Please note that this site has updated features that do not run on older versions of Internet Explorer. For an optimal experience, please use another browser or the most recent version of IE.

Senior Offensive Security Engineer in Remote Louisiana at PayPal

Date Posted: 11/20/2020

Job Snapshot

Job Description

Fueled by a fundamental belief that having access to financial services creates opportunity, PayPal (NASDAQ: PYPL) is committed to democratizing financial services and empowering people and businesses to join and thrive in the global economy. Our open digital payments platform gives PayPal’s 305 million active account holders the confidence to connect and transact in new and powerful ways, whether they are online, on a mobile device, in an app, or in person. Through a combination of technological innovation and strategic partnerships, PayPal creates better ways to manage and move money, and offers choice and flexibility when sending payments, paying or getting paid. Available in more than 200 markets around the world, the PayPal platform, including Braintree, Venmo and Xoom enables consumers and merchants to receive money in more than 100 currencies, withdraw funds in 56 currencies and hold balances in their PayPal accounts in 25 currencies.

PayPal’s Cybersecurity Defense group is looking for a team player to join our growing practice. The Offensive Security Engineer will join our Offensive Security team, focused on running penetration testing, red teams, and purple teams. The engineer will be responsible for performing various types of assessments, including but not limited to internet, intranet, wireless, web application penetration testing in addition to source code reviews and threat analysis. We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don't hesitate to apply.

Job Description

  • Design, scope, and perform penetration testing to identify and exploit security vulnerabilities affecting PayPal's assets
  • Execute red and purple team exercises to highlight gaps in our security posture
  • Perform research to identify new vulnerabilities and evasive techniques
  • Communicate findings and work with internal stakeholders including technical staff and senior leadership to develop remediations to protect the company
     

Requirements

  • Deep understanding of attack surfaces, including hands-on experience with various Cybersecurity technologies and standards (MITRE ATT&CK framework)
  • A minimum of 10 years of work experience in penetration testing, scripting languages (Python, PowerShell, Java, Perl), and offensive tools
  • Hands on experience with testing frameworks such as the PTES and OWASP
  • Updated and familiarized with the latest exploits and security trends
  • Applicable knowledge of Windows client/server, Unix/Linux systems, Mac OS, and cloud technologies such as AWS, Azure, or Google Cloud
  • Applicable knowledge of software development frameworks for web and mobile applications
  • Excellent writing and communication skills, attention to detail, and critical thinking skills
  • Extensive experience conveying complex data in simple, concise language
  • Prior experience running red \ purple team exercises
  • One or more of the following certifications: OSCP, OSCE, OSWP, GPEN, GWAPT, GMOB, GAWN, GXPN, GCIH

We're a purpose-driven company whose beliefs are the foundation for how we conduct business every day. We hold ourselves to our One Team Behaviors which demand that we hold the highest ethical standards, to empower an open and diverse workplace, and strive to treat everyone who is touched by our business with dignity and respect. Our employees challenge the status quo, ask questions, and find solutions. We want to break down barriers to financial empowerment. Join us as we change the way the world defines financial freedom.

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.

R0060305