Staff Information Security Engineer
myGwork - LGBTQ+ Business Community · Bengaluru, Karnataka, India
- On site
- Full-time
- $150,000 / year
- Bengaluru, Karnataka, India
Job highlights
- Secure eBay's critical infrastructure from attacks.
- Assess AI systems and applications for security risks.
- Develop and implement scalable security tools.
- Collaborate on security incidents and investigations.
- Build automated security test suites for vulnerabilities.
About the role
Staff Information Security Engineer
This job is with eBay, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.
At eBay, we're more than a global ecommerce leader - we're changing the way the world shops and sells. Our platform empowers millions of buyers and sellers in more than 190 markets around the world. We're committed to pushing boundaries and leaving our mark as we reinvent the future of ecommerce for enthusiasts.
Our customers are our compass, authenticity thrives, bold ideas are welcome, and everyone can bring their unique selves to work - every day. We're in this together, sustaining the future of our customers, our company, and our planet.
Join a team of passionate thinkers, innovators, and dreamers - and help us connect people and build communities to create economic opportunity for all.
We are looking for a highly motivated security engineer to join eBay's Global Information Security team to take on the problems of tomorrow while continuing to build and secure the foundation of today. The Application Security team ensures all eBay products are secured via optimized security processes and solutions.
The Application Security team is dedicated to securing all eBay products through the implementation of optimized security solutions and processes.
We need a hands-on Security Engineer to research, craft, and implement capabilities and defenses to secure and protect eBay's critical infrastructure.
What you will accomplish
- Secure eBay through security attacks reduction by implementing foundational product security fixes
- Perform regular security assessments that include threat modeling or architectural design reviews of AI systems and applications that might be developed in-house or sourced externally
- Strong familiarity with AI/ML, LLM concepts, implementations and their security implications
- Own processes for continuously fine-tuning security rules and processes for efficient detection and mitigation
- Experience with working in the Security / Risk / Fraud space to build end-end security solutions to reduce monetary losses due to security loopholes and fraud
- Develops scalable security management tools and processes
- Collaborate with peer InfoSec teams in security incident investigations, and driving security charter across organization
- Knowledge of integration of security automation solutions with systems like GitHub and Open Source Security solutions is a plus
- Review security findings/violations reports and coordinate remediation efforts
- Build automated test suites for common application (OWASP10) vulnerabilities
What you will bring
- BS degree or an MS degree in Computer Science or Information Security or closed related fields with appropriate years of experience; We prefer 6-8 years of hands-on experience.
- 5+ years Application Security experience; or 5+ years Software Engineering experience including some Application Security experience
- Hands-on development experience in Node.js or Java languages
- Good understanding of OWASP top 10 vulnerabilities, as it relates to secure product development including AI/ML and LLM technologies
- Experience in containers, container orchestration technologies like Docker, Kubernetes is preferred
- Hands-on experience with Web Application Firewalls and Bot Management solutions is a plus
- Experience with monitoring and reporting with large scale data technologies such as Kibana, Elastic Search, Hadoop and similar technologies is a plus
- Self-starter and Effective communicator
- Ability to build automation tools for security processes for web applications
- Ability to multi-task and thrive in a small team in a fast-paced environment
- Ability to deep-dive into data and analyze for security and fraud anomalies.
- Ability to clearly articulate issues and communicate to leadership and partner teams in an effective and personable manner
Additional Details
eBay is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, veteran status, and disability, or other legally protected status. If you have a need that requires accommodation, please contact us at talent@ebay.com. We will make every effort to respond to your request for accommodation as soon as possible. View our accessibility statement to learn more about eBay's commitment to ensuring digital accessibility for people with disabilities.
We use cookies to enhance your experience and may use AI tools for administrative tasks in the hiring process. To learn how we handle your personal data and use AI responsibly, please visit our Talent Privacy Notice, Privacy Center, and AI Hiring Guidelines.
Key skills/competency
- Staff Information Security Engineer
- Application Security
- AI/ML Security
- LLM Security
- Threat Modeling
- Security Assessments
- OWASP Top 10
- Security Automation
- Vulnerability Management
- Risk Management
Skills & topics
- Staff Information Security Engineer
- Information Security
- Application Security
- Security Engineer
- Cybersecurity
- AI Security
- LLM Security
- Threat Modeling
- OWASP
- Node.js
- Java
- Kubernetes
- Docker
- Web Application Firewall
- eBay
- Tech
- Engineering
How to get hired
- Tailor your resume: Highlight your 6-8 years of experience, focusing on application security, Node.js/Java, and AI/ML security.
- Showcase security expertise: Emphasize experience with OWASP Top 10, threat modeling, and security automation tools.
- Demonstrate communication skills: Prepare to discuss complex security issues clearly with leadership and teams.
- Understand eBay's culture: Research eBay's commitment to inclusivity and their role in the LGBTQ+ community.
Technical preparation
Behavioral questions
Frequently asked questions
- What is eBay's stance on diversity and inclusion for the Staff Information Security Engineer role?
- eBay is a proud member of myGwork and an inclusive employer. They are committed to equal opportunity and encourage applicants from all backgrounds to apply for the Staff Information Security Engineer position.
- What are the primary responsibilities for a Staff Information Security Engineer at eBay?
- As a Staff Information Security Engineer, you will research, craft, and implement defenses for eBay's critical infrastructure, conduct security assessments including threat modeling for AI systems, and build automated security tools. You'll also collaborate on incident investigations and remediation efforts.
- What technical skills are most important for the Staff Information Security Engineer role?
- Key technical skills include hands-on development in Node.js or Java, a strong understanding of OWASP Top 10 vulnerabilities, AI/ML, and LLM security implications. Experience with Docker, Kubernetes, WAFs, and large-scale data technologies like Kibana/Elasticsearch is also highly valued.
- Does eBay use AI in their hiring process for the Staff Information Security Engineer position?
- Yes, eBay mentions they may use AI tools for administrative tasks in the hiring process. They are transparent about their use of AI and encourage candidates to review their AI Hiring Guidelines.
- What is the preferred educational background and experience for this role?
- A BS or MS degree in Computer Science or Information Security is preferred, along with 6-8 years of hands-on experience, including at least 5 years in Application Security or Software Engineering with an application security focus.
- How does eBay support employees who may need accommodations during the application process?
- eBay is committed to accessibility and encourages individuals needing accommodation to contact talent@ebay.com. They will make every effort to respond to accommodation requests promptly.
- Can I contact the recruiter directly for the Staff Information Security Engineer job?
- No, the job posting specifically states 'Please do not contact the recruiter directly.' All inquiries should follow the standard application process.