Please note that this site has updated features that do not run on older versions of Internet Explorer. For an optimal experience, please use another browser or the most recent version of IE.

Venmo Sr. Cloud Security Engineer in Austin at PayPal

Date Posted: 3/17/2021

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Austin
  • Experience:
    Not Specified
  • Date Posted:
    3/17/2021
  • Job ID:
    R0067037

Job Description

Fueled by a fundamental belief that having access to financial services creates opportunity, PayPal (NASDAQ: PYPL) is committed to democratizing financial services and empowering people and businesses to join and thrive in the global economy. Our open digital payments platform gives PayPal’s 375 million active account holders the confidence to connect and transact in new and powerful ways, whether they are online, on a mobile device, in an app, or in person. Through a combination of technological innovation and strategic partnerships, PayPal creates better ways to manage and move money, and offers choice and flexibility when sending payments, paying or getting paid. Available in more than 200 markets around the world, the PayPal platform, including Braintree, Venmo and Xoom enables consumers and merchants to receive money in more than 100 currencies, withdraw funds in 56 currencies and hold balances in their PayPal accounts in 25 currencies.

As a Sr. Cloud Security Engineer, your will be responsible for ensuring we have the proper visibility, detection, and operations to protect Venmo and our customers. Your primary responsibilities will involve driving the roadmap and delivery of a comprehensive strategy to capture all critical stages, triggers, and activities within our product delivery and deployment pipeline as recommended by the Cloud Security Alliance (CSA) DevSecOps Six Pillars strategy. You will be expected to take into account our native tooling and existing processes while investigating and solving for best-in-class security automation in all stages of product development and deployment lifecycle. You will lead, advocate, and assist in creating the tooling and infrastructure that drives our next-generation detection and response pipelines. You will work closely with teams across the company to provide tooling and automation to scale detection and response across all environments. As a member of our Cyber Security team, you will also aid and assist in a wide variety of efforts including secure infra-as-code reviews, DDoS mitigation, penetration testing, and other security responsibilities. You will partner with your fellow security engineers and developers to keep Venmo growing while keeping us secure!

Venmo Sr. Cloud Security Engineer 

 

Locations: 

Austin, TX, Chicago, IL, or Scottsdale, AZ 

 

 

Venmo was founded on the principles of breaking down the intimidating barriers around financial transactions to make them intuitive, friendly, and even fun. And it worked: people love sending money with Venmo, and we’re growing by leaps and bounds! 

 

But we’re only just getting started. We want to take that magic of sending money with Venmo and cascade it into every place where people use money. That means connecting people to their money in the most intuitive and fun way possible, then connecting people with each other. Users already love Venmo, but we know there are lots of things we haven’t thought of to make the experience of using Venmo even more delightful and valuable. All that’s going to take a lot of figuring out. Let’s figure it out together! 

 

Cyber Security at Venmo 

 

Join our highly proficient team of Security Engineers working to make Venmo more secure. Drive the building and adoption of new security tools and technologies while supporting day-to-day security activities from code reviews, vulnerability testing and remediation, incident handling and response, security monitoring and alerting and more. Come join a team driven to elevate Venmo’s security posture through innovation, automation, and excellence. 

 

Senior Cloud Security Engineer 

 

As a Sr. Cloud Security Engineer, your will be responsible for ensuring we have the proper visibility, detection, and operations to protect Venmo and our customers. Your primary responsibilities will involve driving the roadmap and delivery of a comprehensive strategy to capture all critical stages, triggers, and activities within our product delivery and deployment pipeline as recommended by the Cloud Security Alliance (CSA) DevSecOps Six Pillars strategy.  

 

You will be expected to take into account our native tooling and existing processes while investigating and solving for best-in-class security automation in all stages of product  development and deployment lifecycle. You will lead, advocate, and assist in creating the tooling and infrastructure that drives our next-generation detection and response pipelines. You will work closely with teams across the company to provide tooling and automation to scale detection and response across all environments. As a member of our Cyber Security team, you will also aid and assist in a wide variety of efforts including secure infra-as-code reviews, DDoS mitigation, penetration testing, and other security responsibilities. You will partner with your fellow security engineers and developers to keep Venmo growing while keeping us secure! 

 

What You’ll Do 

 

Help drive our detection and response strategy across the Venmo enterprise 

Ensure the team has proper visibility into logging sources 

Respond to incidents both as an incident commander and contributor 

Document and automate incident response playbooks 

Partner with other engineering and operation teams to understand requirements for tooling and integrations 

Develop tools or software and deploy infrastructure to enable new detection capabilities and automated response 

Research emerging attack vectors and techniques 

Work with other engineering teams to enable detections within their platforms and products  

Mentor junior members of the team and act as a subject matter  

 

What We’re Looking For 

 

5+ years of related work experience in incident response and threat detection 

Strong experience in Python, Go, Java, Javascript or similar to build security tools 

Strong experience in securing services running public cloud environments (AWS, GCP, Azure) 

Strong experience in integrating and deploying cloud-native applications in production 

Strong experience in maintaining healthy operations of security tooling and infrastructure 

Strong experience with industry tools and technologies such as Qualys, Tenable, Splunk, Sumo Logic, Graylog, OSQuery, OSSec, Sysdig, Twistlock, Aqua, etc. 

Familiarity with audits and standards requirements such ISO 27001, PCI DSS, SOC 1 & 2, etc. 

 

Demonstrated technical experience in related security disciplines such as Appsec, intrusion detection and response, network security, infrastructure security, etc. 

Strong ability to prioritize and track multiple projects in parallel 

Previous experience working in collaborative security teams 

Experience in implementing and scaling enterprise-grade and web-scale security programs in a dynamic and agile environment 

Big plus for experience in speaking / publishing in relevant security conferences 

Big plus if you have publicly released tools or modules 

Extra bonus points for forensic analysis experience (logs, hosts, images, etc.) 


We're a purpose-driven company whose beliefs are the foundation for how we conduct business every day. We hold ourselves to our One Team Behaviors which demand that we hold the highest ethical standards, to empower an open and diverse workplace, and strive to treat everyone who is touched by our business with dignity and respect. Our employees challenge the status quo, ask questions, and find solutions. We want to break down barriers to financial empowerment. Join us as we change the way the world defines financial freedom.

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.

R0067037