Software Engineer - Cloud Security
StripeJob Summary
At Stripe, we're building a financial infrastructure platform that millions of businesses rely on. The Cloud Security team is responsible for designing and implementing security primitives and guardrails to ensure our cloud environment is secure and scalable. We work closely with engineering teams to build robust security infrastructure, uphold high standards, and create solutions that advance our security posture beyond the state of the art. Our role involves optimizing for delightful user experiences while making impactful decisions about systems and their lifecycle. We use data-driven approaches to define baselines and feed signals to threat teams. If you have deep experience with cloud security on AWS, Azure, or GCP, a knack for considering system failures, and a creative approach to reducing risk in complex environments, we'd love to hear from you.
Who we are
About Stripe
Stripe is a financial infrastructure platform for businesses. Millions of companies - from the world’s largest enterprises to the most ambitious startups - use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career.
About the team
What you’ll do
The Cloud Security team defines security primitives and guardrails to allow our colleagues to quickly and confidently build for Stripe’s users. Our scope includes cloud security architecture, data-driven definition of security baselines, centralized controls, and strategic direction of security efforts for our cloud environment.
Responsibilities
Design, build, and operate the core security infrastructure used by all of Stripe’s engineering teams in close collaboration with other stakeholders and our users.
Uphold our high engineering standards and bring consistency to the many codebases and processes you will encounter
Contribute to team learning by improving engineering standards, tooling, and processes
Design and build durable solutions that will advance Stripe’s security beyond the state of the art.
Optimize for security controls that have delightful user experiences.
Make impactful decisions about systems and security — their edge cases, failure modes, and life cycles
Use data to determine appropriate baselines against which to measure security
Define infrastructure that reliably feeds signals to threat teams
Evaluate and prototype new security tools and practices
Who you are
We're looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement.
Minimum requirements
High standards for code quality and a constructive attitude to help others raise the bar
Software engineering experience in a high-stakes production environment
A knack for considering how systems can fail and how to fix them
An ability to think creatively and holistically about reducing risk in a complex environment
Deep experience with security on one, or more of, AWS, Azure, or GCP
Preferred qualifications
Designing and implementing controls that support security invariants and enforce our security principles while providing a surprisingly great user experience
Cloud control plane proxy systems which guarantee that the access to raw cloud interfaces comprise the Stripe Secure Platform are performed through safe and secure interfaces
Providing a migration path for newly acquired companies onto the Stripe Secure Platform
CI tooling for platform-related configuration: IAM roles, SCPs, and associated components
Ensuring all cloud infrastructure is defined in code and strict change management is in place
Guardrails and security controls for commonly used and newer cloud technologies
