Logo
PayPal

PayPal is hiring: Staff Cybersecurity Engineer in Scottsdale

PayPal, Scottsdale, AZ, US, 85261

Save Job
Staff Product Security Engineer

PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy.

This job leverages security expertise to resolve complex security issues, partners with teams to drive security initiatives, applies analytical skills to solve security challenges, contributes to security improvements, and influences security processes.

Essential Responsibilities:

  • Leverage specialized security expertise to identify and resolve complex security issues, recommending best practices and determining new approaches that have an impact on broader security operations, while aligning security strategies with business priorities
  • Partner across teams and key stakeholders to drive security initiatives, leading and solutioning complex projects and programs to strengthen overall security posture.
  • Apply advanced analytical skills and sound judgment to solve security challenges, considering diverse perspectives and innovative solutions. Stay current with industry trends and emerging technologies, understanding their security implications to the company's context.
  • Directly contribute to improvements within the security domain and occasionally beyond, ensuring decisions lead to meaningful enhancements in security practices.
  • Leverage relationships across teams, both within and outside of security, to influence initiatives and integrate feedback into security processes.

Minimum Qualifications:

  • Minimum of 8 years of relevant work experience and a Bachelor's degree or equivalent experience.

Job Summary:

As a Staff Product Security Engineer at PayPal, you'll help secure 434M accounts and $1.6T in annual payments across PayPal and its business lines. You will embed security into the software development lifecycle (SDLC) by shaping architecture decisions, influencing roadmaps, and scaling impact through automation, tooling, and mentorship. You will also perform in-depth design, architecture, and code reviews, working directly with developers and product teams to ensure products are secure by design.

Essential Responsibilities:

  • Lead and conduct security design, architecture, and code reviews, working directly with developers and product teams to ensure security is embedded throughout the SDLC.
  • Influence product architecture and roadmap decisions to ensure security is treated as a core design element.
  • Drive adoption of security standards and best practices across multiple product lines by mentoring engineers and providing scalable guidance.
  • Guide the secure design and integration of AI and large language models (LLMs) in PayPal products and internal security tooling.
  • Identify systemic sources of security debt and drive initiatives to remediate and prevent recurrence.
  • Provide technical leadership in cross-functional initiatives, shaping architecture, tooling, and processes to raise the overall security bar across PayPal's ecosystem.
  • Scale security impact by developing automation and self-service tooling that enables teams to efficiently address security needs.
  • Deliver targeted training and coaching that empowers teams to build securely at scale.
  • Stay ahead of emerging threats and technologies, integrating learnings into threat models and product designs.
  • Champion a culture of security by empowering teams to own and improve the security of their code and environments.

Minimum Qualifications:

  • 8+ years of experience in software development, application security, or cybersecurity, with proven ability to influence architecture and design decisions.
  • Expertise in application security vulnerabilities (e.g., OWASP Top 10) and secure coding practices.
  • Track record of partnering with developers to remediate vulnerabilities and implement robust security controls.
  • Strong written and verbal communication skills, with the ability to influence both technical and executive audiences.
  • Experience mentoring and developing engineers.

Preferred Qualifications:

  • Experience with application security tools (SAST, DAST, SCA, WAF, Burp Suite).
  • Strong programming experience in at least one language such as Ruby, Java, Python, JavaScript, or Swift.
  • Knowledge of Kubernetes, Terraform, and version control systems such as Git.
  • Hands-on experience with at least one major cloud vendor (AWS, Azure, GCP).
  • Strong understanding of authentication and authorization protocols (OAuth 2.0, SAML).

What you need to know about the role:

As a Staff Product Security Engineer in the PayPal Cyber & Information Security (PCIS) organization, you will work closely with product teams to embed security throughout the software development lifecycle. This senior role will provide the opportunity to develop new skills, collaborate across teams, mentor peers, and continue learning in a rapidly changing environment.

Meet our team:

Our mission is to embed security into every phase of the product development lifecycle, recognizing that security promotes quality engineering. We strive to create a culture of security by empowering teams to take responsibility for securing their own code and environments. We do this by providing leaders and engineers with the visibility, tools, guidance, training, and support needed to create secure products and systems. We prevent, identify, and respond to critical vulnerabilities within our ecosystem, driving response to limit potential impact to the business.

Your way to impact:

If you bring innovative approaches to solving complex security challenges and want to shape the future of product security at global scale, this role is for you.

Your day-to-day:

Responsibilities will be tailored based on business need, experience, and interest. In your day-to-day role, here are some activities you may be involved in:

  • Conduct security design and code reviews, facilitate penetration testing, and contribute to threat models.
  • Partner with engineers on secure coding, vulnerability remediation, and defensive design patterns.
  • Develop and support in-house tooling (including AI-driven solutions) to scale product security reviews and governance.
  • Implement, manage, and operate application security tools (SAST, DAST, SCA, etc.).
  • Respond to product security incidents, driving root cause analysis and mitigation.
  • Collaborate with developers and platform engineers to identify vulnerabilities and apply mitigating controls.

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don't hesitate to apply.

PayPal is committed to fair and equitable compensation practices.

The total compensation for this practice may include an annual performance bonus (or other incentive compensation, as applicable), equity, and medical, dental, vision, and other benefits. For more information, visit .

PayPal does not charge candidates any fees for courses, applications, resume reviews, interviews, background checks, or onboarding. Any such request is a red flag and likely part of a scam. To learn more about how to identify and avoid recruitment fraud please visit .

For the majority of employees, PayPal's balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations.

At PayPal, we're committed to building an equitable and inclusive global economy. And we can't do this without our most important assetyou. That's why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.

We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit .

Click Here to learn more about our culture and community.

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@.

Our employees are central to advancing our mission, and we strive to create an environment where everyone can do their best work with a sense of purpose and belonging. Belonging at PayPal means creating a workplace with a sense of acceptance and security where all employees feel