MTS Application Security Engineer

Location:

Austin, Texas
New York, New York
Portland, Oregon
San Jose, California
Requisition Number:
R0048004

We are looking for a highly motivated Application Security engineer to join eBay’s Global Information Security team to tackle the problems of tomorrow while continuing to build and secure the foundation of today.

About the team:

This position is in eBay’s Application Security team under the Information Security umbrella. We need an Application Security Engineer with deep familiarity with securing products and driving them through a Secure Software Development Lifecycle.

The role:

Securing eBay Applications during the product development lifecycle from security attacks. You will need to be familiar with conducting application security assessments and driving Application Security standard methodologies.

Deep familiarity with Application security threats is required. Partnering with development, engineering and product teams daily, helping support the security approvals for applications, driving and improving Application Security processes.

We need you to be a hands-on Application Security Engineer with technology in researching, crafting, and implementing capabilities and defenses to secure and protect eBay’s critical Applications and infrastructure.

Job Function:

  • Conduct and drive Application Security assessments, design reviews and threat modeling of Applications
  • Conduct Application Security scans, code audits and approvals
  • Ensure applications and products are secured by driving them through the Secure Software Development lifecycle processes.
  • Strong emphasis on ensuring security of Applications, Data sharing flows, APIs, JavaScripts and threats from the supply chain.
  • Partner with Software Development, Engineering and Product teams daily to support their security needs
  • Evangelize security with development teams through Security training programs
  • Triage and drive remediation of security vulnerabilities through the organization’s bug bounty program
  • Define overall application security strategies and procedures
  • Be instrumental in approving the launch of applications to production after ensuring alignment to security processes
  • Define operational processes to ensure predictable software development outcomes; refine Information Security processes and procedures.
  • Evaluate software security products and technologies, as required

Job Requirements:

  • BSCS degree or an MS degree with appropriate years of experience; We prefer 5-12 years
  • Ability to conduct secure Software Development lifecycle processes and Application Security assessments
  • Understanding of threat vectors at Application level is required for web and mobile applications. Must have strong solid understanding of security design reviews and be able to drive threat modeling exercises
  • Ability to deep dive into security and data sharing threats from Applications, APIs, Client and server side scripts and supply chain attacks
  • Ability to engage with global application and engineering teams, business partners and product managers
  • Ability to deep dive into data and analyze for security and fraud anomalies.
  • Solid understanding of Application Security Strategies is required
  • Interacting with partner development, engineering and product teams every day. Strong communication and interpersonal skills are extremely desirable
  • You would be encouraged to drive vulnerability remediation of applications and web services, and consult with Engineering teams on Application Security solutions
  • 4+ years of related hands-on security product development experience (Java, Python, JS, PHP, Node.js) with web applications is a desirable addition.
  • Ability to build automation tools for security processes for both mobile and web applications is a plus
  • Ability to clearly articulate issues and communicate in an effective and personable manner
  • Ability to adjust quickly to the security needs of a highly agile organization

#LI-BB1

Benefits:

Benefits are an essential part of your total compensation for the work you do every day. Whether you’re single, in a growing family, or nearing retirement, eBay offers a variety of comprehensive and competitive benefit programs to meet your needs. Including maternal & paternal leave, paid sabbatical, and plans to help ensure your financial security today and in the years ahead because we know feeling financially secure during your working years and through retirement is important.

Here at eBay, we love creating opportunities for others by connecting people from widely diverse backgrounds, perspectives, and geographies. So, being diverse and inclusive isn’t just something we strive for, it is who we are, and part of what we do each and every single day. We want to ensure that as an employee, you feel eBay is a place where, no matter who you are, you feel safe, included, and that you have the opportunity to bring your unique self to work. To learn about eBay’s Diversity & Inclusion click here: https://www.ebayinc.com/company/diversity-inclusion/

eBay Inc. is an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, veteran status, and disability, or other legally protected status.  If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talent@ebay.com.  We will make every effort to respond to your request for disability assistance as soon as possible.

