MTS 2, Information Security

The Company

PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy. 

We operate a global, two-sided network at scale that connects hundreds of millions of merchants and consumers. We help merchants and consumers connect, transact, and complete payments, whether they are online or in person. PayPal is more than a connection to third-party payment networks. We provide proprietary payment solutions accepted by merchants that enable the completion of payments on our platform on behalf of our customers.

We offer our customers the flexibility to use their accounts to purchase and receive payments for goods and services, as well as the ability to transfer and withdraw funds. We enable consumers to exchange funds more safely with merchants using a variety of funding sources, which may include a bank account, a PayPal or Venmo account balance, PayPal and Venmo branded credit products, a credit card, a debit card, certain cryptocurrencies, or other stored value products such as gift cards, and eligible credit card rewards.  Our PayPal, Venmo, and Xoom products also make it safer and simpler for friends and family to transfer funds to each other. We offer merchants an end-to-end payments solution that provides authorization and settlement capabilities, as well as instant access to funds and payouts. We also help merchants connect with their customers, process exchanges and returns, and manage risk. We enable consumers to engage in cross-border shopping and merchants to extend their global reach while reducing the complexity and friction involved in enabling cross-border trade. 

Our beliefs are the foundation for how we conduct business every day.  We live each day guided by our core values of Inclusion, Innovation, Collaboration, and Wellness. Together, our values ensure that we work together as one global team with our customers at the center of everything we do – and they push us to ensure we take care of ourselves, each other, and our communities.

Job Description Summary:

We are seeking an experienced Senior Information Security Engineer SME with specialization in anti-malware/anti-virus solutions, Endpoint Detect and Response and Network Intrusion Detection Systems, with log analysis using SIEM tools such as Splunk. The ideal candidate should also have strong experience with standing up solutions selected by the business while providing operational guidance, architecture design, integrations including SSO, SIEM, monitoring and other platform integrations, cyber security expertise, incident response collaboration experience, proficiency in vulnerability detection solutions, File Integrity Monitoring (FIM) control and policy configuration experience, operational acumen, and a solid understanding of TCP/IP networking. This role involves architecting, implementing, and maintaining security solutions to protect our infrastructure and end user computing environments, leveraging platforms such as CrowdStrike Falcon, Microsoft Defender for Endpoint, Skyhigh Web Gateway, Trellix Endpoint Security for Storage, and Cisco Firepower Intrusion Detection Systems. The ideal candidate should also have extensive experience in configuring policy, integrations and providing platform support for multiple SaaS based security tools to act as the internal L3 escalation point for tool users and as a liaison between the users and vendor contacts for tools such as Cisco Umbrella, ThreatConnect and Palo Alto Cortex Xpanse.

Job Description:

Key Responsibilities:

Security Solutions Implementation and Management:

• Anti-malware/Anti-virus/Endpoint Detect and Response: Deploy, configure, and manage endpoint protection solutions to defend users and endpoints from malicious content.
• AV/EDR Policy Configuration: Implement and maintain platforms such as CrowdStrike Falcon, Microsoft Defender for Endpoint to protect against common threats. Configure policies to provide a balance between security and user/endpoint operational impact.

Log Analysis and Monitoring:

• SIEM Utilization: Analyze logs using Security Information and Event Management (SIEM) tools such as Splunk and Datadog to identify and respond to security incidents. Implement and manage log aggregation and monitoring solutions.
• Incident Response: Lead incident response efforts, providing root cause analysis, forensics, and remediation.

Deployment and Onboarding:

• Software Package Deployment: Manage the creation of endpoint security software packages for deployment via software distribution tools such as SCCM, JAMF, Puppet to ensure coverage to all endpoints in the environment.

Vulnerability Detection:

• Endpoint Vulnerability Detection: Manage and operationalize the vulnerability detection capabilities of endpoint security software tools for distribution and ingestion via aggregation platforms for consumption by the vulnerability management teams via platform integrations.

