Vulnerability Management Engineer

At eBay, we're more than a global ecommerce leader — we’re changing the way the world shops and sells. Our platform empowers millions of buyers and sellers in more than 190 markets around the world. We’re committed to pushing boundaries and leaving our mark as we reinvent the future of ecommerce for enthusiasts.

Our customers are our compass, authenticity thrives, bold ideas are welcome, and everyone can bring their unique selves to work — every day. We're in this together, sustaining the future of our customers, our company, and our planet.

Join a team of passionate thinkers, innovators, and dreamers — and help us connect people and build communities to create economic opportunity for all.

The Global Information Security team is responsible for driving Cybersecurity Vulnerability Management, Hardening and Configuration Management and Patching activities for eBay Payments, Marketplaces, Corporate IT, and adjacent businesses. You will play a critical role working directly with business and technology teams to support Operating System and Infrastructure Hardening and Configuration compliance initiatives. You will partner across the organization to drive teamwork and response on Security misconfigurations, Drift from established hardening standards and threats impacting eBay Infrastructure and be able to coordinate teams and remediation actions quickly to minimize impact.

• Develop, maintain, and implement secure OS baseline configurations aligned with CIS benchmarks and internal security standards.
• Partner with Platform, Cloud, and ECD teams to integrate OS hardening controls into infrastructure build and deployment pipelines.
• Automate OS hardening implementation using Ansible or Terraform, and validate enforcement through compliance scanning.
• Continuously monitor and assess systems for configuration drift, unauthorized changes, or deviations from security baselines.
• Collaborate with Compliance teams to ensure hardening standards address emerging threats and regulatory requirements.
• Provide remediation guidance to system administrators and application owners on secure configuration practices.
• Measure and report on hardening coverage, compliance rates, and drift metrics (KPIs/KRIs) to leadership.

• 3–5 years of experience in Infrastructure Security with exposure to vulnerability management and OS hardening in Linux environments (e.g., RHEL, Ubuntu).
• Working knowledge of OS vulnerability and configuration lifecycle management, patch processes
• Deep familiarity with CIS Benchmarks or equivalent standards.
• Familiarity with CI/CD pipelines, containerized environments (Docker/Kubernetes), and leveraging security checks integrated into automated workflows.
• Scripting proficiency in Python, Bash, or Power Shell for automating scanning, remediation, or compliance validation tasks.
• Strong analytical and problem-solving skills with attention to detail in identifying and prioritizing security risks.
• Ability to work cross-functionally across global teams and effectively communicate technical security information.

• Experience integrating OS hardening with CI/CD pipelines and Infrastructure-as-Code environments.
• Understanding cloud-native hardening guidelines (AWS, GCP, Azure)
• Experience using Service Now, including features (related to Vulnerability Response and Orchestration) within Service Now is highly preferred
• Experience with Data Analytics platforms (Splunk etc.) is desirable.

The base pay range for this position is expected in the range below: $95,200 - $168,700.

Base pay offered may vary depending on multiple individualized factors, including location, skills, and experience. The total compensation package for this position may also include other elements, including a target bonus and restricted stock units (as applicable) in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as PTO and parental leave).

Details of participation in these benefit plans will be provided if an employee…