Title: Product Security Engineering Manager Location: Austin United States Job Description: Requisition ID R0135635 Time Type Full time The Company PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy. We operate a global, two-sided network at scale that connects hundreds of millions of merchants and consumers. We help merchants and consumers connect, transact, and complete payments, whether they are online or in person. PayPal is more than a connection to third-party payment networks. We provide proprietary payment solutions accepted by merchants that enable the completion of payments on our platform on behalf of our customers. We offer our customers the flexibility to use their accounts to purchase and receive payments for goods and services, as well as the ability to transfer and withdraw funds. We enable consumers to exchange funds more safely with merchants using a variety of funding sources, which may include a bank account, a PayPal or Venmo account balance, PayPal and Venmo branded credit products, a credit card, a debit card, certain cryptocurrencies, or other stored value products such as gift cards, and eligible credit card rewards. Our PayPal, Venmo, and Xoom products also make it safer and simpler for friends and family to transfer funds to each other. We offer merchants an end-to-end payments solution that provides authorization and settlement capabilities, as well as instant access to funds and payouts. We also help merchants connect with their customers, process exchanges and returns, and manage risk. We enable consumers to engage in cross-border shopping and merchants to extend their global reach while reducing the complexity and friction involved in enabling cross-border trade. Our beliefs are the foundation for how we conduct business every day. We live each day guided by our core values of Inclusion, Innovation, Collaboration, and Wellness. Together, our values ensure that we work together as one global team with our customers at the center of everything we do – and they push us to ensure we take care of ourselves, each other, and our communities. Job Summary: The team’s main goal is to identify security vulnerabilities in PayPal’s code and applications, and to proactively prevent them by adding security controls across PayPal’s development eco-system. This role is managing a team of engineers integrating, supporting, and developing a number of product security scanners. This includes COTS solutions, as well as some open source or internally developed scanners. The team is also responsible for developing security controls to be integrated within PayPal’s code, frameworks, and environments. The team’s work combines security engineering, with software and system engineering. Job Description: Essential Responsibilities: - Leverage specialized security expertise to identify and resolve complex security issues, recommending best practices and determining new approaches that have an impact on broader security operations, while aligning security strategies with business priorities - Partner across teams and key stakeholders to drive security initiatives, leading and solutioning complex projects and programs to strengthen overall security posture. - Apply advanced analytical skills and sound judgment to solve security challenges, considering diverse perspectives and innovative solutions. Stay current with industry trends and emerging technologies, understanding their security implications to the company’s context. - Directly contribute to improvements within the security domain and occasionally beyond, ensuring decisions lead to meaningful enhancements in security practices. - Leverage relationships across teams, both within and outside of security, to influence initiatives and integrate feedback into security processes. - Develop and articulate clear plans and priorities for the team, guiding them to achieve security objectives while fostering a collaborative and high-performance environment. - Lead by example, providing mentorship and support to ensure the team successfully executes on initiatives and goals. Minimum Qualifications: - 5+ years relevant experience and a Bachelor’s degree OR Any equivalent combination of education and experience. Additional Responsibilities & Preferred Qualifications: · At least 10 years of experience in application security or software development · At least 2 years of experience in a management role · Programming experience in at least one language such as Java, Python, JavaScript, Ruby, Go · Knowledge of OWASP top 10 and a deep understanding of web application and mobile application vulnerabilities · A strong familiarity with application security scanners such as SAST, SCA, DAST · Working knowledge Git, common CI/CD pipelines, and other standard developer tools · Proficiency in mentoring, providing feedback, and guiding engineers that you manage. · Strong collaboration skills with stakeholders across multiple disciplines. · Working knowledge of major cloud platforms such as Google Cloud, AWS, Azure – an advantage. · Industry certifications (e.g., CISSP, CISM, CSSLP, GWEB, or equivalent) – an advantage. · Familiarity with iOS, Android and browser SDK development – an advantage. Subsidiary: PayPal Travel Percent: 0 The base pay for this role will depend on where you work and the relevant experience and expertise you bring. The expected range of pay for this role by location is: Primary Location | Pay Range: Austin, Texas | ($160,500.00 - $238,700.00 Annually) Additional Location(s) | Pay Range: No other locations are assigned to this requisition currently. Additional compensation for this role may include an annual performance bonus, equity, or other incentive compensation, as applicable. PayPal does not charge candidates any fees for courses, applications, resume