Employment Type : Full-Time
Who we are: Fueled by a fundamental belief that having access to financial services creates opportunity, PayPal (NASDAQ: PYPL) is committed to democratizing financial services and empowering people and businesses to join and thrive in the global economy. Our open digital payments platform gives PayPal’s 375 million active account holders the confidence to connect and transact in new and powerful ways, whether they are online, on a mobile device, in an app, or in person. Through a combination of technological innovation and strategic partnerships, PayPal creates better ways to manage and move money, and offers choice and flexibility when sending payments, paying or getting paid. Available in more than 200 markets around the world, the PayPal platform, including Braintree, Venmo and Xoom enables consumers and merchants to receive money in more than 100 currencies, withdraw funds in 56 currencies and hold balances in their PayPal accounts in 25 currencies. Job Description Summary: As a Sr. Application Security Engineer, you will be a pivotal in driving secure coding and SDLC efforts including secure code reviews, project security reviews, penetration testing, and application scanning processes. You will be in the thick of it daily, driving bug remediation, meeting with project teams to identify and secure changes in new functionality and stay on the forefront of bug identification and patching efforts. You will partner with your fellow security engineers to keep Venmo growing while keeping us secure! Job Description: What You’ll Do Support manual and automated code coverage efforts across all our code base Manage security integration into the SDLC process at Venmo Manage security integration into the CI/CD pipeline Manage integration with manual and automated tools for static and dynamic testing Identify areas for automation and tooling to increase code coverage Establish metrics and reporting to track coverage and effectiveness of security processes Leverage the tools and processes used throughout PayPal and Venmo Engage with product and developers to conduct security reviews and define security requirements Help evolve Venmo security features and services and manage security technical debt Manage Venmo product security bug intake and remediation process Mentor junior members of the team and act as a subject matter expert for application security issues Collaborate on security initiatives and promote security standards across Paypal and Venmo Conduct threat modelling and risk analysis to identify exposure and develop mitigation plans Become a representative for the Venmo Information Security program Strong experience in web and mobile application security issues Strong experience in distributed platform development security and design In-depth knowledge of web and mobile security standards and best practices (OWASP, etc.) Strong foundation in core information security principles and concepts (HTTPS, TLS, OAuth, etc.) Experience with industry tools and technologies such as Burp, Metasploit, etc. Working knowledge of common languages such as Python, GO, Javascript, Java, etc. Familiarity in public cloud security deployment and implementation issues (AWS) Familiarity with audits and standards requirements such ISO 27001, PCI DSS, SOC 1 & 2, etc. Proven expertise in enterprise-grade and web scale security solutions Excellent communication skills Ability to explain complex security topics in simple terms Ability to lead and project manage multiple security initiatives A good team player who is self-motivated and well organized We're a purpose-driven company whose beliefs are the foundation for how we conduct business every day. We hold ourselves to our One Team Behaviors which demand that we hold the highest ethical standards, to empower an open and diverse workplace, and strive to treat everyone who is touched by our business with dignity and respect. Our employees challenge the status quo, ask questions, and find solutions. We want to break down barriers to financial empowerment. Join us as we change the way the world defines financial freedom. PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities.
What We’re Looking For