Senior Security Engineer, Cloud Infrastructure (GCP)

  • San Francisco, CA
  • Employees can work remotely
  • Full-time

Company Description

Square builds common business tools in unconventional ways so more people can start, run, and grow their businesses. When Square started, it was difficult and expensive (or just plain impossible) for some businesses to take credit cards. Square made credit card payments possible for all by turning a mobile phone into a credit card reader. Since then Square has been building an entire business toolkit of both hardware and software products including Square Capital, Square Terminal, Square Payroll, and more. We’re working to find new and better ways to help businesses succeed on their own terms—and we’re looking for people like you to help shape tomorrow at Square.

Job Description

Square’s Information Security culture is focused on enabling our engineering teams to build and ship secure products. We achieve this by designing, building, and deploying state of the art security alongside our product and infrastructure teams.

As a Senior Security Engineer, Cloud Infrastructure, you will be responsible for hardening of Square’s cloud computing and cloud network environments. Your work will secure critical data and services.

We’re looking for someone with both a broad knowledge of security and systems, as well as a deep knowledge of how to apply that to GCP. The ideal candidate will have experience across a range of technical disciplines and may have had past jobs such as Information Security (Hardening, Detection/Response, Blue Team, etc) and systems (SRE, SysAdmin, Network Engineer, etc). This is a senior role, and we’re looking for someone who has experience with a wide variety of real-world issues.


You will:

  • Design and build security for GCP.
  • Work closely with the infrastructure and product teams who are using GCP, and ensure that they have secure-by-default systems.
  • USA or Canada location (including full-time remote). Occasional travel to San Francisco may be required.

Qualifications

Desired background:

  • 5-10 years total experience in tech.
  • You work well cross-functionally, and can communicate with audiences who may not have a security background.
  • GCP experience
    • At least 2 years of GCP experience.
    • Experience implementing GCP security and hardening, especially in a large or complex environment.
    • Deep knowledge of GCP IAM and how to configure least-privilege.
    • Knowledge of GCP networking and how to securely interconnect multiple GCP projects, on-prem servers, etc.
    • Expertise in automation tools such as Terraform.
  • Security experience
    • At least 2 years experience working in security (does not need to be on GCP).
    • Experience writing code to solve security issues. This could be writing security tools, or automation/management of security-sensitive environments.
    • Experience securing Linux systems - hardening, logging/detection, general systems design.
    • Networking knowledge, including network security and segmentation.

Even better:

  • Experience in Python and/or Ruby.
  • Experience with Kubernetes.

Additional Information

At Square, we value diversity and always treat all employees and job applicants based on merit, qualifications, competence, and talent. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us by sending an email to assistance(at)squareup.com. We will treat your request as confidentially as possible. In your email, please include your name and preferred method of contact, and we will respond as soon as possible.

Perks

At Square, we want you to be well and thrive. Our global benefits package includes:
  • Healthcare coverage
  • Retirement Plans
  • Employee Stock Purchase Program
  • Wellness perks
  • Paid parental leave
  • Paid time off
  • Learning and Development resources