Staff Product Security Engineer

Join to apply for the Staff Product Security Engineer role at PayPal

3 weeks ago Be among the first 25 applicants

Join to apply for the Staff Product Security Engineer role at PayPal

The Company
PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy.

We operate a global, two-sided network at scale that connects hundreds of millions of merchants and consumers. We help merchants and consumers connect, transact, and complete payments, whether they are online or in person. PayPal is more than a connection to third-party payment networks. We provide proprietary payment solutions accepted by merchants that enable the completion of payments on our platform on behalf of our customers.

We offer our customers the flexibility to use their accounts to purchase and receive payments for goods and services, as well as the ability to transfer and withdraw funds. We enable consumers to exchange funds more safely with merchants using a variety of funding sources, which may include a bank account, a PayPal or Venmo account balance, PayPal and Venmo branded credit products, a credit card, a debit card, certain cryptocurrencies, or other stored value products such as gift cards, and eligible credit card rewards. Our PayPal, Venmo, and Xoom products also make it safer and simpler for friends and family to transfer funds to each other. We offer merchants an end-to-end payments solution that provides authorization and settlement capabilities, as well as instant access to funds and payouts. We also help merchants connect with their customers, process exchanges and returns, and manage risk. We enable consumers to engage in cross-border shopping and merchants to extend their global reach while reducing the complexity and friction involved in enabling cross-border trade.

Our beliefs are the foundation for how we conduct business every day. We live each day guided by our core values of Inclusion, Innovation, Collaboration, and Wellness. Together, our values ensure that we work together as one global team with our customers at the center of everything we do – and they push us to ensure we take care of ourselves, each other, and our communities.

Job Description Summary:
As a Product Security Engineer at PayPal, you’ll be at the forefront of our mission to secure 400 million accounts and $1.6 trillion in payments that move through our platforms each year. In this role, you’ll contribute to product and application security efforts in PayPal and its business lines including Braintree, Blockchain & Digital Currency (BCDC), Chargehound, Honey, Hyperwallet, Venmo, Xoom, and Zettle.

Job Description:
What you need to know about the roleAs a Staff Product Security Engineer in the PayPal Cyber & Information Security (PCIS) organization, you will work closely with product teams to embed security throughout the software development lifecycle. This senior role will provide the opportunity to develop new skills, collaborate across teams, mentor peers, and continue learning in a rapidly changing environment.

Meet our team

Our mission is to embed security into every phase of the product development lifecycle, recognizing that security promotes quality engineering. We strive to create a culture of security by empowering teams to take responsibility for securing their own code and environments. We do this by providing leaders and engineers with the visibility, tools, guidance, training, and support needed to create secure products and systems. We prevent, identify, and respond to critical vulnerabilities within our ecosystem, driving response to limit potential impact to the business.

Your way to impact

If you are think outside of the box, bring an extra edge to the table, and want to gain hands-on experience with a world-class team in the ever-changing field of product & application security, then please apply for this position!

Your day-to-day

Responsibilities will be tailored based on business need, experience, and interest. In your day-to-day role, you will:

• Provide consulting and advisement to software engineers on best practices, secure coding techniques, and vulnerability remediation
• Support the development of new product features by conducting security design and code reviews, facilitating penetration tests, and contributing to threat models
• Develop and support homegrown tooling that utilizes AI-powered large language models to scale and support product security reviews and governance
• Implement, manage, and operate application security tools such as static and dynamic application security scanners
• Respond to product security incidents
• Analyze potential threats and vulnerabilities to our systems, applications, and processes
• Collaborate closely with engineers, developers, and security teams to find security issues and mitigating controls
• Document and automate incident response and vulnerability management runbooks
• Stay up to date with the latest security trends, technologies, vulnerabilities, and attacks, and incorporate this knowledge into threat models and other workstreams
  
  
  

Essential Experience & Skills

• At least 5 years of experience in a software development or cyber security discipline
• Strong programming experience in at least one language such as Ruby, Java, Python, JavaScript, Swift. Expect to spend time writing and reviewing code.
• Experience with any of the following application security tools: SAST, DAST, API security scanners, WAF, software composition analysis
• Knowledge of Kubernetes, terraform, and source code management systems such as git.
• Hands on experience with at least one of the main cloud vendors (Amazon Web Services, Azure, Google Cloud Platform)
• Experience working with developers to communicate deficiencies and implement security measures.
• Experience in identifying and remediating common application security vulnerabilities such as OWASP Top 10 and a deep understanding of web application and mobile app vulnerabilities.
• Excellent written and verbal communication skills.
• Ability to work independently and as part of a team.
• Ability to mentor and guide junior team members.
• Strong understanding of authentication and authorization protocols, such as OAuth 2.0 and SAML.
• We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don't hesitate to apply.
  
  
  

PayPal is committed to fair and equitable compensation practices.

Actual Compensation is based on various factors including but not limited to work location, and relevant skills and experience.

The total compensation for this practice may include an annual performance bonus (or other incentive compensation, as applicable), equity, and medical, dental, vision, and other benefits. For more information, visit https://www.paypalbenefits.com.

The U.S. national annual pay range for this role is PayPal is committed to fair and equitable compensation practices.

Actual Compensation is based on various factors including but not limited to work location, and relevant skills and experience.

The total compensation for this practice may include an annual performance bonus (or other incentive compensation, as applicable), equity, and medical, dental, vision, and other benefits. For more information, visit https://www.paypalbenefits.com.

The U.S. national annual pay range for this role is $96900 to $234300

For the majority of employees, PayPal's balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations.

Our Benefits:

At PayPal, we’re committed to building an equitable and inclusive global economy. And we can’t do this without our most important asset—you. That’s why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.

We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com

Who We Are:

To learn more about our culture and community visit https://about.pypl.com/who-we-are/default.aspx

Commitment to Diversity and Inclusion

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.

Belonging at PayPal:

Our employees are central to advancing our mission, and we strive to create an environment where everyone can do their best work with a sense of purpose and belonging. Belonging at PayPal means creating a workplace with a sense of acceptance and security where all employees feel included and valued. We are proud to have a diverse workforce reflective of the merchants, consumers, and communities that we serve, and we continue to take tangible actions to cultivate inclusivity and belonging at PayPal.

Any general requests for consideration of your skills, please Join our Talent Community.

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don’t hesitate to apply.

Notice to Applicants and Employees who reside within New York city. Click https://careers.pypl.com/Contact-Us/default.aspx

to view the notice.

REQ ID R0122315

• Seniority level
  Not Applicable

• Employment type
  Full-time

• Industries
  Software Development, Financial Services, and Technology, Information and Internet

Referrals increase your chances of interviewing at PayPal by 2x

Get notified about new Product Security Engineer jobs in San Jose, CA.

Menlo Park, CA $117,000.00-$173,000.00 2 weeks ago

San Jose, CA $116,700.00-$207,200.00 1 week ago

Menlo Park, CA $177,000.00-$251,000.00 2 weeks ago

Menlo Park, CA $147,000.00-$208,000.00 2 weeks ago

Fremont, CA $128,400.00-$238,000.00 2 weeks ago

Sunnyvale, CA $136,000.00-$212,800.00 1 week ago

Menlo Park, CA $117,000.00-$173,000.00 2 weeks ago

Mountain View, CA $55.00-$60.00 2 hours ago

Mountain View, CA $150,000.00-$220,000.00 3 days ago

Menlo Park, CA $213,000.00-$293,000.00 2 weeks ago

Palo Alto, CA $135,000.00-$200,000.00 1 year ago

Sunnyvale, CA $143,300.00-$247,600.00 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.