reviews, interviews, background checks, or onboarding. When making an application directly, we will never ask you to share passwords, one-time passcodes (OTP), or verification codes. Any such request is a red flag and likely part of a scam. All communication regarding your application will come from official PayPal email domains. If you suspect fraudulent activity, please report it immediately. To learn more about how to identify and avoid recruitment fraud please visit https://careers.pypl.com/contact-us. For the majority of employees, PayPal's balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations. Our Benefits: At PayPal, we’re committed to building an equitable and inclusive global economy. And we can’t do this without our most important asset-you. That’s why we offer comprehensive, choice-based programs, to support all aspects of personal wellbeing—physical, emotional, and financial—delivering meaningful value where it matters most. We strive to create a flexible, balanced work culture with a holistic approach to benefits, including generous paid time off, healthcare coverage for you and your family, and resources to create financial security and support your mental health. Who We Are: Click Here to learn more about our culture and community. Commitment to Diversity and Inclusion PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us Belonging at PayPal: Our employees are central to advancing our mission, and we strive to create an environment where everyone can do their best work with a sense of purpose and belonging. Belonging at PayPal means creating a workplace with a sense of acceptance and security where all employees feel included and valued. We are proud to have a diverse workforce reflective of the merchants, consumers, and communities that we serve, and we continue to take tangible actions to cultivate inclusivity and belonging at PayPal. Any general requests for consideration of your skills, please Join our Talent Community. We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don’t hesitate to apply. When you become part of our Talent Community, we’ll keep you posted about future job opportunities that you may be a match for, as well as career-related events.

Deliver engaging online science instruction while personalizing learning experiences for students. Monitor progress, maintain academic integrity, and establish positive relationships with families to support student success and achievement.

Title: Senior Enterprise Security Architect Location: Lexington United States City Lexington State/Province Kentucky Country United States Department IM SECURITY Working time Full-time Ref# 20038829 Job Level Individual Contributor Job Type Experienced Job Field IM SECURITY Seniority Level Associate Currency USD - United States - US Annual Base Salary Minimum 76,860 Annual Base Salary Maximum 153,720 Job Description: Description & Requirements About Xerox Holdings Corporation For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we've expanded into software and services to sustainably power the hybrid workplace of today and tomorrow. Today, Xerox is continuing its legacy of innovation to deliver client-centric and digitally-driven technology solutions and meet the needs of today's global, distributed workforce. From the office to industrial environments, our differentiated business and technology offerings and financial services are essential workplace technology solutions that drive success for our clients. At Xerox, we make work, work. Learn more about us at www.xerox.com. Role Summary Xerox is seeking a Senior Enterprise Security Architect to lead security architecture reviews and provide secure-by-design guidance across enterprise initiatives, with a strong preference for experience (or strong aptitude) in AI/GenAI solution security. This role partners closely with engineering, product, legal, privacy, and risk stakeholders to assess solution architectures, identify and quantify risk, and drive practical remediation plans that enable delivery. You will be expected to operate as an independent reviewer and trusted advisor-able to quickly understand complex architectures, identify security gaps, and define clear, actionable requirements that align to enterprise standards. Key Responsibilities - Lead security architecture engagements for enterprise initiatives, including AI-enabled applications, cloud platforms, SaaS integrations, and data-driven systems. - Evaluate solution designs for security risks across: - Identity and access models (SSO, RBAC/ABAC, service principals, OAuth, API keys) - Application and API security patterns - Cloud security architecture (Azure preferred) - Data protection (classification, encryption, retention, DLP patterns) - Logging/monitoring and operational readiness - Network and integration security (connectors, segmentation, egress control) - Perform threat modeling and data-flow analysis; document findings, recommended mitigations, and residual risk. - Partner with delivery teams to embed security requirements into implementation plans and ensure closure of findings. - Support third-party solution evaluations by reviewing vendor security posture, architecture, and data handling practices in partnership with risk and procurement stakeholders. - Contribute to reusable security architecture patterns, standards, and reference designs to reduce friction and improve consistency. - Provide mentorship and technical guidance to engineers and architects on secure design and implementation. AI / GenAI Security Focus (Preferred) - Review and secure patterns for RAG, embeddings/vector databases, document ingestion, and retrieval authorization. - Evaluate controls for prompt injection, data leakage, jailbreak attempts, model misuse, and unsafe