Security Engineer

PayPay Card Product Security team is looking for experienced infrastructure security engineers to lead improvements to our infrastructure and operational security, and introduce key security solutions.

The Product Security team is responsible for driving the application security and infrastructure security changes. Specifically, we are going through our architecture and strive to make things right, with a proper focus on the security aspect. A strong candidate for the infrastructure security engineer position will be knowledgeable about modern infrastructure solutions (such as Kubernetes, various public clouds and their services, SQL and no-SQL databases, ElasticSearch, message brokers and so on), security challenges and threats relevant to them.

Team Mission

• Empower product teams by building frictionless security guardrails and support systems into their tasks
• Lead initiatives to improve security in Technology Divisions
• Provide security education opportunities in Technology Division

Responsibilities

Primary Responsibilities

• Analyzing security risks relevant to the production infrastructure
• Designing, implementing and running security measures for the product infrastructure environment in various security domains, such as access control, CI/CD, cloud security, container security, DDOS protection, K8S, network security, PKI, policy as code, secret management.
• Improving observability and monitoring for security information and events, and security incident handling
• Assisting infrastructure teams in prioritizing security goals

Supporting Responsibilities

• Assisting infrastructure teams in implementing and running secure solutions
• Participating in major infrastructure projects as a security expert

Tech Stack

• Infrastructure runs on AWS and managed by Terraform
• Code is managed on GitHub
• New Backend services are using Kotlin + Spring Boot and existing services are a mix of Java+Spring Boot and Java EE

Required Qualifications

• 3+ years of infrastructure security or relevant experience
• Experience working with cloud- and microservice-based systems, preferably AWS
• Experience working with CI / CD pipelines
• Experience leading projects related to security solutions, such as: CNAPP, IDS/IPS, SIEM, SOAR, PAM, WAF, NGFW
• Solid knowledge of IT infrastructure (e.g. networks, servers, directory services, proxies, endpoint devices)
• Strong teamwork skills and the ability to collaborate with others in a diverse environment

Preferred Qualifications

• Solid programming skills in one or more programming languages, such as Python, Golang, Terraform
• Solid understanding of Linux
• Experience working in DevOps, DevSecOps, SRE, cloud or relevant areas
• Experience working in a security position within the credit card industry
• Experience working in PCI-DSS compliant environments
• Japanese conversational skills