Jobs

Jobs

Software Engineer, Cloud Security

Who we are

About Stripe

Stripe is a financial infrastructure platform for businesses. Millions of companies - from the world’s largest enterprises to the most ambitious startups - use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career.

About the team

The Cloud Security team defines security primitives and guardrails to allow our colleagues to quickly and confidently build for Stripe’s users. Our scope includes cloud security architecture, data-driven definition of security baselines, centralized controls, and strategic direction of security efforts for our cloud environment.

What you’ll do

You May Work On * Designing and implementing controls that support security invariants and enforce our security principles while providing a surprisingly great user experience
* Cloud control plane proxy systems which guarantee that the access to raw cloud interfaces comprise the Stripe Secure Platform are performed through safe and secure interfaces
* Providing a migration path for newly acquired companies onto the Stripe Secure Platform
* CI tooling for platform-related configuration: IAM roles, SCPs, and associated components
* Ensuring all cloud infrastructure is defined in code and strict change management is in place
* Guardrails and security controls for commonly used and newer cloud technologies

Responsibilities

  • Design, build, and operate the core security infrastructure used by all of Stripe’s engineering teams in close collaboration with other stakeholders and our users.
  • Uphold our high engineering standards and bring consistency to the many codebases and processes you will encounter
  • Contribute to team learning by improving engineering standards, tooling, and processes
  • Design and build durable solutions that will advance Stripe’s security beyond the state of the art.
  • Optimize for security controls that have delightful user experiences.
  • Make impactful decisions about systems and security — their edge cases, failure modes, and life cycles
  • Use data to determine appropriate baselines against which to measure security
  • Define infrastructure that reliably feeds signals to threat teams
  • Evaluate and prototype new security tools and practices

Who you are

We're looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement.

Minimum requirements

  • High standards for code quality and a constructive attitude to help others raise the bar
  • Software engineering experience in a high-stakes production environment
  • A knack for considering how systems can fail and how to fix them
  • An ability to think creatively and holistically about reducing risk in a complex environment
  • Deep experience with security on one, or more of, AWS, Azure, or GCP

Preferred qualifications

  • Experience conducting threat modeling of software or infrastructure in cloud native environments
  • Prior usage of security monitoring tools (e.g., CSPM, CNAAP)
  • Experience in a multi-cloud, or complex, cloud environment

Hybrid work at Stripe

This role is available either in an office or a remote location (typically, 35+ miles or 56+ km from a Stripe office).

Office-assigned Stripes spend at least 50% of the time in a given month in their local office or with users. This hits a balance between bringing people together for in-person collaboration and learning from each other, while supporting flexibility about how to do this in a way that makes sense for individuals and their teams.

A remote location, in most cases, is defined as being 35 miles (56 kilometers) or more from one of our offices. While you would be welcome to come into the office for team/business meetings, on-sites, meet-ups, and events, our expectation is you would regularly work from home rather than a Stripe office. Stripe does not cover the cost of relocating to a remote location. We encourage you to apply for roles that match the location where you currently or plan to live.

Pay and benefits

The annual US base salary range for this role is $155,700 - $233,500. For sales roles, the range provided is the role’s On Target Earnings ("OTE") range, meaning that the range includes both the sales commissions/sales bonuses target and annual base salary for the role. This salary range may be inclusive of several career levels at Stripe and will be narrowed during the interview process based on a number of factors, including the candidate’s experience, qualifications, and location. Applicants interested in this role and who are not located in the US may request the annual salary range for their location during the interview process.

Additional benefits for this role may include: equity, company bonus or sales commissions/bonuses; 401(k) plan; medical, dental, and vision benefits; and wellness stipends.

Office locations

Seattle

Remote locations

Remote in United States

Team

Security

Job type

Full time

Apply for this role 

Please find our California applicant personal information notice here.

The application window will remain open for 100 days after the Job Post is published. However, this opportunity will remain open based on the needs of the business, which may cause the application window to close before or after the 100-day mark.

We look forward to hearing from you

At Stripe, we're looking for people with passion, grit, and integrity. You're encouraged to apply even if your experience doesn't precisely match the job description. Your skills and passion will stand out—and set you apart—especially if your career has taken some extraordinary twists and turns. At Stripe, we welcome diverse perspectives and people who think rigorously and aren't afraid to challenge assumptions. Join us.