Senior Security Engineer

What You Can Expect: As a Senior Security Engineer, you will play a pivotal role in the security design and validation of our innovative products and services. We are looking for a candidate who brings extensive technical skills and practical experience in creating secure systems. In this position, you'll work closely with engineering teams to build, implement, and validate secure solutions, serving as a valued security advisor in guiding architecture and reviewing implementations, especially for new features and security enhancements. This is a fantastic opportunity to work with advanced cloud and security technologies while making a significant impact on Zoom's platform. About the Team: The Security Architecture team is dedicated to ensuring the security of Zoom's product releases and deployments. We collaborate with a wide array of engineering, compliance, and DevOps teams across the organization to achieve our security goals and ensure compliance with established SLAs. Key Responsibilities: Act as a security subject-matter expert, guiding engineering teams in creating secure systems from end-to-end. Conduct thorough threat modeling, architecture reviews, security code reviews, security assessments, and security testing, covering web applications, native applications, web services, cloud-based services, and infrastructure assessments. Perform security reviews of cloud infrastructure, primarily focusing on AWS permissions and configurations in components like IAM and S3. Carry out detailed security reviews for new Zoom features, identifying vulnerabilities such as those in the OWASP Top Ten and other common threats, including RCE risks. Review Java or Python code and verify security posture through manual and automation testing using tools like Burp Suite and Coverity. Identify existing gaps in cloud security architecture and configurations, and recommend improvements in authentication, authorization, network segmentation, container setups, and bastion hosts. Provide hands-on security training and share best practices for secure coding with engineering teams. What We Are Looking For: A Bachelor's degree in Computer Science, Information Science, Cyber Security, Computer or Electrical Engineering (or a related field), along with 5+ years of experience in security. Significant experience in security testing across various environments, focusing on web applications, native applications, distributed systems, and AWS cloud infrastructure. A solid understanding of software security architecture, threat modeling, secure code review, cryptography, and the Software Development Life Cycle (SDLC). Ability to clearly communicate application security best practices and effective mitigations, especially for SDLC exceptions. Hands-on security experience with AWS and familiarity with common service components. Ability to identify security gaps in designs and configuration issues in individual components. In-depth knowledge of network-based, system-level, and application-layer attacks along with mitigation strategies. Strong understanding of technology and security including network and application security standards (OWASP), infrastructure hardening, security baselines, web server security, database security, and cryptography. Experience in development using programming languages such as Java is essential. Salary Range: Minimum: $98,900. Maximum: $228,700. Note: Starting pay will depend on various factors, including qualifications and experience. Zoom offers a structured hybrid working approach that centers on offices and remote work environments. The work style for each role is indicated in the job description. Benefits: We take pride in our commitment to our employees well-being with a benefits program designed to support physical, mental, emotional, and financial health, promote work-life balance, and encourage community contribution. About Us: At Zoom, we help people connect and collaborate more effectively. We are dedicated to building the best collaboration platform for enterprises, providing solutions such as Zoom Contact Center, Zoom Phone, and Zoom Webinars. Join us in a fast-paced, collaborative environment with opportunities for professional growth. Our Commitment: Zoom is an equal opportunity employer and is committed to fair hiring practices, ensuring all candidates are evaluated based on skills and potential. We support applicants needing accommodations during the hiring process.

Created: 2026-03-11