Security Testing Engineer
PayPal Inc.

Job Info

---

At PayPal (NASDAQ: PYPL), we believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.

Job Description Summary:
What you need to know about the role

This position will conduct testing engagements in accordance with the Enterprise Risk & Compliance Testing Program Policy and other applicable corporate policies or procedures.

Meet our team

The PayPal Security and Technology Assurance Team is a specialized unit within the second line of defense Information Security and Technology oversight organization. Team members highlight their value/merit/importance to the business by showcasing a variety of security practitioner, technical testing, SRE, enterprise infrastructure, and coding/development skills to provide data-driven oversight.
You will be working with the latest and greatest PayPal products, which means working on the latest technologies. Many projects you will be working on can be of highly sensitive nature which means trust, honesty and integrity are core to the team and its members.

Job Description:

Your way to impact

The Risk & Compliance Testing Program is seeking a Security Tester to support the Independent Testing Program within the Second Line of Defense (SLOD) Compliance Program Monitoring team to strengthen our capabilities to identify key risk trends and drive execution. The candidate for this role will be responsible for designing and executing testing engagements while partnering with Subject Matter Experts and other testing teams to ensure that SLOD testing is completed in an effective, efficient, and timely manner.

Your day to day

• Design, engineer, and implement continuous testing methodologies for both security and technology controls.
• Collaborate with first line of defense to review test results and opportunities for control improvement.
• Create dashboards for continuous testing results.
• Validate first line of defense security/technology uplift and issue remediation efforts.
• Provide thought leadership to drive improvements to overall technology and security programs.
• Work in collaboration with internal audit, corporate compliance, risk management and various technical teams in the design and implementation of controls self-assessments, risk assessment and regulatory compliance practices for IT.
• Create, document, and implement control test plans, queries, scripts, and procedures.
• Investigate, analyze and document reported control defects.
• Work with cross-functional teams in performing reviews and tests of IT internal controls to ensure teams are operating adequate controls.
• Advises IT and business executives on the status of control test results.
• Assist in company-wide security initiatives.
• Demonstrated ability to conduct hands on security testing on infrastructure, web application, cloud stacks, etc.

What do you need to bring

• At least 5 years experience in security or technology control testing.
• Technical knowledge of security technologies and architecture in multiple security domains - such as infrastructure hardening, access/identity, DLP, endpoint security, vulnerability management, network security, application security and others.
• Ability to use thought leadership to find and drive solutions.
• Experience in designing, implementing, and operationalizing methodologies for continuous testing of security and or technical controls.
• Experience with log management and analysis.
• At least 1 year ofexperience in programming/scripting language.
• Broad security knowledge across common industry security standards (e.g., ISO, NIST, COSO, COBIT, PCI, FFIEC, SOX, SSAE16, and others).
• Possess either of the following certifications: OSCP, OSEP, CISSP, CISA, CISM, or GIAC.
• Ability to work independently with minimal supervision.
• Proven track record of having excellent analytical skills and being results-oriented.
• Excellent writing and verbal communication skills, interpersonal and presentation skills and the proven ability to influence and communicate effectively.
• Bachelor's degree from an accredited college (Information Technology, Information Assurance, Cyber Security or related disciplines preferred)

Desired Qualifications

• Experience writing code in Golang.
• Experience using Docker + Docker Compose.
• In depth knowledge of cloud technology.
• Data analytics and building in Splunk.
• Advanced Linux knowledge.

Additional Job Description:

Subsidiary:
PayPal

Travel Percent:
0

Our Benefits:
At PayPal, we're committed to building an equitable and inclusive global economy. And we can't do this without our most important asset-you. That's why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.
We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com

Who We Are:
Click Here to learn more about our culture and community.

PayPal has remained at the forefront of the digital payment revolution for more than 20 years. By leveraging technology to make financial services and commerce more convenient, affordable, and secure, the PayPal platform is empowering more than 400 million consumers and merchants in more than 200 markets to join and thrive in the global economy. For more information, visit paypal.com.

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.

As part of PayPal's commitment to employees' health and safety, we have established in-office Covid-19 protocols and requirements, based on expert guidance. Depending on location, this might include a Covid-19 vaccination requirement for any employee whose role requires them to work onsite. Employees may request reasonable accommodation based on a medical condition or religious belief that prevents them from being vaccinated.

This job has expired.