Senior Staff Software Engineer

What you need to know about the role: PayPal Core Payment platform team is looking for talented, creative, and passionate security engineers to help design and build Real Time Payments platform on public cloud. Meet our team: Does it excite you to work on systems that process billions of dollars in payments per year in 195+ countries? How about making an impact on 250+ million PayPal users around the world? PayPal Core Payment Platform team is looking for a talented, creative, and passionate back-end engineer to help design and build a new payments platform on public cloud. As a self-motivated and enthusiastic member of our team, you will work with extremely talented peers in a fun environment building performance efficient, highly scalable, configurable and available systems. You will work in an agile environment with a focus on problem solving and engineering excellence.

Your way to impact:

• Extensive experience in software development. 
• Experience in object-oriented programming and concepts 
• Experienced in Distributed System development using Java/J2EE/Web Technologies/C++. 
• Strong plus to have knowledge of software security in a cloud-based environment, including but not limited to: 

• Network Security (ex, firewall, packet inspecting and filtering, intrusion protection/IDS, SYN flood / DDoS detection and mitigation) 
• Transport Security (ex, SSL/TLS, IPSec) 
• Application Security (ex, layer-7 authentication and authorization protocols, WAF, XSS/CSRF attacks) 
• Data Security (ex, JOSE encryption standards, Google Tink, AWS Encryption SDK) 
• System Security (ex, container jailbreak) 
• Runtime Security (ex, image vulnerabilities scanning) 

• Strong knowledge of the full lifecycle of software security activities - from asset auditing, vulnerability management, data loss prevention, threat monitoring, incident detecting, remediating, mitigating, to conducting root cause analysis. 
• Strong familiarity with standard compliance protocols and regulations - PCI, HIPAA, GDPR, etc. 
• Experience and expertise in cloud-native environments and technologies (ex, VPC, ELB, IAM) are strongly preferred. 
• Experience with DevOps is a plus. 

Your day to day:

• Design, develop and test high throughput back-end payments systems 
• Develop efficient, elegant, clean code with no unnecessary complication or abstraction 
• Lead code review sessions 
• Passionate about low latency systems 
• Ability to deal with high volume data 
• Continuously look for opportunities for performance tuning 
• Work closely with functional-area architects, engineering, and security specialists throughout the company to ensure adequate security solutions and controls are in place throughout all IT systems, cloud systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements 
• Evaluate and respond to alerts and events from the security tools, including tuning of tool configuration to minimize false positives, development of event response documentation and processes for Security Operations Center response to follow for event actions, and escalating to appropriate teams for event response 

What do you need to bring-

• 9+ years of intensive experience in software development. 
• 9+ years of experience in object-oriented programming and concepts 
• 9+ years of experience in Distributed System development using Java/J2EE/Web Technologies/C++. 
• Proven track record in delivering highly available, scalable systems on time 
• Proven ability in helping the engineering productivity team and others in solving cyber security problems that not only comply with required standards, but also contribute materially to the security of Target systems 

**We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don't hesitate to apply.