GrepJob
StubHub

Software Engineer II - Product Security

StubHub
Apply
about 4 hours ago
Los Angeles, CA, USAMid Level / Senior
H1B Sponsor

Base Salary

$165k - $200k/yr

Responsibilities

  • Conduct security assessments, code reviews, and penetration tests on web applications, APIs, and mobile apps.
  • Collaborate with development teams to embed security into CI/CD pipelines.
  • Develop and maintain secure coding guidelines and conduct security awareness training.
  • Respond to security incidents and perform root cause analyses.
  • Stay current on emerging security threats and share insights across teams.
  • Help develop and enforce application security policies and procedures.
  • Conduct architectural reviews for new technologies and controls.
  • Build and maintain product vulnerability management processes.
  • Write and maintain production-grade APIs to automate security processes.
  • Triage and respond to findings from StubHub’s Bug Bounty program.

Requirements

  • Expert-level understanding of offensive web application security testing.
  • Expert-level skills in vulnerability assessments and code reviews.
  • Extensive experience with automated security testing tools.
  • Strong communication skills for conveying complex security concepts.
  • Hands-on experience in applied cryptography and key management.
  • Proven ability to implement SAST, DAST, and SBOM tooling.
  • Experience in performing structured threat modeling.
  • Intermediate proficiency in at least one scripting language.
  • Familiarity with security frameworks such as PCI DSS and NIST CSF.

Benefits

  • Accelerated growth environment for skill enhancement.
  • Competitive base salary and equity package.
  • Unlimited Flex Time Off for better work-life balance.
  • Comprehensive benefits package including 401k and health insurance.

Categories