For more information see:  EEO is the Law Poster and EEO is the Law Poster Supplement

This website uses cookies to enhance your experience. By continuing to browse the site, you agree to our use of cookies

View our privacy policy and accessibility info

MTS Application Security Engineer

Austin, Texas
New York, New York
Portland, Oregon
San Jose, California
Requisition Number R0048004 Subsidiary eBay

We are looking for a highly motivated Application Security engineer to join eBay’s Global Information Security team to tackle the problems of tomorrow while continuing to build and secure the foundation of today.

About the team:

This position is in eBay’s Application Security team under the Information Security umbrella. We need an Application Security Engineer with deep familiarity with securing products and driving them through a Secure Software Development Lifecycle.

The role:

Securing eBay Applications during the product development lifecycle from security attacks. You will need to be familiar with conducting application security assessments and driving Application Security standard methodologies.

Deep familiarity with Application security threats is required. Partnering with development, engineering and product teams daily, helping support the security approvals for applications, driving and improving Application Security processes.

We need you to be a hands-on Application Security Engineer with technology in researching, crafting, and implementing capabilities and defenses to secure and protect eBay’s critical Applications and infrastructure.

Job Function:

  • Conduct and drive Application Security assessments, design reviews and threat modeling of Applications
  • Conduct Application Security scans, code audits and approvals
  • Ensure applications and products are secured by driving them through the Secure Software Development lifecycle processes.
  • Strong emphasis on ensuring security of Applications, Data sharing flows, APIs, JavaScripts and threats from the supply chain.
  • Partner with Software Development, Engineering and Product teams daily to support their security needs
  • Evangelize security with development teams through Security training programs
  • Triage and drive remediation of security vulnerabilities through the organization’s bug bounty program
  • Define overall application security strategies and procedures
  • Be instrumental in approving the launch of applications to production after ensuring alignment to security processes
  • Define operational processes to ensure predictable software development outcomes; refine Information Security processes and procedures.
  • Evaluate software security products and technologies, as required

Job Requirements:

  • BSCS degree or an MS degree with appropriate years of experience; We prefer 5-12 years
  • Ability to conduct secure Software Development lifecycle processes and Application Security assessments
  • Understanding of threat vectors at Application level is required for web and mobile applications. Must have strong solid understanding of security design reviews and be able to drive threat modeling exercises
  • Ability to deep dive into security and data sharing threats from Applications, APIs, Client and server side scripts and supply chain attacks
  • Ability to engage with global application and engineering teams, business partners and product managers
  • Ability to deep dive into data and analyze for security and fraud anomalies.
  • Solid understanding of Application Security Strategies is required
  • Interacting with partner development, engineering and product teams every day. Strong communication and interpersonal skills are extremely desirable
  • You would be encouraged to drive vulnerability remediation of applications and web services, and consult with Engineering teams on Application Security solutions
  • 4+ years of related hands-on security product development experience (Java, Python, JS, PHP, Node.js) with web applications is a desirable addition.
  • Ability to build automation tools for security processes for both mobile and web applications is a plus
  • Ability to clearly articulate issues and communicate in an effective and personable manner
  • Ability to adjust quickly to the security needs of a highly agile organization

#LI-BB1

Benefits:

Benefits are an essential part of your total compensation for the work you do every day. Whether you’re single, in a growing family, or nearing retirement, eBay offers a variety of comprehensive and competitive benefit programs to meet your needs. Including maternal & paternal leave, paid sabbatical, and plans to help ensure your financial security today and in the years ahead because we know feeling financially secure during your working years and through retirement is important.

Here at eBay, we love creating opportunities for others by connecting people from widely diverse backgrounds, perspectives, and geographies. So, being diverse and inclusive isn’t just something we strive for, it is who we are, and part of what we do each and every single day. We want to ensure that as an employee, you feel eBay is a place where, no matter who you are, you feel safe, included, and that you have the opportunity to bring your unique self to work. To learn about eBay’s Diversity & Inclusion click here: https://www.ebayinc.com/company/diversity-inclusion/

eBay Inc. is an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, veteran status, and disability, or other legally protected status.  If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talent@ebay.com.  We will make every effort to respond to your request for disability assistance as soon as possible.

For more information see:  EEO is the Law Poster and EEO is the Law Poster Supplement

This website uses cookies to enhance your experience. By continuing to browse the site, you agree to our use of cookies

View our privacy policy and accessibility info