Sida 1 av 1
WHO WE ARE ABOUT STRIPE Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world's largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career. ABOUT THE TEAM The Stripe Security team is dedicated to improving the security of Stripe and its users. Our users trust us with some of their most sensitive information, and we make security a first-class consideration in everything we do. Security concerns are ever-evolving, creating an extremely dynamic environment for the Security team. The goal of the Security Business Enablement team at Stripe is to build trust with our current and prospective customers and partners. We support Sales, Marketing, Legal, and Privacy by directly engaging with our customers and partners to communicate and represent the security activities performed by hundreds of employees and thousands of processes across our suite of products and services to operate the tools and platforms necessary to scale our resources across millions of users. WHAT YOU'LL DO This role is part of the Office of the CISO pillar at Stripe. You'll represent all of Stripe directly to our customers and partners, facilitate conversations with Legal and Security teams, and identify opportunities to enhance our coverage and scalability with tooling and automation. RESPONSIBILITIES • Function as an information security subject matter expert and lead cross-functional teams to engage with customers and partners to build trust and grow our business • Serve as the main point of contact for all go-to-market-related requests • Operate autonomously, leading large-scale efforts to implement and operate tooling and automation across multiple teams and functions, with stakeholders in different disciplines and time zones • Identify and evaluate information security control gaps and oversee remediation efforts, in partnership with control owners • Develop information security policies and standards based on cybersecurity framework guidelines • Develop, define, and report on the team's program health and success metrics to provide insights to management to help drive strategic direction WHO YOU ARE We're looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement. MINIMUM REQUIREMENTS • You are a subject matter expert in information security frameworks, practices, policies, standards, and procedures (e.g., NIST CSF, PCI DSS, ISO 27001, SOC 2, or equivalent) • You understand how to balance business needs with security requirements and focus on business outcomes • You have 5+ years engaging with customer and partner business, engineering, security, compliance, and legal teams as part of the go-to-market sales cycle • You have experience driving large-scale projects and programs from start to finish within highly complex operating environments • You have strong written and verbal communication skills, building strong relationships at all levels of the organization from executives to project teams • You communicate clear and succinct security compliance controls and requirements with external Stripe stakeholders, including security counterparties at global financial institutions • You possess a strong background in information security operations, risks and controls identification, and assessment • You are a critical thinker, passionate, self-driven, and detail-oriented PREFERRED QUALIFICATIONS • You've developed reports on program performance via dashboards and OKRs, and performed detailed data analysis • You have experience working with engineers for the automation of security controls and generation of evidence • You've utilized AI to automate complex information-gathering tasks and build interfaces for non-technical users
WHO WE ARE ABOUT STRIPE Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world's largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career. ABOUT THE TEAM The Stripe Security team is dedicated to improving the security of Stripe and its users. Our users trust us with some of their most sensitive information, and we make security a first-class consideration in everything we do. Security concerns are ever-evolving, creating an extremely dynamic environment for the Security team. The goal of the Security Business Enablement team at Stripe is to build trust with our current and prospective customers and partners. We support Sales, Marketing, Legal, and Privacy by directly engaging with our customers and partners to communicate and represent the security activities performed by hundreds of employees and thousands of processes across our suite of products and services to operate the tools and platforms necessary to scale our resources across millions of users. WHAT YOU'LL DO The Security Business Enablement Program Manager position will be part of the Office of the CISO pillar at Stripe. You'll represent all of Stripe directly to our customers and partners, facilitate conversations with Legal and Security teams, and identify opportunities to enhance our coverage and scalability with tooling and automation. RESPONSIBILITIES • Function as an information security subject matter expert and lead cross-functional teams to engage with customers and partners to build trust and grow our business • Serve as the main point of contact for all go-to-market related requests • Operate autonomously, leading large-scale efforts to implement and operate tooling and automation across multiple teams and functions, with stakeholders in different disciplines and time zones • Identify and evaluate information security control gaps and oversee remediation efforts, in partnership with control owners • Develop information security policies and standards based on cybersecurity framework guidelines • Develop, define, and report on the team's program health and success metrics to provide insights to management to help drive strategic direction WHO YOU ARE We're looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement. MINIMUM REQUIREMENTS • You are a subject matter expert in information security frameworks, practices, policies, standards, and procedures (e.g., NIST CSF, PCI DSS, ISO 27001, SOC 2, or equivalent) • You understand how to balance business needs with security requirements and focus on business outcomes • You have 5+ years engaging with customer and partner business, engineering, security, compliance, and legal teams as part of the go-to-market sales cycle • You have experience driving large-scale projects and programs from start to finish within highly complex operating environments • You have strong written and verbal communication skills, building strong relationships at all levels of the organization from executives to project teams • You communicate clear and succinct security compliance controls and requirements with external Stripe stakeholders, including security counterparties at global financial institutions • You possess a strong background in information security operations, risks and controls identification, and assessment • You are a critical thinker, passionate, self-driven, and detail-oriented PREFERRED QUALIFICATIONS • You have developed reports on program performance via dashboards and OKRs, and performed detailed data analysis • You have experience working with engineers for the automation of security controls and generation of evidence • You have utilized AI to automate complex information-gathering tasks and build interfaces for non-technical users
