Bishop Fox

Founded in 2005, we work in computer and network security. We specialize in offensive security, offering services like continuous penetration testing, red teaming, and attack surface management. We also assess product, cloud, and application security.

We serve enterprises, with clients including 26 of the Fortune 100, 8 of the top 10 global tech companies, 5 of the top 5 global media companies, 10 of the top 20 global retailers, and 7 of the top 10 manufacturers. Over the past six years, we’ve completed more than 25,000 projects for over 1,500 customers.

Our main services are Penetration Testing (for applications, AI, cloud, and networks), Red Team & Readiness, and Continuous Threat Exposure Management (CTEM). We use our COSMOS platform for continuous security testing. Bishop Fox Labs researches and develops new tactics, tools, and findings on emerging risks. In the last five years, we’ve created over 20 open-source tools and published more than 50 security advisories, including SLIVER, an open-source implant framework.

Our mission is to make the digital world safer for everyone by constantly adapting, challenging assumptions, and improving. We use a “forward defense” philosophy, finding and eliminating security weaknesses before they can be exploited, rather than just reacting to breaches.

Our core values are:

• Be Excellent to Each Other: Treating colleagues and clients with respect.
• Do What You Say You Will Do: Owning work and delivering on promises.
• Do the Right Thing: Upholding client trust and never compromising their interests.
• Get Better Together: Continuously learning, improving, and innovating as a team.
• Give a Shit: Caring about strengthening security and making the world better.

We have a remote-first work environment, with employees in 19 countries and 38 states. Our culture emphasizes impact, collaboration, and a commitment to the common good. We work to create a welcoming environment with flexible schedules and a focus on employee well-being.

We are committed to Diversity, Equity, & Inclusion (DEI), aiming to create an inclusive environment where individuals of all backgrounds can thrive. This commitment means building a diverse organization by reaching out to underrepresented groups, creating an inclusive culture through training and active listening, and positively impacting the broader cybersecurity industry. We support professional development through the Bishop Fox Academy, a training program with 1-on-1 mentorship on engagements, a video library, and career development support.

We offer comprehensive benefits, including full medical, dental, and vision insurance. Employees get generous time off, company-wide holidays, and paid parental leave. We provide a 401(k) plan with employer matching for Traditional and Roth accounts in the US. Work-from-home support is available, along with a monthly allowance for cell phone and internet. Other perks include a training budget, chances for professional growth and advancement, team events, and company swag.