Offensive Security Engineer

Paypal

Anywhere Remote only

Full time

Engineering

May 6

Job Description

At PayPal (NASDAQ: PYPL), we believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.


PayPal’s Cybersecurity group is looking for a team player to join our growing practice. The Offensive Security Engineer will join our Offensive Security team, focused on running penetration testing of applications and products. The engineer will be responsible for performing various types of assessments, including but not limited to network, wireless, web application, API, and product penetration testing in addition to source code reviews and threat analysis.


Job Description:

  • Design, scope, and perform penetration testing to identify and exploit security vulnerabilities affecting PayPal's evolving new products and technologies
  • Perform penetration testing on web based application, thick-client application, secure code reviews and facilitate risk based decision making
  • Perform mobile application penetration testing across different mobile platforms
  • Understand Fintech related business logic and flows, current vulnerability trends, review application security architectures and develop attack plans for pentesting based on business and technology risks
  • Assist application teams in understanding and resolving vulnerabilities identified through penetration testing
  • Prioritize risks based on CVSS severity scores, Communicate findings and work with internal stakeholders to provide remediation advice
  • Perform proactive research to understand new security threats, vulnerabilities, and related exploits on PayPal emerging products
  • Maintain knowledge of security and privacy laws, industry best practices, changes in technology, and advise on the impact for PayPal applications
  • Assist in development of automated security testing based on common findings & issue patterns within PayPal environment

Must Haves :

  • Bachelor’s Degree or higher in information security technology, Computer Science or related technical discipline
  • A minimum of 5 years of work experience in penetration testing, scripting languages (Python, PowerShell, Java, Perl), and offensive tools
  • Software development skills in one or more languages (Python, Java, Node.js, etc)
  • Demonstrated advanced knowledge of web penetration testing
  • Hands-on penetration testing of web, mobile application testing, thick client testing and code reviews
  • Deep understanding of attack surfaces, including hands-on experience with various Cybersecurity technologies and standards (MITRE ATT&CK framework)
  • Hands on experience with testing frameworks such as the PTES and OWASP
  • Strong understanding of common vulnerabilities (OWASP Top 10) and common security controls related to CSP, OAuth, Cryptography etc..
  • Excellent writing and communication skills, attention to detail, and critical thinking skills
  • Extensive experience conveying complex data in simple, concise language
  • We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don't hesitate to apply.


Our Benefits:


At PayPal, we’re committed to building an equitable and inclusive global economy. And we can’t do this without our most important asset—you. That’s why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.


We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com


Who We Are:


Click Here to learn more about our culture and community.


PayPal has remained at the forefront of the digital payment revolution for more than 20 years. By leveraging technology to make financial services and commerce more convenient, affordable, and secure, the PayPal platform is empowering more than 400 million consumers and merchants in more than 200 markets to join and thrive in the global economy. For more information, visit paypal.com.



PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.

As part of PayPal’s commitment to employees’ health and safety, we have established in-office Covid-19 protocols and requirements, based on expert guidance. Depending on location, this might include a Covid-19 vaccination requirement for any employee whose role requires them to work onsite. Employees may request reasonable accommodation based on a medical condition or religious belief that prevents them from being vaccinated.



R0086246

Apply for this position Back to job

You must be logged in to to apply to this job.

Apply

Your application has been successfully submitted.

Please fix the errors below and resubmit.

Something went wrong. Please try again later or contact us.

Personal Information

Profile

View resume

Details

Paypal

Spend, send, and receive money the way you want, simply and securely, with PayPal.

{{notification.msg}}