The Community You Will Join:

Airbnb’s Enterprise Security team is focused on proactive security and is looking for a hands-on Sr. Staff Security Engineer who is passionate about building, defending and enabling our customers with seamless user experiences. Enterprise Security partners closely with IT and Infrastructure teams to secure Airbnb’s corporate systems, network, applications and data. Our philosophy is to enable new business functions by reducing the friction often associated with security controls. Airbnb is a community built on trust, and we are an integral part of that foundation.

Our team provides security expertise from the design to the implementation stage, builds and / or deploys tools to enhance Airbnb’s security posture, conducts assessments, and automates operational workflows.

The Difference You Will Make:

• Deploy cloud security solutions and controls in a multi-cloud (e.g. GCP, Azure, AWS) and on-premise infrastructure.
• Build secure access controls using modern-era tools and techniques (e.g. WebAuthn, SSH over HTTP, Ephemeral access)
• Utilize infrastructure management tooling (Puppet / Chef, Ansible,Terraform) to enable consistent hardening configs and code-driven security configurations in a multi-cloud, on-prem environment (e.g. GCP, Azure, AWS)
• Deploy Data Loss Prevention (DLP) solutions focusing on PII and PCI related data that may be in SaaS applications (e.g. GSuite, SalesForce, Box) and consider additional DLP strategies.
• Deploy vulnerability management tools across CI/CD, compute, and container infrastructure to detect vulnerabilities and security misconfigurations.
• Enable deployment of Chrome OS at scale for customer support agents to significantly reduce attack surface and improve endpoint management.
• Orchestrate security posture checks on all new infrastructure deployments.
• Implement endpoint state attestation tooling.
• Scale proactive security controls to new environments (e.g. acquisitions).

A Typical Day:

• Zero Trust for the entire organiztion
• Orchestration for security posture checks on all new infrastructure deployments.
• Endpoint state attestation and hardening.
• Scale proactive security controls to new environments (e.g. acquisitions).
• Development of custom and open source security solutions.
• Cloud Security Architecture and posture management.

Your Expertise:

• You will have a minimum of 9+ years of industry experience with a BS/Masters and 6+ years with a PhD.
• Lead and drive widely scoped cross functional collaborative security efforts
• Serve as a positive role model, lead by example and help foster team growth and maturity
• Develops innovative solutions and strategies that span multiple teams and technical domains
• Ability to solve unique, ambiguous challenges
• Adapts to fill both technical and organizational gaps across the security organization, assuming roles that are not clearly scoped or defined
• Provide security expertise and guidance on new projects and technologies.
• Proactively collaborates, builds key relationships, manages different viewpoints, and drives cross-functional alignment with stakeholders
• Proactively identifies areas of security risk and future needs, collaboratively designing sustainable, measurable solutions across all categories of threats
• Design and drive implementation of secure infrastructure at scale.
• Perform risk assessments and build threat models of core corporate and cloud infrastructure.
• Harden our clients, servers, and networks against exploitation.
• Build and / or implement tools that aid in enhancing the security posture of corporate infrastructure and services.
• Collaborate with CSIRT and Production Security teams on cross-functional projects to secure our services and data.

How We'll Take Care of You:

Our job titles may span more than one career level. The starting base pay for this role is between 185,000 and 230,000. The actual base pay is dependent upon many factors, such as: training, transferable skills, work experience, business needs and market demands. The base pay range is subject to change and may be modified in the future. This role may also be eligible for bonus, equity, benefits, and Employee Travel Credits.

Your Location:

This position is US - Remote Eligible. The role may include occasional work at an Airbnb office or attendance at offsites, as agreed to with your manager. While the position is Remote Eligible, you must live in a state where Airbnb, Inc. has a registered entity. Click here for the up-to-date list of excluded states. This list is continuously evolving, so please check back with us if the state you live in is on the exclusion list. If your position is employed by another Airbnb entity, your recruiter will inform you what states you are eligible to work from.

Our Commitment To Inclusion & Belonging:

Airbnb is committed to working with the broadest talent pool possible. We believe diverse ideas foster innovation and engagement, and allow us to attract creatively-led people, and to develop the best products, services and solutions. All qualified individuals are encouraged to apply.

We ask that you only reach out to us if you are a candidate whose disability prevents you from being able to complete our online application.