Infrastructure Security Engineer

Who we are

About Stripe

Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world’s largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone’s reach while doing the most important work of your career.
About the team

In this role, you will be a part of the Stripe's Security Analytics Infrastructure (SAI) team supporting Corporate Security’s Executive Program. The mission of the team is to enable Stripe to make data-informed decisions about security by providing analytic and alerting capabilities through a fleet-wide security analytics platform. The team is distributed, working primarily across US time zones but will regularly coordinate with stakeholders in Europe and Asia.
What you’ll do

You'll join forces with colleagues cross functionally to secure and manage endpoints, SaaS systems, and build a robust telemetry pipeline for detection and response activities.

You'll be a crucial player in designing and implementing secure device configurations and reviewing and securing network designs. You’ll apply security best practices to all of these efforts in order to mitigate threats. We maintain a tight focus on securing our stakeholder’s most used assets and tools to ensure that Stripe remains an industry leader in security.
Responsibilities

A typical day might involve:
Identifying security gaps proactively and designing & implementing effective preventative controls
Reviewing SaaS application configurations and recommending configuration changes
Analyzing a network design to ensure security best practices are applied
Defining and deploying mobile device management (MDM) strategies and secure device configurations
Designing and implementing data pipelines to ingest, normalize and summarize security telemetry
Building integrations with security information and event management (SIEM) systems
Continuously improving system security measures, tools, and processes through a metrics and data driven approach
Collaborating with diverse teams to troubleshoot issues, drive process improvements, and effect change
Participating in roadmap, strategy, and planning activities.
Who you are

We’re looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement.
Minimum requirements

Proficiency in Python and Go
Experience in managing endpoints (macOS, iOS and ChromeOS) using MDM solutions, specifically defining and applying secure configurations.
Experience in system administration and writing infrastructure as code (e.g. Terraform)
Expertise in managing Google Workspace and other enterprise SaaS applications
Familiarity data engineering and building data intensive applications
Ability to manage multiple concurrent projects and initiatives
Excellent problem-solving skills, with an eye towards removing obstacles and improving user experiences
Empathy, humility, excellent communication skills, and a user-focused attitude
Preferred qualifications

Professional Google Workspace Administrator and Certified Information Systems Security Professional (CISSP) certifications
Experience applying CIS benchmarks and/or STIGs
Experience with SIEM, SOAR and cloud data management systems (e.g. Chronicle, Databricks, Trino)
An ability to think creatively and holistically about reducing security risk in a complex environment
Proven ability to analyze, troubleshoot and resolve complex technical problems
Well versed in network design and network security best practices
Willingness to participate in an on-call rotation

#J-18808-Ljbffr