tool/action chaining. - Assess AI data handling: training/fine-tuning boundaries, prompt/response retention, privacy constraints, and output filtering/guardrails. - Validate AI solution observability: audit logging of user requests, retrieval events, model calls, and administrative actions. Required Qualifications - 7+ years in security architecture, security engineering, enterprise architecture, or comparable experience. - Demonstrated breadth across enterprise security domains, including: - IAM (SSO/OIDC/SAML, RBAC, privileged access concepts) - Application security and secure SDLC practices - Cloud security fundamentals (Azure strongly preferred) - Data security (encryption, key management, classification, retention) - Logging/monitoring and incident-ready telemetry - Strong ability to create and interpret architecture diagrams and data flows. - Proven experience communicating security risk and recommendations clearly to both technical teams and leadership. - Experience driving remediation plans to closure in partnership with engineering and product teams. Preferred Qualifications - Direct experience assessing or building AI/ML/GenAI solutions (Azure OpenAI, AI platforms, copilots/agents, model hosting, AI SaaS). - Familiarity with enterprise risk workflows (risk registers, third-party risk, audits). - Experience with DevSecOps/IaC security and cloud governance controls. - Certifications welcomed (not required): CISSP, CCSP, SABSA, Azure Security, GIAC. Key Competencies - Strong systems thinking and ability to reason across complex enterprise environments. - Risk-based decision-making (pragmatic, business-enabling security). - Comfortable operating with ambiguity and quickly learning new technologies. - Excellent written communication (findings, requirements, and executive-ready summaries). - High integrity, strong judgment, and collaborative stakeholder management. What Success Looks Like (First 90-180 Days) - Independently lead multiple concurrent architecture reviews and deliver consistent, high-quality findings and requirements. - Improve review throughput by applying repeatable patterns and clear "definition of done" security outcomes. - Establish trusted partnerships with engineering teams by providing practical, implementable guidance. - Contribute at least 2-3 reusable security architecture patterns (especially for AI integrations and data handling). #LI-MC1 #LI-HYBRID

About Upstart At Upstart, we’re united by a mission that matters: to radically reduce the cost and complexity of borrowing for all Americans. Every day, we bring creativity, experimentation, and advanced AI to reshape access to credit, helping millions move forward financially with clarity and confidence. As the leading AI lending marketplace, we partner with banks and credit unions to expand access to affordable credit through technology that’s both radically intelligent and deeply human. Our platform runs over one million predictions per borrower using more than 1,800 signals, powering smarter, fairer decisions for millions of customers. But the numbers only hint at the impact. Every idea, every voice, and every contribution moves us closer to a world where credit never stands between people and their financial progress. We’re proudly digital-first, giving most Upstarters the flexibility to do their best work from wherever they thrive, alongside teammates across 80+ cities in the US and Canada. Digital-first doesn’t mean distant. We’re intentional about in-person connection through team onsites, planning sessions, and moments that spark creativity and trust. And whether you choose to work primarily from home or collaborate in-person from one of our offices in Columbus, Austin, the Bay Area, or New York City (opening Summer 2026), you’ll have the support to work in the way that works best for you. If you’re energized by tackling meaningful problems, excited to innovate with purpose, and motivated by work that truly matters, we’d love to hear from you. The Team: Upstart’s Application Security team is passionate in bringing progressive approaches in securing our products. We believe that security should empower innovation, move at the speed of business, and have safety by design as core principles. Our team’s mission is to ensure the safety of our core product platforms, enterprise, and manage threats to Upstart. We approach our efforts through automation, strong collaboration with our partner teams, and maintaining a positive experience for Upstarters.. As the Principal Application Security Engineer at Upstart, you will be expected to lead cross-functional and cross-organizational discussions and outcomes around threat modeling, application and infrastructure security. You will be expected to deeply understand the business verticals and product needs and influence them to build highly secure systems and platforms. You will have a direct hand in shaping the strategic security posture and roadmap for Upstart and should be a well-rounded technologist and security practitioner. How you’ll make an impact: - Define and drive Upstart’s application security strategy, aligning secure-by-design principles with business priorities, regulatory expectations, and our AI-driven product roadmap. - Lead cross-functional security architecture reviews for critical initiatives, influencing engineering, platform, data, and infrastructure decisions to reduce systemic risk early in the SDLC. - Establish and scale a robust threat modeling program for high-risk systems, including customer-facing applications, lending workflows, and ML/AI pipelines, translating findings into durable engineering standards and controls. - Design and standardize application security guardrails across the SDLC, including secure coding practices, automated testing (SAST/DAST/SCA), CI/CD