Cyber Security:

• Threat Analysis: Conduct thorough cyber security threat analysis and implement mitigation strategies to protect the organization’s assets.
• Policy Development: Develop and enforce cyber security policies, standards, and best practices to ensure a secure operating environment.
• Risk Management: Perform regular cyber security risk assessments and develop comprehensive risk management strategies.

Cloud Security:

• Cloud Platforms: Leverage cloud security best practices to protect services hosted on AWS, Azure, and GCP. Ensure secure configurations, access controls, and monitoring are in place.
• IAM: Manage identity and access management (IAM) policies to enforce least privilege and secure access to cloud resources.

Networking Expertise:

• TCP/IP Networking: Apply a solid understanding of TCP/IP networking principles to design, implement, and troubleshoot secure network configurations and protocols.

Collaboration and Compliance:

• Team Collaboration: Work closely with development, operations, network, and security teams to ensure cohesive and comprehensive security measures.
• Communication Channels: Utilize various communication channels effectively, including meetings, emails, Slack, and MS Teams, to collaborate efficiently with team members and other stakeholders.
• Compliance: Ensure alignment with industry standards and regulatory requirements such as GDPR, SOX, and PCI-DSS. Participate in compliance audits and risk assessments.

Training and Mentorship:

• Education: Provide guidance and training to junior team members and other stakeholders on best practices for edge and cloud security, including the use and management of WAF, DDoS protection, and bot management products.

Preferred Qualifications:

• Experience: 8+ years of experience in a Information Security Engineer role with a strong focus on endpoint AV/EDR, infrastructure based anti-malware solutions and network IDS products (Crowdstrike Falcon, Microsoft Defender for Endpoint, SkyHigh Web Gateway, Trellix Endpoint Security for Storage, and Cisco Firepower Intrusion Detection Systems.)
• Technical Skills:
  • Strong experience with performing solution stand-up including architectural design and implementation.
  • Strong experience with modern antimalware and endpoint detect and response solutions (CrowdStrike Falcon and Microsoft Defender for Endpoint)
  • Experience with infrastructure focused antimalware solutions providing secure ICAP server services (Skyhigh Web Gateway)
  • Experience with infrastructure focused antimalware solutions providing enterprise storage (NetApp) Antivirus services.  (Trellix Endpoint Security for Storage)
  • Experience in providing integrations with platforms such as SSO and SIEM tools.
  • Expertise in log analysis and monitoring using SIEM tools like Splunk.
  • Solid understanding of TCP/IP networking, network security principles, firewalls, IDS/IPS, and secure communication protocols
  • Familiarity with cloud security best practices and secure configurations on AWS, Azure, and GCP.
  • Knowledge of software deployment solutions and providing packages for deployment tools (SCCM, JAMF, Puppet)

Soft Skills:

• Problem-Solving: Excellent analytical and problem-solving skills.
• Communication: Strong communication and collaboration abilities.
• Leadership: Proven leadership and mentorship capabilities.
• Team Player: Strong ability to work effectively within a team environment and collaborate across various teams.
• Adaptability: Ability to work independently and handle multiple, complex priorities in a fast-paced environment.

Additional Job Description:

Subsidiary:

PayPal

Travel Percent:

0

For the majority of employees, PayPal's balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations.

Our Benefits:

At PayPal, we’re committed to building an equitable and inclusive global economy. And we can’t do this without our most important asset—you. That’s why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.

We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com.

Who We Are:

Click Here to learn more about our culture and community.

Commitment to Diversity and Inclusion 

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law.  In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities.  If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talentaccommodations@paypal.com.  

Belonging at PayPal: 

Our employees are central to advancing our mission, and we strive to create an environment where everyone can do their best work with a sense of purpose and belonging. Belonging at PayPal means creating a workplace with a sense of acceptance and security where all employees feel included and valued. We are proud to have a diverse workforce reflective of the merchants, consumers, and communities that we serve, and we continue to take tangible actions to cultivate inclusivity and belonging at PayPal.

Any general requests for consideration of your skills, please Join our Talent Community.

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don’t hesitate to apply.