Senior Security Engineer

Security (SC)

Person, Crowd, Audience, Clothing, Apparel, People

Senior Security Engineer

  • San Jose, California, United States
  • Full time

Work Styles at Zoom

In most cases, you will have the opportunity to choose your preferred working location from the following options when you join Zoom: in-person, hybrid or remote. Visit this page for more information about Zoom's Workstyles.

About Us

Zoomies help people stay connected so they can get more done together. We set out to build the best video product for the enterprise, and today help people communicate better with products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinars.

We’re problem-solvers, working at a fast pace to design solutions with our customers and users in mind. Here, you’ll work across teams to deliver impactful projects that are changing the way people communicate and enjoy opportunities to advance your career in a diverse, inclusive environment.

Job Description:

Create security test documents that cover security feature testing, fuzzing, application penetration testing, and regression. Perform SAST/DAST and penetration testing on web applications, web services, native and mobile applications using security tools such as Checkmarx, WebInspect, AFL, and Burp Suite. Triage and validate security vulnerabilities found or reported, and work with our engineering teams on resolutions. Implement OWASP ASVS 4.0 standards with manual and automation tests. Conduct security tests and identify potential vulnerabilities (OWASP top 10, critical/high, and common issues in NVD) of improvement in security design or implementation. Communicate issues to our application owners, provide meaningful remediation recommendations, and validate that they have been resolved. Develop and employ 3rd party security test automation solutions for regression testing. Validate new security features and updates into existing products and ensure the security of Zoom products is maintained throughout the product life cycle. 

Minimum Education & Experience Requirements:

Master’s degree in Security Informatics, Information Security, Computer Science, a related field, or a foreign equivalent. Must have 2 years of experience in job offered or related occupation. Applicants must have 2 years of experience with the following: (1) application security testing and releasing SaaS software in public clouds (AWS), Web, Mobile, API, or on hardware appliances; (2) application security testing with automation in public clouds; (3) automating vulnerability discovery and repetitive tasks; (4) Security Development Lifecycle (SDLC); (5) development experience in programming languages and platforms including Python, iOS, Android and Mac ; (6) security tools including Kali Linux, Burp, and Metasploit; (7) OWASP Top 10; and (8) threat identification using threat modeling techniques. Certification in OSCP required.

Company Name: Zoom Video Communications, Inc.

#LI-DNI

We believe that the unique contributions of all Zoomies is the driver of our success. To make sure that our products and culture continue to incorporate everyone's perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. Zoom is proud to be an equal opportunity workplace and is an affirmative action employer. All your information will be kept confidential according to EEO guidelines. 

We welcome people of different backgrounds, experiences, abilities and perspectives including qualified applicants with arrest and conviction records and any qualified applicants requiring reasonable accommodations in accordance with the law. If you need any assistance or accommodations due to a medical condition, or if you need assistance accessing our website or completing the application process, please let us know by emailing us at careers@zoom.us.

At Zoom, we care about our employees, their families, and their well-being. As part of our award-winning workplace culture and commitment to delivering happiness, our benefits program offers a variety of perks, benefits, and options to help employees maintain their physical, mental, emotional, and financial health; support work-life balance; and contribute to their community in meaningful ways. To view our benefits, click here.

Explore Zoom:

Fraudulent Employment Offers

Zoom is aware of scams that involve fake Zoom job listings posted on third-party sites. Responding applicants are contacted primarily over email, InMail and/or chat applications by people impersonating Zoom employees. Eventually a fake offer letter is sent in exchange for personal identification information as part of a fake new-hire screening process.

Please be advised that these offers, communications and impersonations are illegitimate and fraudulent. All communication with Zoom employees come from an “@zoom.us” email address. Zoom job applicants complete an interview process including in-person (on Zoom) meetings and phone calls. Our process also requires you to create an account with our applicant tracking system, Workday. If you have already completed an application, you can access it here. 

Zoom will never ask for your personally identifying information during the interview process or ask you to pay money or purchase equipment. If you have received a message from Zoom that appears suspicious, please contact careers@zoom.us. 

Sign up for job alerts

Find roles that are just the right fit for you, delivered straight to your inbox. The next opportunity you see could become your new career.

Not You?

We have emailed you a code to verify your identity. Please check your spam/junk folder if you don't receive the email in your inbox.

Thank you for signing up for job alerts from Zoom!

Person, Laptop, Pc, Mouse, Hair, Sitting, Female, Table, Woman, Girl