Information Security Engineer at PayPal

Scottsdale, Arizona, United States -

Full Time

Start Date

Immediate

Expiry Date

05 Jan, 26

Salary

0.0

Posted On

07 Oct, 25

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Information Security, Security Best Practices, Certificate Management, HSM Administration, Incident Response, Automation, Collaboration, Documentation, Security Audits, Cross-Functional Projects, Problem Solving, Decision Making, Continuous Improvement, Risk Management, Compliance, Technical Troubleshooting

Industry

Software Development

Description

Independently apply security best practices to enhance and optimize systems, ensuring robust protection and efficiency, while beginning to understand and align security solutions with business objectives. Partner with peers and internal teams to drive security initiatives, contribute to cross-functional projects, and at times co-lead efforts to strengthen security posture. Analyze and resolve security challenges by adapting standard processes and exploring alternative approaches to address complex threats. Influence the quality, efficiency, and effectiveness of the team through informed decision-making, with a potential impact on other teams. Collaborate with other engineers to gather and incorporate feedback, driving continuous improvements in security processes. CA Administration: o Issue and revoke certificates according to established policies. o Monitor CA health and performance, ensuring its reliability. o Manage CA configurations and policies to comply with security standards. o Respond to certificate requests efficiently and accurately. o Publish Certificate Revocation Lists (CRLs) to maintain certificate status. * HSM Administration: o Monitor HSM health and performance, ensuring optimal operation. o Manage HSM access controls and user permissions to maintain security. o Apply firmware updates and security patches to protect against vulnerabilities. o Perform key backups and recovery operations to prevent data loss. o Troubleshoot HSM issues, resolving them promptly to minimize disruption. CLM Automation: o Develop and maintain scripts for automating certificate lifecycle processes, including issuance, renewal, and revocation. o Integrate Certificate Lifecycle Management (CLM) tools with other systems to streamline workflows. o Monitor and troubleshoot automation workflows to ensure smooth operation. Incident Response: o Investigate and respond to security incidents related to certificates and HSMs, mitigating potential damage. Collaboration and Communication: o Collaborate with other teams to integrate certificate services into various systems. o Document processes and procedures for PKI and HSM management. o Participate in security audits to ensure compliance with industry standards. 3+ years relevant experience and a Bachelor's degree OR Any equivalent combination of education and experience. Bachelor's degree in computer science, Information Security, or a related field. Knowledge of security best practices and industry standards.

Responsibilities

The Information Security Engineer will apply security best practices to enhance systems and align security solutions with business objectives. They will also analyze security challenges and collaborate with teams to drive security initiatives and improve processes.