Api Security Software Engineer-1

At PayPal (NASDAQ: PYPL), we believe that every person has the right to participate fully in the global economy.Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.Job Description Summary:In this role the Security Engineer supports efforts to minimize API security risk by discovering, managing, monitoring, and reporting on API security vulnerabilities, advising the technical community as a Subject Matter Expert (SME) while supporting the Automation of DevSecOps practice and pipeline.Responsibilities include participation in the creation and maintenance of API security specifications, reviewing software designs to ensure appropriate/required security controls have been included in designs, administering API security testing tools (Salt/Neo/Data Theorem), performing API code reviews, attesting compliance with the security requirements, and advising Product development teams on API-related technical issues and questions.In this Position, Security Engineer will work with Product development community and other technical team members to review existing and/or new APIs/web services in support of Security control implementations that align with Information Security policies, procedures, and accepted best practices.Security Engineer will be part of a world-class Product Security team and help deliver the most customer delight through our products and services.**Job Description**:**Essential Functions of Role**:- This role as the Security Engineer supports efforts to minimize API security risk by discovering, managing, monitoring, and reporting on API security vulnerabilities.- Design and develop the automation of API discovery and automated testing using tools like Data Theorem, Salt Security and Neo Sec.- Administrate API security testing tools (Salt/Neo/Data Theorem), performing API code reviews, and advising Product development teams on API-related technical issues and questions.- Participate in the creation and maintenance of API security specifications.- Evolve as a Subject Matter Expert (SME) on API Security for the PD community.**KNOWLEDGE**- 3+ Hands on experience designing, developing, and testing secure APIs (e.g. with REST, GraphQL and gRPC)- 3+ years of experience building and delivering production quality, scalable, secure, software systems- Experience building and reviewing threat models with the ability to craft malicious user, attacker, and abuse/misuse cases- Experience automating API security assessments into CI/CD pipelines- Experience with software engineering (you can write robust code and can point to specific examples of- projects you have successfully delivered in the past)**SKILLS**- Knowledge in evaluating on OWASP API top 10, National Institute of Standards and Technology (NIST) Special Publications, and the Open-Source Security Testing Methodology Manual (OSSTMM).- Knowledge of authentication and authorization infrastructure (e.g. SAML, OpenID, OAuth)- Experience with managing and tuning WAF/RASP/DAST/IAST/API Security tools- Cloud infrastructure Knowledge - AWS and/or GCP.**BEHAVIORAL**- Strong collaborator, able to work independently with many different stakeholders- Customer-oriented thinking (specifically, internal customers, serving the PayPal developer community)- Strong technical, analytical, and problem-solving skills.Our Benefits:At PayPal, we're committed to building an equitable and inclusive global economy.And we can't do this without our most important asset—you.That's why we offer benefits to help you thrive in every stage of life.We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.Who We Are:Click Here to learn more about our culture and community.As part of PayPal's commitment to employees' health and safety, we have established in-office Covid-19 protocols and requirements, based on expert guidance.Depending on location, this might include a Covid-19 vaccination requirement for any employee whose role requires them to work onsite.Employees may request reasonable accommodation based on a medical condition or religious belief that prevents them from being vaccinated.R*******Pay: $9,****** - $27,****** per month