protections, and secrets management. - Partner with Infrastructure and Cloud teams to strengthen the security posture of cloud-native and distributed systems, ensuring defense-in-depth across application and infrastructure layers. - Identify and reduce internal and external attack surface through automation and platform-level solutions, prioritizing long-term risk reduction over point-in-time remediation. - Serve as a senior technical authority during high-severity incidents, driving root cause analysis and durable architectural improvements. - Elevate security maturity across the organization by mentoring engineers, influencing leadership through clear risk metrics, and fostering a culture where security enables innovation. What we’re looking for: Minimum requirements: - 9+ years of experience in security engineering, with at least 5 years focused on application security - Demonstrated experience leading security architecture reviews and threat modeling for complex, customer-facing production systems - Experience in Java, Python or Ruby development. - Experience designing and implementing application security controls across the SDLC, including secure coding standards, API Security, SAST/DAST/SCA, CI/CD security, and secrets management - Demonstrable track record as an influential leader, delivering security solutions with multiple stakeholder groups - Experience managing multiple and simultaneous, significant information security initiatives and programs - Experience developing code and building services to enhance unique security operational needs - Experience with advanced threat modeling techniques and risk assessment Preferred qualifications: - 10+ years of experience spanning across multiple security and engineering domains in a cloud-native and/or distributed systems environment - Experience building or scaling an application security program, including defining metrics, maturity models, and risk-based prioritization frameworks - Familiarity with security considerations in modern frontend frameworks, APIs (REST/GraphQL), and microservices architectures. - Experience partnering with Legal, Risk, Compliance, and Audit teams to operationalize security controls in regulated environments - Security certifications such as CISSP, CCSP, AWS Security Specialty, or equivalent practical expertise Position Location - This role is available in the following locations: San Mateo, Columbus, Austin, Remote Time Zone Requirements - This team operates on the East/West Coast time zones. Travel Requirements - This team has regular on-site collaboration sessions. These occur 3-4 days per Quarter at one of our office locations or some other off-site location determined by your team/manager. If you need to travel to make these meetups, Upstart will cover all travel related expenses. #LI-REMOTE #LI-MidSenior At Upstart, your base pay is one part of your total compensation package. The anticipated base salary for this position is expected to be within the below range. Your actual base pay will depend on your geographic location–with our “digital first” philosophy, Upstart uses compensation regions that vary depending on location. Individual pay is also determined by job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process. In addition, Upstart provides employees with target bonuses, equity compensation, and generous benefits packages (including medical, dental, vision, and 401k). United States | Remote - Anticipated Base Salary Range $190,600—$263,900 USD What you'll love At Upstart, our benefits are designed to support your health, financial well-being, family, and personal growth. Here’s what you can expect: - Competitive compensation, including base pay, bonus opportunities, and annual equity grants that vest quarterly - Generous 401(k) plan with Upstart matching $2 for every $1 contributed, up to $15,000 per year - Employee Stock Purchase Plan (ESPP) with discounted stock purchase options for eligible employees - Affordable medical, dental, and vision coverage, with multiple plan options - Upstart covers 90% to 100% of the cost depending on the plans you choose - Health Savings Account contributions from Upstart for eligible plans - Income protection benefits, including company-paid Basic Life, AD&D, and Short- and Long-Term Disability coverage, with options to purchase supplemental coverage - Paid time off, sick and safe time, and company holidays - Paid family and parental leave to support caregiving and major life moments - Family-centered benefits through Carrot and Cleo, supporting fertility, parenthood, and caregiving - Employee Assistance Program (EAP) offering mental health support and life-centered resources - Financial wellness resources, including access to financial planning tools and a financial concierge service - Annual wellness allowance to support your physical and emotional well-being and personal development, based on what matters most to you - Annual productivity allowance to invest in relevant tools and resources you need to do your best work, no matter where you work from - Connection and community through team events and onsites, all-company updates, and employee resource groups (ERGs) - Onsite perks, including catered lunches and fully stocked micro-kitchens when working from one of our four offices, located in the Bay Area, Austin, Columbus, and New York City (opening Summer 2026!). Upstart is a proud Equal Opportunity Employer. Just as we are dedicated to improving access to affordable credit for all, we are committed to inclusive and fair hiring practices. If you require reasonable accommodation in completing an application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please email candidate_accommodations@upstart.com https://www.upstart.com/candidate_privacy_policy