• The Global Information Security team is responsible for driving Cybersecurity Vulnerability Management, Hardening and Configuration Management and Patching activities for eBay Payments, Marketplaces, Corporate IT, and adjacent businesses
• You will play a critical role working directly with business and technology teams to support Operating System and Infrastructure Hardening and Configuration compliance initiatives

You will partner across the organization to drive collaboration and response on Security misconfigurations, Drift from established hardening standards and threats impacting eBay Infrastructure and be able to coordinate teams and remediation actions quickly to minimize impact

• Develop, maintain, and implement secure OS baseline configurations aligned with CIS benchmarks and internal security standards
• Partner with Platform, Cloud, and ECD teams to integrate OS hardening controls into infrastructure build and deployment pipelines
• Automate OS hardening implementation using Ansible or Terraform, and validate enforcement through compliance scanning
• Continuously monitor and assess systems for configuration drift, unauthorized changes, or deviations from security baselines
• Collaborate with Compliance teams to ensure hardening standards address emerging threats and regulatory requirements
• Provide remediation guidance to system administrators and application owners on secure configuration practices

Measure and report on hardening coverage, compliance rates, and drift metrics (KPIs/KRIs) to leadership

• 3–5 years of experience in Infrastructure Security with exposure to vulnerability management and OS hardening in Linux environments (e.g., RHEL, Ubuntu)
• Working knowledge of OS vulnerability and configuration lifecycle management, patch processes
• Deep familiarity with CIS Benchmarks or equivalent standards
• Familiarity with CI/CD pipelines, containerized environments (Docker/Kubernetes), and using security checks integrated into automated workflows
• Strong analytical and problem-solving skills with attention to detail in identifying and prioritizing security risks

Ability to work multi-functionally across global teams and effectively communicate technical security information

Scripting proficiency in Python, Bash, or PowerShell for automating scanning, remediation, or compliance validation tasks

$98,000 - $173,600

• Base pay offered may vary depending on multiple individualized factors, including location, skills, and experience

The total compensation package for this position may also include other elements, including a target bonus and restricted stock units (as applicable) in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as PTO and parental leave) If hired, employees will be in an “at-will position” and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors