PayPal
MTS 1, Information Security Engineer
PayPal, Greendale, Wisconsin, United States, 53129
PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy.
We are seeking an experienced Senior Edge Security DevOps Engineer with specialization in Bot manager solutions, Web Application Firewalls (WAF), DDoS assessments, and log analysis using SIEM tools such as Splunk and Datadog. The ideal candidate should also have strong development skills in Node.js, Java & python, cyber security expertise, cloud security proficiency, operational acumen, a solid understanding of TCP/IP networking, and proficiency in testing for OWASP Top 10 vulnerabilities. This role involves architecting, implementing, and maintaining security solutions to protect our edge and cloud infrastructure, leveraging platforms such as Fastly, Edgio, Cloudflare, F5 Silverline, Radware & Datadome.
Key Responsibilities:
Security Solutions Implementation and Management: Bot Management: Deploy, configure, and manage Bot management/protection solutions to defend web applications against malicious bot traffic. WAF Configuration: Implement and maintain Web Application Firewall (WAF) solutions using platforms such as Fastly, Edgio, Cloudflare, and F5 Silverline to protect against common web threats. Run automated scans using tools like GoTestWAF, nuclei to evaluate WAF efficiency. DDoS Mitigation: Develop and implement comprehensive DDoS mitigation strategies. Conduct regular DDoS assessments to evaluate the effectiveness of current defenses and update them as needed. CI/CD Pipeline Security: Integration: Embed security best practices, tools, and processes into the continuous integration and continuous deployment (CI/CD) pipelines. Automation: Develop scripts and automation tools to enforce security policies across development, testing, and production environments. Log Analysis and Monitoring: SIEM Utilization: Analyze logs using Security Information and Event Management (SIEM) tools such as Splunk and Datadog to identify and respond to security incidents. Implement and manage log aggregation and monitoring solutions. Incident Response: Lead incident response efforts, providing root cause analysis, forensics, and remediation. Development and Coding: Node.js, Java & python: Develop and maintain tools, scripts, and applications in Node.js, Java & python to support security operations and streamline security workflows. Secure Coding Practices: Conduct secure code reviews, ensure adherence to security standards, and collaborate with development teams to remediate identified vulnerabilities. Testing for Vulnerabilities: OWASP Top 10: Perform security testing for OWASP Top 10 vulnerabilities using automated and manual testing methods. Ensure identified vulnerabilities are remediated in a timely manner. Proficiency with web application security testing tools like OWASP ZAP (Zed Attack Proxy), Burp suite, Arachni, Nikto etc. Cyber Security: Threat Analysis: Conduct thorough cyber security threat analysis and implement mitigation strategies to protect the organization’s assets. Policy Development: Develop and enforce cyber security policies, standards, and best practices to ensure a secure operating environment. Risk Management: Perform regular cyber security risk assessments and develop comprehensive risk management strategies. Cloud Security: Cloud Platforms: Leverage cloud security best practices to protect services hosted on AWS, Azure, and GCP. Ensure secure configurations, access controls, and monitoring are in place. IAM: Manage identity and access management (IAM) policies to enforce least privilege and secure access to cloud resources. Networking Expertise: TCP/IP Networking: Apply a solid understanding of TCP/IP networking principles to design, implement, and troubleshoot secure network configurations and protocols. Collaboration and Compliance: Team Collaboration: Work closely with development, operations, network, and security teams to ensure cohesive and comprehensive security measures. Communication Channels: Utilize various communication channels effectively, including meetings, emails, Slack, and MS Teams, to collaborate efficiently with team members and other stakeholders. Compliance: Ensure alignment with industry standards and regulatory requirements such as GDPR, HIPAA, and PCI-DSS. Participate in compliance audits and risk assessments. Training and Mentorship: Education: Provide guidance and training to junior team members and other stakeholders on best practices for edge and cloud security, including the use and management of WAF, DDoS protection, and bot management products. Preferred Qualifications: Experience: 8+ years of experience in a DevOps/SecOps role with a strong focus on edge and cloud security, WAF products (Fastly, Edgio, Cloudflare, F5 Silverline), DDoS protection, bot management, and vulnerability assessment. Technical Skills: Proficiency in maintaining and securing edge and cloud environments. Strong development skills in Node.js and Java. Experience with CI/CD tools such as Jenkins, GitLab, and CircleCI. Expertise in log analysis and monitoring using SIEM tools like Splunk and Datadog. Proficiency in testing for OWASP Top 10 vulnerabilities and mitigating identified risks and running web application security testing tools. Solid understanding of TCP/IP networking, network security principles, firewalls, IDS/IPS, and secure communication protocols. Familiarity with cloud security best practices and secure configurations on AWS, Azure, and GCP. Knowledge of container orchestration (Kubernetes, Docker) and container security. Education: Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field. Relevant certifications such as CISSP, CEH, SANS GPEN, GXPN, SANS GIAC AWS Security, OSCP, or similar are highly desired. Soft Skills: Problem-Solving: Excellent analytical and problem-solving skills. Communication: Strong communication and collaboration abilities. Leadership: Proven leadership and mentorship capabilities. Team Player: Strong ability to work effectively within a team environment and collaborate across various teams. Adaptability: Ability to work independently and handle multiple, complex priorities in a fast-paced environment. Workplace Model: Hybrid (in-office three days a week). For the majority of employees, PayPal's balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations.
