Staff Product Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

PayPal · 3 hours ago

Staff Product Security Engineer

positionChicago, IL
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
money$152K/yr - $262K/yr
date8+ years exp

PayPal has been revolutionizing commerce globally for more than 25 years, and as a Staff Product Security Engineer, you will drive secure design practices that safeguard millions of accounts and significant annual payment volumes. Your role will involve leading security initiatives, mentoring teams, and influencing product architecture decisions across PayPal's ecosystem.

E-Commerce PlatformsFinTechMobile PaymentsTransaction Processing
check
H1B Sponsor Likelynote

Responsibilities

Recognized as a security expert, independently resolving the most complex security challenges and providing strategic direction on problem resolution across the security domain
Define methods and procedures for new or special assignments, collaborating with cross-functional teams to drive security initiatives that align with business needs and objectives
Lead complex, high-impact security projects of diverse scope, applying an in-depth understanding of business trends and security challenges to develop innovative solutions
Possess a keen awareness of the broader impact of decisions, with initiatives often leading to enterprise-wide improvements that enhance security practices and operational efficiency
Lead and evolve PayPal’s Security Design Reviews and Security Champions programs, defining processes, tooling, and automation to enable scalable, high-quality reviews across all business units
Serve as the primary escalation point for complex product design and architecture reviews, guiding resolution of nuanced or high-risk issues
Define product architecture security strategy and drive the integration of security design practices into global engineering workflows
Determine methods and procedures for evaluating, prioritizing, and remediating security risks at scale
Deliver targeted training and coaching that empowers teams to build securely at scale
Partner with senior engineering and product leadership to influence technology direction, ensuring security is embedded in platform and product architecture decisions
Drive cross-functional, global initiatives that improve security posture and engineering efficiency, focusing on systemic risk reduction and process modernization
Lead the secure design and integration of AI and large language models (LLMs) in PayPal products and internal tooling
Develop and scale self-service security tooling, automation, and metrics for consistent program performance and visibility
Mentor and develop engineers across Product Security and the wider organization, fostering a culture of secure-by-design thinking
Stay ahead of emerging security technologies and threats, adapting program strategy to evolving risks and business priorities
Setting strategic direction for the Security Design Reviews Program and ensuring consistent adoption across global product lines
Partnering with business unit leaders to scale the Security Champions Program, aligning outcomes with engineering productivity and security maturity goals
Reviewing and advising on high-impact architecture and product designs, providing deep technical expertise in secure systems engineering
Identifying systemic security gaps and driving multi-quarter initiatives to address root causes across teams and platforms
Overseeing development of automation and tooling that improves efficiency and quality of security assessments
Collaborating with senior leadership to define long-term product security strategy and metrics for success
Mentoring and coaching engineers to expand their technical and leadership capabilities
Representing Product Security in company-wide technical discussions, architectural councils, and global security initiatives
Leading post-incident architectural reviews and influencing design patterns that prevent recurrence
Anticipating emerging risks and evolving program focus to proactively address new threat vectors

Qualification

Application securitySecurity design practicesSecurity review programsCloud securityProgramming languagesSecurity toolsMentoring engineersCommunication skillsCollaboration

Required

8+ years relevant experience and a Bachelor's degree OR Any equivalent combination of education and experience
8+ years of experience in software development, application security, or cybersecurity, with proven ability to influence architecture and design decisions
Expertise in application security vulnerabilities (e.g., OWASP Top 10) and secure design practices
Proven experience driving global or enterprise-wide security initiatives or programs
Track record of partnering with developers to remediate vulnerabilities and implement robust security controls

Preferred

Experience architecting and operating security review programs or equivalent governance initiatives
Hands-on familiarity with application security tools (SAST, DAST, SCA, WAF, Burp Suite)
Strong programming experience in at least one language such as Ruby, Java, Python, JavaScript, or Swift
Knowledge of Kubernetes, Terraform, and version control systems such as Git
Hands-on experience with at least one major cloud vendor (AWS, Azure, GCP)
Strong understanding of authentication and authorization protocols (OAuth 2.0, SAML)
Experience with AI or ML security, including model security and data protection considerations
Strong written and verbal communication skills, with the ability to influence both technical and executive audiences
Experience mentoring and developing engineers

Benefits

Flexible work environment
Employee shares options
Health and life insurance

Company

PayPal

twittertwittertwitter
Glassdoor3.8
company-logo
PayPal is a financial service company that provides online payment solutions to its users worldwide.
dateFounded in 1998
location
San Jose, California, USA
people-size10001+ employees
web-link
https://www.paypal.com/home

H1B Sponsorship

PayPal has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (945)
2024 (918)
2023 (775)
2022 (921)
2021 (1051)
2020 (1049)

Funding

Current Stage
Public Company
Total Funding
$12.17B
Key Investors
Kohlberg Kravis RobertsBlueRun Ventures
2025-11-17Post Ipo Debt· $6.95B
2023-06-07Post Ipo Debt· $5B
2015-07-20IPO

Leadership Team

leader-logo
Simon Bladon
CEO, UK
linkedin
leader-logo
chaloem khompitoon
President & CEO
linkedin

Recent News

Tech In Africa
Cross-Border Payments: How Stablecoins Are Reducing Volatility
2025-12-31
The European Financial Review
Visa, Mastercard Race to Build AI Agents for Next Commerce Shift
2025-12-31
AllAfrica.com
Namibia: PayPal Coming to Namibia in 2026 - What It Means for Digital Payments, Fraud Risk and User Protection
2025-12-30
Company data provided by crunchbase