Security Engineer

Summary

Join Stripe's Security Partnership team and help build secure-by-design products. You will work closely with product engineering teams, lead threat modeling discussions, and scale security efforts through automation and training. The ideal candidate has 5+ years of security experience, strong communication skills, and a collaborative mindset. You will be a security subject matter expert, able to tailor answers to security questions for both technical and non-technical audiences. You will also mentor teammates and drive high-impact, cross-team security initiatives. This role requires a deep understanding of Stripe's security primitives and a desire to scale security through efficient design and education.

Requirements

• 5+ years of experience in security
• Empathy, strong communication skills and a deep respect for the power of collaboration
• A learning mindset, regardless of level or experience
• The ability to drive clear next steps when encountering ambiguous spaces without clear lines of ownership
• An ability to think creatively and holistically about reducing risk in a complex environment
• Breadth of applied knowledge across application and infrastructure security
• Demonstrated experience securing applications in a cloud environment
• Experience with containerization and orchestration technologies such as Docker and Kubernetes
• The ability to think like an attacker, develop threat models and help teams reason through different approaches to reducing security risk
• A desire to sub-linearly scale security through simple design, abstraction and education

Responsibilities

• Work closely with product engineering teams to design solutions that are secure by default
• Be a security subject matter expert and able to tailor answers to security questions from non-engineers and engineers, alike
• Lead threat modeling discussions and help teams strike the right balance between security, user experience and product advancement
• Scale security effort by empowering engineering teams with automation, security guidance, tooling, patterns and training
• Drive high impact, cross-team security initiatives
• Develop a deep understanding of Stripe’s security primitives, frameworks, and invariants
• Mentor teammates and others across the organization

Preferred Qualifications

• Software engineering experience in a production environment
• Mobile security experience (native apps and mobile SDKs - nice-to-have )