Security Compliance Engineer

The Global Information Security team at eBay is seeking a Security Compliance Engineer to drive security compliance activities across eBay Payments, Marketplaces, Corporate IT, and adjacent businesses. This role involves understanding compliance issues, leading technical assessments, and developing remediation programs. The engineer will provide pragmatic guidance, contribute to the security program, assess compliance, and advise management on security requirements, balancing risks with business needs. Key responsibilities include performing audits, identifying process improvements, and generating reports for stakeholders.

Must Have

• Provide pragmatic guidance on security compliance risks.
• Contribute to security compliance program, including audits and process improvement.
• Assess compliance and support remediation efforts.
• Understand security controls, business processes, and tools.
• Advise management on security requirements and impact.
• Generate reports and recommendations for security practices.
• Research industry standards to improve security and compliance.
• Facilitate adoption of new security controls and best practices.
• Document security/technology control requirements.
• Drive maturation of a compliant environment.
• Coordinate compliance and audit activities.
• Develop and provide knowledge on control activities.
• Strong technical understanding of security compliance.
• Knowledge of networking, encryption, authentication, payment, cloud, and application security.
• Ability to balance strategic concepts with tactical implementation.
• Self-starter in fast-paced, ambiguous environments.
• Exceptional communication and group facilitation skills.
• Strong teamwork and collaboration abilities.
• Experience with internal process audits and improvement.

Good to Have

• Experience in eCommerce, Payments, or Technology space
• Experience with/understanding of SOC 2, COBIT, ITIL, ISO, IT General Controls (ITGC), NIST and/or other industry standard control frameworks

Perks & Benefits

• Full range of medical benefits
• Full range of financial benefits
• 401(k) eligibility
• Paid time off benefits (PTO)
• Parental leave

At eBay, we're more than a global ecommerce leader — we’re changing the way the world shops and sells. Our platform empowers millions of buyers and sellers in more than 190 markets around the world. We’re committed to pushing boundaries and leaving our mark as we reinvent the future of ecommerce for enthusiasts.

Our customers are our compass, authenticity thrives, bold ideas are welcome, and everyone can bring their unique selves to work — every day. We're in this together, sustaining the future of our customers, our company, and our planet.

Join a team of passionate thinkers, innovators, and dreamers — and help us connect people and build communities to create economic opportunity for all.

Looking for a company that inspires passion, courage and creativity, where you can be on the team shaping the future of global commerce? Want to shape how millions of people buy, sell, connect, and share around the world? If you’re interested in joining a purpose driven community that is dedicated to crafting an ambitious and inclusive work environment, join eBay – a company you can be proud to be with.

The Global Information Security team is responsible for driving security compliance activities for eBay Payments, Marketplaces, Corporate IT, and adjacent businesses. The Security Compliance Engineer will play a critical role working directly with business leaders to understand security compliance issues, lead technical compliance assessments and mitigation efforts, and develop effective remediation programs and actions to resolve compliance issues.

Key Responsibilities:

• Ability to provide pragmatic guidance to business leaders and customers that effectively balances security compliance risks with the needs of the business
• Contribute to the growing information security and compliance program at eBay, including performing security compliance audits, identifying problems and areas for process improvement
• Work closely with internal business units and relevant departments to assess compliance and where necessary, provide support in remediating non-compliant areas
• Develop a deep understanding of security controls, underlying business processes, concepts, practices, and tools used to promote adoption of applicable security standards
• Advise management on specific security requirements, implementations and the impact on business processes, applications and systems as needed
• Generate periodic reports to teams and senior stakeholders and make practical recommendations to improve security practices
• Research and extract insights from industry standards and trends, apply them to the scope of internal controls and improve security practices and compliance in the company
• Facilitate organizational adoption of new security controls, standards and best practices through thoughtful change management strategies
• Document security/technology control requirements and develop methods to meet new cyber security and compliance needs and requirements as needed
• Drive/contribute to the development and implementation of short term and long term plans to continue the maturation of a compliant environment
• Coordinate compliance and audit activities with other groups
• Develop and provide knowledge, knowledge resources, and guidance regarding control activities

Requirements:

• 7+ years of security and compliance experience. Experience in eCommerce, Payments, or Technology space a plus
• Strong technical understanding of security compliance requirements and solutions, as well as threats and challenges impacting the protection of information across an extended global enterprise
• Possess general knowledge of networking, encryption, authentication, payment infrastructure, cloud infrastructure and application security
• Capable of flexing between high level strategic concepts & frameworks to tactical operational implementation
• Self-starter with a bias towards action and can thrive in a fast-paced and ambiguous environment
• Exceptional communication skills including clear and concise writing, an engaging presentation style, and group facilitation
• Strong teamwork skills with a demonstrated ability to collaborate across teams and roles
• Experience with performing internal process audits and process improvement work
• Experience with/understanding of SOC 2, COBIT, ITIL, ISO, IT General Controls (ITGC), NIST and/or other industry standard control frameworks to document and assess Cybersecurity & IT processes is a plus

Here at eBay, we love creating opportunities for others by connecting people from widely diverse backgrounds, perspectives, and geographies. So, being diverse and inclusive isn’t just something we strive for, it is who we are, and part of what we do each and every single day. We want to ensure that as an employee, you feel eBay is a place where, no matter who you are, you feel safe, included, and that you have the opportunity to bring your unique self to work. To learn about eBay’s Diversity & Inclusion click here: https://www.ebayinc.com/company/diversity-inclusion/

#LI-BB1

The applicable base pay range for this position is dependent on work location. The base pay range in the San Francisco Bay Area, New York City Metro and Seattle Metro is expected in the range below:

$166,400 - $222,100

The base pay range for all other U.S. work locations is expected in the range below:

$115,200 - $199,700

Base pay offered may vary depending on multiple individualized factors, including location, skills, and experience. The total compensation package for this position may also include other elements, including a target bonus and restricted stock units (as applicable) in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as PTO and parental leave). Details of participation in these benefit plans will be provided if an employee receives an offer of employment.

If hired, employees will be in an “at-will position” and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.

Please see the Talent Privacy Notice for information regarding how eBay handles your personal data collected when you use the eBay Careers website or apply for a job with eBay.

eBay is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, veteran status, and disability, or other legally protected status. If you have a need that requires accommodation, please contact us at talent@ebay.com. We will make every effort to respond to your request for accommodation as soon as possible. View our accessibility statement to learn more about eBay's commitment to ensuring digital accessibility for people with disabilities. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

The eBay Jobs website uses cookies to enhance your experience. By continuing to browse the site, you agree to our use of cookies. Visit our Privacy Center for more information.