster a collaborative, team-oriented culture where employees' talents drive success.
Lead, coach, develop, and support the GSSC AppSec team while effectively delegating workload
Refine and mature team processes to enhance operational excellence and program scalability
Engage directly with customers to understand key security concerns and communicate how ServiceNow mitigates their risks
ServiceNow is a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Their intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work.
Own and operate n8n’s vulnerability intake and triage process, including the [email protected] inbox
Define and maintain security policies, standards, and public-facing disclosure documentation
Embed security into the software development lifecycle through threat modeling, design reviews, and pragmatic guardrails
n8n is the open workflow orchestration platform built for the new era of AI. They give technical teams the freedom of code with the speed of no-code, so they can automate faster, smarter, and without limits. Since their founding in 2019, they’ve grown into a diverse team of over 160.
Drive security of systems at scale and influence security strategy.
Integrate security into our SDLC with a shift-left approach.
Build a culture where security empowers developers through best practices.
Boulevard provides a client experience platform for appointment-based, self-care businesses, empowering customers to enhance client experiences. They are a team that values diverse backgrounds and believes in equal opportunity, fostering an inclusive culture where employees can excel.
Simulate attacks to uncover and report security vulnerabilities.
Proactively take charge, adapt to challenges, and navigate high-pressure scenarios.
Contribute to the security industry through continuous research on vulnerabilities.
Resillion is a global company that provides end-to-end capabilities in cyber security, testing of digital media content, and quality assurance, regardless of industry or geographical location. They have offices in North America, Europe, and Asia, helping organizations realize their ambitions through various services.
Own and lead Impiricus’s security architecture across AWS.
Design and implement application and infrastructure security controls across the SDLC.
Build and operate detection and response capabilities, including logging, monitoring, and alerting.
Impiricus is an AI-powered HCP Engagement Engine transforming how life sciences companies support physicians. They ethically connect HCPs to pharma resources and are known for their unique access to a large network of HCP advisors.
Assist the program and business to design and implement systems using cutting edge tools and interfaces.
Apply access controls, input validation and secure coding principles to protect customer data.
Document system architecture and compliance considerations for security best practices.
Peraton is a next-generation national security company that drives missions of consequence spanning the globe. They deliver trusted, highly differentiated solutions and technologies to protect our nation and allies.
Own and drive remediation of security vulnerability tickets across environments
Analyze vulnerability trends to identify process gaps and recommend improvements
Track remediation progress and provide weekly status updates to management
ItD is a consulting and software development company blending diversity, innovation, and integrity with real business results. They are a woman- and minority-led firm that rejects strong hierarchies, empowering them to deliver great results with Fortune 500 companies and high-performance teams.
Embed security into CI/CD pipelines and repos using policy-as-code tools (pre-commit hooks, SAST/SCA, IDE tool integrations)
Conduct threat modeling sessions and risk‑driven design reviews early in development
OnePay is a consumer fintech company trusted by millions of Americans to make money better by providing an all-in-one financial services platform. They are backed by Walmart and Ribbit Capital, allowing them rare scale and distribution to build something truly category-defining.
Identify, analyze, and reduce application-layer security risk.
Triage, validate, and prioritize findings from automated security tools and external researchers.
Work with engineering, vulnerability management, and security operations teams to address findings.
Upwork is the world’s work marketplace, serving startups to Fortune 100 companies. They provide a platform that enables companies and talent to work together to unlock their potential, with over $3.8 billion of work done through Upwork last year.