Senior Software Engineer - Edge-Services Security

Join StubHub's Edge Services team as a Software/Security Engineer and help shape the global infrastructure that keeps millions of fans connected, secure, and engaged—right at the edge. You'll work on state of the art CDN architecture, advanced bot mitigation, and real-time fraud defenses, collaborating with top-tier security and platform teams to drive innovation at massive scale. This is your chance to build resilient, high-performance systems that directly power one of the largest live event marketplaces in the world. 

Location: Hybrid (3 days in office/2 days remote) – New York, NY or Century City, CA or Aliso Viejo, CA

• →Design, implement, and operate CDN infrastructure using AWS CloudFront, Global Accelerator, bot management, and related services. 
• →Develop scalable systems for detecting and mitigating malicious automated traffic, using both commercial bot management platforms and homegrown controls. 
• →Codify reusable Infrastructure as Code (IaC) modules to enable other teams to deploy edge services safely and consistently. 
• →Integrate with fraud detection pipelines to inform real-time blocking or scoring decisions at the edge. 
• →Collaborate with security and platform teams to enforce zero-trust controls, request validation, and origin shielding. 
• →Integrate CDN & bot management application coverage into existing developer platform software & automation products. 
• →Drive edge observability strategy using metrics, traces, and logs to detect anomalies and optimize performance. 
• →Evaluate and implement new technologies (e.g., edge compute, rate limiting frameworks, multi-CDN failover strategies). 
• →Participate in incident response and root cause analysis for edge service outages or abuse-related escalations. 

• →Expert level experience with AWS edge and networking services (CloudFront, WAF, Route53, Shield, Global Accelerator). 
• →Expert level proficiency with Terraform and infrastructure-as-code patterns in production. 
• →Deep experience implementing or operating enterprise-grade bot management platforms (e.g., HUMAN, AWS Bot Control, Cloudflare Bot Management, Akamai Bot Manager). 
• →Advanced knowledge of HTTP protocol, CDN caching strategies, edge compute functions (e.g., Lambda@Edge), and TLS management. 
• →Strong software development experience in a modern language (e.g., Python, Go, TypeScript, Java). 
• →Track record of building safe, observable, and performant infrastructure at scale. 
• →Familiarity with building and scaling fraud prevention systems or integrating with fraud intelligence platforms is a plus. 

• Experience authoring real-time request evaluation logic at the edge.  
• Familiarity with HTTP/2, QUIC, and emerging transport protocols for low-latency content delivery. 
• Familiarity with custom device fingerprinting, rate limiting, and CAPTCHA challenge orchestration. 
• Experience supporting traffic segmentation, geo-steering, or multi-CDN architecture. 
• Background in high-scale event collection and processing for edge analytics. 
• Proficiency in implementing defense-in-depth mechanisms for Layer 7 attacks. 
• Proficiency in building distributed rate-limiting or request scoring systems. 
• Familiarity with principles of secure system design and zero-trust architectures. 
• Contributions to open-source projects in the edge, networking, or observability space.