Information Security Engineer

We are seeking motivated Security Engineers to join PayPal, Threat Management Engineering team in the Enterprise Cyber Security Org. In this role, you will report directly to the Security Engineering manager and work with various engineering teams, all things related to Cyber Security.

Threat Management Engineering team works to create and maintain the safest operating environment for PayPal users and developers. As a Security Engineer, you help protect network boundaries, support the secure configuration and use of On-prem Datacenter, GCP/AWS infrastructure, and services, keep computer systems and network devices hardened against attacks and provide security services to protect sensitive data. Security Engineers work hands-on with network and computer services and actively monitor our systems for attacks and intrusions. You also work with software engineers to proactively identify and fix security flaws and vulnerabilities and security exposures.

At PayPal (NASDAQ: PYPL), we believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.

**Job Description Summary**:
What you need to know about the role:
We are seeking motivated Security Engineers to join PayPal, Threat Management Engineering team in the Enterprise Cyber Security Org. In this role, you will report directly to the Security Engineering manager and work with various engineering teams, all things related to Cyber Security.

Threat Management Engineering team works to create and maintain the safest operating environment for PayPal users and developers. As a Security Engineer, you help protect network boundaries, support the secure configuration and use of On-prem Datacenter, GCP/AWS infrastructure, and services, keep computer systems and network devices hardened against attacks and provide security services to protect sensitive data. Security Engineers work hands-on with network and computer services and actively monitor our systems for attacks and intrusions. You also work with software engineers to proactively identify and fix security flaws and vulnerabilities and security exposures.

**Meet our team**:
Security Engineers in Threat Management Engineering team work on a broad set of efforts focusing on scaling and automating security infrastructure and processes. We solve user and corporate security concerns, help investigate security incidents, perform security gap analysis, build, and integrate systems, conduct applied research, and implement novel technologies and engineer solutions to deal with enterprise security across a diversity of computing platforms such as on-prem, cloud and mobile.

**Your way to impact**:

- Web Application Security: Engineering, deployment, and operations of Web Application Firewall security solutions and integration of those platforms with other security solutions as required.
- Performing hands-on Web Application Firewall deployment, configuration, policy fine-tuning and maintenance
- DDoS: Performing hands-on Web DDoS policies deployment, configuration, policy fine-tuning and maintenance
- Take part in monthly/yearly DDoS tests. Coordinate with BUs, stakeholders for DDoS tests, prepare DDoS test scenarios
- Investigate and Analyse data using SIEM tool - Splunk

**Your day to day**:

- Engineers, configures, deploys, and maintains Web Application Firewall solutions
- Develops advanced alerts/reports to meet the requirements of key stakeholders
- Develops automation for security tools management and workflow integration
- Collaborates with key stakeholders within Information Security and Engineering teams to develop specific use cases to address specific business needs
- Creates WAF rules/signatures to mitigate threats and implements best practices
- Creation and implementation of custom alerting dashboards in SIEM for investigations - SPLUNK
- Works extensively with different stakeholders across PayPal for tuning WAF policies or creating custom signatures
- Aids in gathering metrics for measuring Performance and Risk
- Provides ongoing support to existing monitoring capabilities and data collection systems.
- Provides development support for the expansion and implementation of new systems.
- Network traffic analysis and various log data to determine the threat against the target infrastructure, recommend appropriate countermeasures, and assess damage
- Be the single point of contact and the focal point for accepting, collecting, sorting, ordering, and passing on incoming information for the reported security incident events
- Basic understanding of tools and processes used in security incident detection and handling
- Recommend configuration changes to improve the performance, usability, and value of threat analysis tools
- Must be able to multi-task, work in