#J-18808-Ljbffr
Security Solutions Implementation and Management: Bot Management: Deploy, configure, and manage Bot management/protection solutions to defend web applications against malicious bot traffic. WAF Configuration: Implement and maintain Web Application Firewall (WAF) solutions using platforms such as Fastly, Edgio, Cloudflare, and F5 Silverline to protect against common web threats. Run automated scans using tools like GoTestWAF, nuclei to evaluate WAF efficiency. DDoS Mitigation: Develop and implement comprehensive DDoS mitigation strategies. Conduct regular DDoS assessments to evaluate the effectiveness of current defenses and update them as needed. CI/CD Pipeline Security: Integration: Embed security best practices, tools, and processes into the continuous integration and continuous deployment (CI/CD) pipelines. Automation: Develop scripts and automation tools to enforce security policies across development, testing, and production environments. Log Analysis and Monitoring: SIEM Utilization: Analyze logs using Security Information and Event Management (SIEM) tools such as Splunk and Datadog to identify and respond to security incidents. Implement and manage log aggregation and monitoring solutions. Incident Response: Lead incident response efforts, providing root cause analysis, forensics, and remediation. Development and Coding: Node.js, Java & python: Develop and maintain tools, scripts, and applications in Node.js, Java & python to support security operations and streamline security workflows. Secure Coding Practices: Conduct secure code reviews, ensure adherence to security standards, and collaborate with development teams to remediate identified vulnerabilities. Testing for Vulnerabilities: OWASP Top 10: Perform security testing for OWASP Top 10 vulnerabilities using automated and manual testing methods. Ensure identified vulnerabilities are remediated in a timely manner. Proficiency with web application security testing tools like OWASP ZAP (Zed Attack Proxy), Burp suite, Arachni, Nikto etc. Cyber Security: Threat Analysis: Conduct thorough cyber security threat analysis and implement mitigation strategies to protect the organization’s assets. Policy Development: Develop and enforce cyber security policies, standards, and best practices to ensure a secure operating environment. Risk Management: Perform regular cyber security risk assessments and develop comprehensive risk management strategies. Cloud Security: Cloud Platforms: Leverage cloud security best practices to protect services hosted on AWS, Azure, and GCP. Ensure secure configurations, access controls, and monitoring are in place. IAM: Manage identity and access management (IAM) policies to enforce least privilege and secure access to cloud resources. Networking Expertise: TCP/IP Networking: Apply a solid understanding of TCP/IP networking principles to design, implement, and troubleshoot secure network configurations and protocols. Collaboration and Compliance: Team Collaboration: Work closely with development, operations, network, and security teams to ensure cohesive and comprehensive security measures. Communication Channels: Utilize various communication channels effectively, including meetings, emails, Slack, and MS Teams, to collaborate efficiently with team members and other stakeholders. Compliance: Ensure alignment with industry standards and regulatory requirements such as GDPR, HIPAA, and PCI-DSS. Participate in compliance audits and risk assessments. Training and Mentorship: Education: Provide guidance and training to junior team members and other stakeholders on best practices for edge and cloud security, including the use and management of WAF, DDoS protection, and bot management products. Preferred Qualifications: Experience: 8+ years of experience in a DevOps/SecOps role with a strong focus on edge and cloud security, WAF products (Fastly, Edgio, Cloudflare, F5 Silverline), DDoS protection, bot management, and vulnerability assessment. Technical Skills: Proficiency in maintaining and securing edge and cloud environments. Strong development skills in Node.js and Java. Experience with CI/CD tools such as Jenkins, GitLab, and CircleCI. Expertise in log analysis and monitoring using SIEM tools like Splunk and Datadog. Proficiency in testing for OWASP Top 10 vulnerabilities and mitigating identified risks and running web application security testing tools. Solid understanding of TCP/IP networking, network security principles, firewalls, IDS/IPS, and secure communication protocols. Familiarity with cloud security best practices and secure configurations on AWS, Azure, and GCP. Knowledge of container orchestration (Kubernetes, Docker) and container security. Education: Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field. Relevant certifications such as CISSP, CEH, SANS GPEN, GXPN, SANS GIAC AWS Security, OSCP, or similar are highly desired. Soft Skills: Problem-Solving: Excellent analytical and problem-solving skills. Communication: Strong communication and collaboration abilities. Leadership: Proven leadership and mentorship capabilities. Team Player: Strong ability to work effectively within a team environment and collaborate across various teams. Adaptability: Ability to work independently and handle multiple, complex priorities in a fast-paced environment. Workplace Model: Hybrid (in-office three days a week). For the majority of employees, PayPal's balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations.
#J-18808-Ljbffr