Staff Platform Security Software Engineer – App and Cyber Security

New York, NY / Los Angeles, CA
StubHub – Software Engineering /
Full-Time /
StubHub is on a mission to redefine the live event experience on a global scale. Whether someone is looking to attend their first event or their hundredth, we’re here to delight them all the way from the moment they start looking for a ticket until they step through the gate. The same goes for our sellers. From fans selling a single ticket to the promoters of a worldwide stadium tour, we want StubHub to be the safest, most convenient way to offer a ticket to the millions of fans who browse our platform around the world.

The Platform Security Engineering Team helps secure systems and applications in our cloud and on-prem infrastructure, as well as enabling feature teams to innovate quickly while ensuring a secure platform. In addition to securing our platform, the team is responsible for ensuring that our customers’ accounts are secure and protected.  
The team should focus efforts on scalable techniques as opposed to just operational services. The Platform Security Engineering team helps us scale security with pragmatic engineering investments. Our approach is to guide developers towards simple, self-service solutions that meaningfully reduce security risk for software they create. The team should focus on automated and scalable approaches that eliminate bug classes, find vulnerabilities at scale, and make default configurations secure.  
We are looking for an engineering leader for the Platform Security Engineering Team to enable our mission of effectively scaling application security at StubHub. You will be responsible for leading and cultivating a world-class team of security software engineers. You will drive the strategy for security engineering products in close collaboration with key partners with a pragmatic, risk focused approach. You will also be expected to contribute technically, bringing your best-in-class software engineering skills to the team. 

What You've Done:

    • Is a pragmatic security leader who believes in risk focused, scalable security approaches  
    • Has strong technical background in scalable security solutions, as well as extensive experience in designing and developing robust, distributed systems using general-purpose programming languages (e.g., Java, C#, Python)  
    • Has effective communication skills and a product focused mindset to build the right solutions for your customers  
    • Prefers collaboration and problem solving over process and mandates  
    • Is a meticulous and responsive cross-team communicator and program leader  
    • Embraces the fast-paced development lifecycle and looks for ways to eliminate friction with technology and friction 
    • Proven experience as a senior or lead security engineer with a focus on cyber security. 
    • Experience with incident response, threat hunting, and vulnerability management. 
    • Familiarity with security frameworks, standards, and compliance requirements. 
    • Familiarity with cloud security and DevSecOps practices. 

What You'll Do:

    • Respond to and drive security incidents to resolution, quickly and efficiently  
    • Build, communicate and execute on a roadmap for the Platform Security Engineering Team based on the organizations' priorities  
    • Set up tooling and automation around Application Security best practices  
    • Design and implement security controls and technologies to safeguard critical assets and data. 
    • Provide ongoing support across the engineering organization related to Application Security best practices   
    • Lead incident response efforts to identify, contain, and eradicate security incidents. 
    • Conduct proactive threat hunting and analysis to anticipate and mitigate potential security threats. 
    • Oversee vulnerability assessment programs, ensuring timely identification and remediation of security vulnerabilities. 
    • Provide guidance on patch management strategies and ensure compliance with security policies. 
    • Collaborate with infrastructure and development teams to address security findings. 
    • Collaborate with cross-functional teams to develop and execute incident response plans. 
    • Be involved with hiring and mentoring talent on the Application Security team 

What We Offer:

    • Accelerated Growth Environment: Immerse yourself in an environment designed for swift skill and knowledge enhancement, where you have the autonomy to lead experiments and tests on a massive scale.
    • Top Tier Compensation Package: Enjoy a rewarding compensation package that includes enticing stock incentives, aligning with our commitment to recognizing and valuing your contributions.
    • Flexible Time Off: Embrace a healthy work-life balance with unlimited Flex Time Off, providing you the flexibility to manage your schedule and recharge as needed.
    • Comprehensive Benefits Package: Prioritize your well-being with a comprehensive benefits package, featuring 401k, and premium Health, Vision, and Dental Insurance options.
    • Team-Building Events: Engage in vibrant team events that foster camaraderie and collaboration, creating an atmosphere where your professional and personal growth are celebrated.
The anticipated gross annual base salary range for this role is $240,000 – $350,000 per year. Actual compensation will vary depending on factors such as a candidate’s qualifications, skills, experience, and competencies. Base annual salary is one component of StubHub’s total compensation and competitive benefits package, which also includes equity, 401(k), paid time off, paid parental leave, and comprehensive health benefits.

About Us 
StubHub is the world’s leading marketplace to buy and sell tickets to any live event, anywhere. Through StubHub in North America and viagogo, our international platform, we service customers in 195 countries in 33 languages and 49 available currencies. With more than 300 million tickets available annually on our platform to events around the world -- from sports to music, comedy to dance, festivals to theater -- StubHub offers the safest, most convenient way to buy or sell tickets to the most memorable live experiences. Come join our team for a front-row seat to the action. 

For California Residents: California Job Applicant Privacy Notice found here

We are an equal opportunity employer and value diversity on our team. We do not discriminate on the basis of race, color, religion, sex, national origin, gender, sexual orientation, age, disability, veteran status, or any other legally protected status.