This job ad has been posted over 30 days ago...



Information Security Engineer / Senior Security Engineer Full-time

at eBay Inc in Banglore (Published at 24-11-2014)

eBay, Inc. seeks a motivated security professional who will be a key contributor in the Product Security group. This individual will be responsible for securing eBay’s public facing product lines through a combination of detecting vulnerabilities and engineering security solutions. We are looking for an individual who is passionate about security, loves to dig into root causes, and is agile in developing scalable solutions. If you enjoy HACKING this is the place for you!

Job Requirements

Work experience & Skills:

Familiar with Security Standards and Policy which also including OWASP-TOP 10, PCI DSS Standards.

Experienced in Mobile Pentesting.

Thorough understanding of how web applications work and the possible vulnerabilities (XSS, SQL injections, etc)

Deep understanding of core security concepts - PKI, Cryptography, Authentication, Authorization, web services security, Asymmetric and Symmetric encryption, digital signing is essential.

Web/Mobile attack and penetration methods and defenses

Sound knowledge of security techniques, latest protocols and defenses against attacks

A background in software development and security. Programming experience in Java and J2EE technologies and familiarity with databases is required. Knowledge of other technologies like PHP, Node.js, Content management systems is a plus.

Perform code audits of product facing applications

Perform application security vulnerability studies and additional security related research activities

Ability to use scripting languages to streamline/automate tasks/tool development.

Experience in handling Security Disclosure, working experience on Bug Bounty will be great plus.

Knowledge on Python & Ruby on Rail will be added advantage.

Bachelor’s Degree or Equivalent Computer Science or Computer Software Engineering degree or equivalent technical training.

Minimum of 4-8 years’ experience in Application and Mobile security

CISSP or other general security related certification is a plus

Basic Qualifications As a Security Engineer 3, you will be responsible for Pentesting project along with Security tool development. You will work in a fast-paced environment where continuous innovation and experimentation are a given. You will work with established and cutting edge technologies like Java, JavaScript, HTML5/CSS3, iOS, Android, Node.js, Hadoop, MongoDB among others.

Accountable for a specific security function, tool, pen-testing project or process.

Spends most of the time in Pentesting, security process improvements, security monitoring, security testing scope, security controls, and/or security tools.

Interfaces with other functional teams on security matters.

Working with product leaders using agile methodologies to deliver high quality solutions on time

Be driven to get results and not let anything get in your way

Be proactive and anticipate/handle most issues before they blowup

Exhibit a strong backbone and challenge the status quo when needed

Demonstrate a high level of curiosity and keep abreast of the latest technologies

Be a talent multiplier that gets the team around them to excel and perform well

Ability to communicate technical security information to non-technical personnel

Understands and is able to reason about the business, as it relates to their area of expertise. Technical work typically consists of complex security analysis, incident response, detailed testing, or code development.

Education Bachelors Degree or Equivalent

Note: Applications have been closed.

Recent jobs at eBay Inc

Viewed: 1253 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend