Senior Cloud (AWS) Security Engineer - Workvivo

What you can expect

This role focuses on Cloud engineering with an emphasis on security. You will safeguard the Workvivo by Zoom platform, including the Web App, AWS infrastructure, and Mobile App, by implementing and maintaining Cloud security controls.

You will need hands-on expertise in AWS and Cloudflare. Responsibilities include building and using Cloud security tools, reviewing configurations, running assessments, and monitoring compliance.

Collaboration is key. You will work with application, product, and infrastructure teams to embed Cloud security best practices throughout the software development lifecycle. You will also guide developers and stakeholders, promoting security awareness across the organization.

About the Team

Workvivo is a digital experience platform dedicated to amplifying workplace culture and fostering employee inclusion, regardless of location. Focused on customer satisfaction, Workvivo enhances employees' working lives across industries globally. As part of Zoom, an intelligent collaboration platform, Workvivo aligns with Zoom's mission to prioritise people, enabling meaningful connections, modern collaboration, and innovation. The Workvivo product & engineering team is a dynamic team developing high-quality features.

Our tech stack includes AWS (Aurora MySQL), Laravel, PHP, GO, React, React Native, Redshift, Redis, and ElasticSearch. You don’t need expertise in everything—we have specialists. Your focus is Cloud security, and over time, you’ll gain familiarity with Laravel, PHP, and GO.

Responsibilities

• Implementing Cloud security controls for the Workvivo platform across AWS, Cloudflare, and OCI infrastructure, leveraging hands-on expertise.
• Defining and reviewing Cloud architecture solutions, conducting risk assessments, and mitigating potential threats.
• Introducing automated Cloud security controls through Infrastructure as Code (IaC) and supporting secure configuration management.
• Performing ongoing Cloud security and configuration assessments to ensure compliance with security standards and best practices.
• Designing, developing, and deploying Cloud security monitoring tools, frameworks, and methodologies.
• Tracking, analyzing, and managing Cloud security controls while providing guidance and support to maintain secure infrastructure.
• Enhancing the software development lifecycle by implementing security controls (SAST, DAST, SCA), contributing to engineering security training, and improving Cloud security across Workvivo and Zoom.
• Staying current on Cloud security practices, compliance requirements, and technologies. Collaborating cross-functionally with Zoom Security teams such as Cloud Compliance, Cloud Infrastructure Protection, and Cloud Security Assurance.

What we’re looking for

• Demonstrate deep expertise in Cloud security technologies, particularly AWS, Cloudflare, and OCI, with hands-on experience implementing Cloud security controls.

• Serve as an SME in AWS security services including WAF, WAF Manager, AWS Shield, AWS Identity Center, GuardDuty, and IAM. Provide expertise in Cloudflare tools such as WAF, DDoS protection, Cloudflare One, and Cloudflare WARP.

• Create Cloud architecture diagrams focused on the security control plane and critically evaluate Cloud security controls.

• Automate Cloud security controls via Infrastructure as Code (Terraform and/or Golang).

• Apply expert-level knowledge of Cloud security best practices, frameworks, and infrastructure-as-code methodologies to implement comprehensive Cloud security controls beyond basic configurations.

• Analyze security assessment reports from external partners and customers, stay current with the latest Cloud security technologies, and provide actionable recommendations.

• Communicate complex Cloud security concepts clearly to both technical and non-technical audiences through strong written and verbal skills.

• Demonstrate curiosity, focus, and the ability to critically evaluate, discuss, and continuously improve Cloud security controls and practices.

Ways of Working
Our structured hybrid approach is centered around our offices and remote work environments. The work style of each role, Hybrid, Remote, or In-Person is indicated in the job description/posting.

Benefits
As part of our award-winning workplace culture and commitment to delivering happiness, our benefits program offers a variety of perks, benefits, and options to help employees maintain their physical, mental, emotional, and financial health; support work-life balance; and contribute to their community in meaningful ways. Click Learn for more information.

About Us
Zoomies help people stay connected so they can get more done together. We set out to build the best collaboration platform for the enterprise, and today help people communicate better with products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinars.
We’re problem-solvers, working at a fast pace to design solutions with our customers and users in mind. Find room to grow with opportunities to stretch your skills and advance your career in a collaborative, growth-focused environment.

Our Commitment​

At Zoom, we believe great work happens when people feel supported and empowered. We’re committed to fair hiring practices that ensure every candidate is evaluated based on skills, experience, and potential. If you require an accommodation during the hiring process, let us know—we’re here to support you at every step.

If you need assistance navigating the interview process due to a medical disability, please submit an Accommodations Request Form and someone from our team will reach out soon. This form is solely for applicants who require an accommodation due to a qualifying medical disability. Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed.