Senior Security Engineer
Validate new security features and updates into existing products and ensures the security of products is maintained throughout the product life cycle
Evaluate and grow the security posture of web applications, web services, native and mobile applications
Implement standards through your respective role such as OWASP ASVS 4.0
Identify potential vulnerabilities (OWASP top 10, critical/high and common issues in NVD, etc.) and methods of improvement in security design or implementation
Communicate issues to the application owners, provide meaningful remediation recommendations, and validate that they have been resolved
Triage and validate security vulnerabilities found or reported, and relative to your role serve as a Subject Matter Expert in AppSec to the engineering team in identifying mitigation solutions
Create security test documents that cover security feature testing, fuzzing, application penetration testing, and regression, etc
As a Penetration Tester you will manually test web applications, web services, native and mobile applications while measuring coverage
A minimum of 8 years of related experience with a bachelor's degree; or 5 years and a master's degree
Knowledge of the Security Development Lifecycle (SDLC)
Experience in threat identification using threat modeling techniques
Experience with one or more of security tools such as Kali Linux, Burp, Metasploit, Checkmarx, WebInspect, Peach Fuzzer, libFuzzer, AFL, etc.
Deep technical understanding of security concepts and vulnerabilities, such as OWASP Top 10, as relevant to each role
Experience in security for releasing software for Web, Mobile, API, SaaS software in public cloud, or on hardware appliances is required relative to each role
Experience in manual application security testing, creating attack plans, and reporting is required for Penetration Testing
We believe that the unique contributions of all Zoomies is the driver of our success. To make sure that our products and culture continue to incorporate everyone's perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. Zoom is proud to be an equal opportunity workplace and is an affirmative action employer. All your information will be kept confidential according to EEO guidelines.
At Zoom, we care about our employees, their families, and their well-being. As part of our award-winning workplace culture and commitment to delivering happiness, our benefits program offers a variety of perks, benefits, and options to help employees maintain their physical, mental, emotional, and financial health; support work-life balance; and contribute to their community in meaningful ways. To view our benefits, click here.
Zoomies help people stay connected so they can get more done together. We set out to build the best video product for the enterprise, and today help people communicate better with products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinars.
We’re problem-solvers, working at a fast pace to design solutions with our customers and users in mind. Here, you’ll work across teams to deliver impactful projects that are changing the way people communicate and enjoy opportunities to advance your career in a diverse, inclusive environment.