Security Engineer

divh2Security Engineer / h2pThe Security Engineer is responsible for security design and reviews across our products and services. The ideal candidate brings broad technical expertise and hands-on experience in end-to-end product security. In this role, youll collaborate with engineering teams to design, implement, and validate secure solutions. Youll serve as a trusted security advisor, guiding architecture and reviewing implementation, particularly for new features or security enhancements. This is a unique opportunity to work with cutting-edge cloud and security technologies while making a direct impact on Zooms platform. / ppThe Security Architecture team is dedicated to ensuring Zoom releases and deploys secure products. We work with diverse engineering, compliance and DevOps teams across the organization to meet security goals and maintain compliance with established SLAs. / ph3Responsibilities / h3pBeing a security subject-matter expert, guide engineering teams in end-to-end secure system design and implementation. / ppConducting threat modeling, architecture review, security code review, security assessment, and security testing (web application, native application, web services, cloud-based services, and infrastructure assessments). / ppPerforming cloud infrastructure reviews from a security perspective; the primary focus will be on AWS permissions and configuration issues within components like IAM and S3. / ppPerforming an in-depth security review of new Zoom features and functionalities. This includes identifying security vulnerabilities such as those in the OWASP Top Ten, common issues from the NVD, and risks like RCE. It also involves reviewing Java or Python code and verifying security posture through manual and automated testing using tools like Burp Suite and Coverity. / ppIdentifying gaps in existing cloud security architecture design / configuration, recommend changes or enhancements (authentication, authorization, network segmentation, container configuration, bastion host setup, etc.). / ppProviding hands on security training and secure coding best practices to engineering teams. / ph3What Were Looking For / h3pHave obtained a Bachelors degree in Computer Science, Information Science, Cyber Security, Computer or Electrical Engineering (or similar field), and 5+ years in security. / ppHave extensive experience in security testing in various environments, including assessing the security posture of web applications, native applications, distributed systems, and cloud infrastructure such as AWS. Focus on securing web services, infrastructure, deployment, and platform core services. / ppPossess a solid understanding of software security architecture, design, threat modeling, secure code review, cryptography, and the SDLC. Ability to clearly communicate best practices and effective mitigations for application security, particularly SDLC exceptions. / ppHave in-depth knowledge of network based, system level, and application layer attacks and mitigation methods. / ppHave good knowledge of technology and security topics including network and application security (OWASP), infrastructure hardening, security baselines, web server, database security and applied cryptography. / ppHave good development experience in one or more of the programming languages and platforms such as Java is required. / ppSalary Range or On Target Earnings : Minimum : $98,900.00 Maximum : $228,700.00 In addition to the base salary and / or OTE listed Zoom has a Total Direct Compensation philosophy that takes into consideration; base salary, bonus and equity value. Note : Starting pay will be based on a number of factors and commensurate with qualifications experience. We also have a location based compensation structure; there may be a different range for candidates in this and other locations. / ppAt Zoom, we offer a window of at least 5 days for you to apply because we believe in giving you every opportunity. Below is the potential closing date, just in case you want to mark it on your calendar. / ppAnticipated Position Close Date : 01 / 26 / 26 / ppWays of WorkingOur structured hybrid approach is centered around our offices and remote work environments. The work style of each role, Hybrid, Remote, or In-Person is indicated in the job description / posting. / ppBenefitsAs part of our award-winning workplace culture and commitment to delivering happiness, our benefits program offers a variety of perks, benefits, and options to help employees maintain their physical, mental, emotional, and financial health; support work-life balance; and contribute to their community in meaningful ways. / ppAbout UsZoomies help people stay connected so they can get more done together. We set out to build the best collaboration platform for the enterprise, and today help people communicate better with products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinars. Were problem-solvers, working at a fast pace to design solutions with our customers and users in mind. Find room to grow with opportunities to stretch your skills and advance your career in a collaborative, growth-focused environment. / ppOur CommitmentAt Zoom, we believe great work happens when people feel supported and empowered. Were committed to fair hiring practices that ensure every candidate is evaluated based on skills, experience, and potential. If you require an accommodation during the hiring process, let us knowwere here to support you at every step. If you need assistance navigating the interview process due to a medical disability, please submit an Accommodations Request Form and someone from our team will reach out soon. This form is solely for applicants who require an accommodation due to a qualifying medical disability. Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed. / ppWe believe that the unique contributions of all Zoomies is the driver of our success. To make sure that our products and culture continue to incorporate everyones perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. Zoom is proud to be an equal opportunity workplace and is an affirmative action employer. All your information will be kept confidential according to EEO guidelines. / p / div