WHO WE ARE ABOUT STRIPE Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world's largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career. ABOUT THE TEAM Stripe powers businesses all over the world. We process payments, run marketplaces, detect fraud, help entrepreneurs start a business from anywhere in the world, build world-class developer-friendly APIs, and more. Nearly every system we operate interacts with sensitive financial or personal data—making security a top priority for Stripe. Stripe will succeed at our mission of increasing the GDP of the internet only if we prove ourselves worthy of our users' trust. As an engineer on the Security team, you'll design and develop frameworks, systems, and solutions to ensure the security of Stripe's engineering infrastructure and, most importantly, privacy of our users' data. The Cloud Security team accelerates Stripe's business priorities by building core security controls and services that empower teams to build quickly and securely on top of a well-governed cloud platform and partnering with infrastructure teams to advance select critical business priorities using novel infrastructure or integrations as that platform expands. WHAT YOU'LL DO RESPONSIBILITIES * Design, build, and operate the core security infrastructure used by all of Stripe's engineering teams in close collaboration with other stakeholders and our users * Uphold our high engineering standards and bring consistency to the many codebases and processes you'll encounter * Contribute to team learning by improving engineering standards, tooling, and processes * Design and build durable solutions that will advance Stripe's security beyond the state of the art * Help expand Stripe's cloud footprint on top of secure, paved roads and guardrails * Optimize for security controls that have delightful user experiences * Partner closely with infrastructure and engineering teams building integrations with our cloud infrastructure or adopting new cloud managed services * Make impactful decisions about systems and security—their edge cases, failure modes, and life cycles * Use data to determine appropriate baselines against which to measure security * Define infrastructure that reliably feeds signals to threat teams * Evaluate and prototype new security tools and practices You may work on * Designing and implementing controls that support security invariants and enforce our security principles while providing a surprisingly great user experience * Providing a migration path for newly acquired companies onto the Stripe Secure Platform, embedding with their engineers and biasing for action * CI tooling for platform-related configuration, including IAM roles, SCPs, and associated components * Guardrails and security controls for both commonly used and newer cloud technologies * Expanding our cloud identity infrastructure to provide paved paths for AI and agentic access * Automation tooling for continually driving down permissions and access across our cloud services WHO YOU ARE MINIMUM REQUIREMENTS * Empathy, strong communication skills, and a deep respect for the power of collaboration * A learning mindset, regardless of level or experience * The ability to drive clear next steps when encountering ambiguous spaces without clear lines of ownership * High standards for code quality and a constructive attitude to help others raise the bar * Software engineering experience in a high-stakes production environment * A knack for considering how systems can fail and how to fix them * An ability to think creatively and holistically about reducing risk in a complex environment * Experience with security on one or more of AWS, Azure, or GCP PREFERRED QUALIFICATIONS * Experience conducting threat modeling of software or infrastructure in cloud-native environments * Experience with Linux systems, Kubernetes, and container-based platforms * Prior usage of security monitoring tools (e.g., CSPM, CNAAP) * Experience in a multi-cloud or complex cloud environment * A knack for considering how systems can fail and how to fix them * An ability to think creatively and holistically about reducing risk in a complex environment
WHO WE ARE ABOUT STRIPE Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world's largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career. ABOUT THE TEAM AI is moving fast and Stripe is moving fast to adopt it. But we need to make sure we do all of this safely, and for most of these tools, enterprise-grade security isn't just available off the shelf. That's where the AI security team comes in—we're responsible for building and partnering to create the right security primitives to enable Stripe to move fast safely. This is a team that works in the low-level components of our AI stack, so both infrastructure and security experience are pluses. This space is moving fast, so being comfortable with ambiguity and changes in priority is a must. This is a foundational role—you'd be the first engineer on the team. WHAT YOU'LL DO Engineers on this team do a mixture of partnering and advising with teams building AI infrastructure and products, and building security infrastructure primitives for AI. One of our major focuses is building a security tooling layer that sits in the inference path, providing detection and protection against AI-specific threats like prompt injection, jailbreaks, and tool misuse. RESPONSIBILITIES • Build security frameworks integrated with our core AI infrastructure • Design and implement defenses against AI-specific threats like prompt injection and jailbreaks • Collaborate with other engineering teams to ensure our AI infrastructure and products are built securely • Support other engineering teams in integrating security primitives • Uphold our high engineering standards and improve our codebase and processes • Design and build systems that help define the state of the art for AI security WHO YOU ARE We're looking for someone who meets the minimum requirements to be considered for the role. If you meet these requirements, you are encouraged to apply. The preferred qualifications are a bonus, not a requirement. MINIMUM REQUIREMENTS • 5+ years of software development experience • Experience independently designing and developing medium-to-large projects • Experience working collaboratively across multiple engineering teams • Experience writing high-quality code in a major programming language • Ability to drive clear next steps when working in an ambiguous environment • Ability to think creatively and reason clearly in a complex problem domain PREFERRED QUALIFICATIONS • Experience developing, deploying, and maintaining reliable infrastructure systems • Experience in security engineering • Experience building AI agents or LLM-based systems