Cyber Security Engineer

What You Can Expect

The Cyber Security Engineer plays a vital role in ensuring the security of our products and services through expert design and thorough reviews. We are looking for a candidate with extensive technical expertise and practical experience in comprehensive product security. In this position, you will work closely with engineering teams to create, implement, and validate secure solutions. You will act as a trusted security advisor, influencing architecture and evaluating implementations, especially for new features or security enhancements. This is an exciting opportunity to engage with advanced cloud and security technologies while making a significant impact on Zoom’s platform.

About the Team

The Security Architecture team is dedicated to ensuring that Zoom releases and deploys secure products. We collaborate with various engineering, compliance, and DevOps teams throughout the organization to meet our security objectives and maintain compliance with established Service Level Agreements (SLAs).

Responsibilities

• Serve as the security subject-matter expert, guiding engineering teams in secure system design and implementation.
• Conduct threat modeling, architecture reviews, security code reviews, security assessments, and security testing for web applications, native applications, web services, cloud services, and infrastructure.
• Perform security reviews of cloud infrastructure, focusing primarily on AWS permissions and configurations, such as IAM and S3 components.
• Conduct in-depth security reviews of new Zoom features and functionalities, identifying vulnerabilities like those listed in the OWASP Top Ten, common issues from the National Vulnerability Database (NVD), and risks such as Remote Code Execution (RCE).
• Review Java or Python code and verify security posture through manual and automated testing using tools like Burp Suite and Coverity.
• Identify gaps in existing cloud security architecture and configuration, providing recommendations for enhancements (authentication, authorization, network segmentation, container configuration, bastion host setup, etc.).
• Deliver hands-on security training and share secure coding best practices with engineering teams.

What We’re Looking For

• A Bachelor's degree in Computer Science, Information Science, Cyber Security, Computer Engineering, Electrical Engineering, or a related field, along with 5+ years of security experience.
• Extensive experience in security testing within various environments, including assessing the security posture of web applications, native applications, distributed systems, and cloud infrastructure, with a focus on securing web services and core platform services.
• A solid understanding of software security architecture, design, threat modeling, secure code review, cryptography, and the Software Development Life Cycle (SDLC).
• Strong communication skills to convey best practices and effective mitigation strategies for application security.
• Hands-on experience with AWS and its common service components.
• Ability to pinpoint security gaps in design and configuration issues in individual components.
• In-depth knowledge of network-based, system-level, and application-layer attacks and mitigation methods.
• Good knowledge of technology and security topics including network and application security (OWASP), infrastructure hardening, security baselines, web server, database security, and applied cryptography.
• Development experience in one or more programming languages such as Java is required.

Salary Range or On-Target Earnings:

Minimum: $98,900.00

Maximum: $228,700.00

In addition to the salary and/or OTE listed, Zoom has a Total Direct Compensation philosophy that considers base salary, bonus, and equity value.

Note: Starting pay will be based on various factors, commensurate with qualifications and experience.

Zoom also has a location-based compensation structure; candidates in different locations may have different salary ranges.

At Zoom, we offer a minimum of 5 days for you to apply, as we want to give you every opportunity. The anticipated closing date for this position is 05/18/26.

Benefits

As part of our inviting workplace culture and our commitment to delivering happiness, our benefits program includes a variety of perks and options aimed at supporting employees’ physical, mental, emotional, and financial health, promoting work-life balance, and encouraging impactful community contributions.

We believe that great work occurs when individuals feel supported and empowered. We are committed to fair hiring practices that evaluate every candidate based on skills, experience, and potential. If you require accommodation during the hiring process, please let us know—we are here to help you every step of the way.

If you need assistance navigating the interview process due to a medical disability, please submit an Accommodations Request Form, and someone from our team will reach out soon. This form is for applicants requiring accommodations due to a qualifying medical disability. Non-accommodation-related requests, such as application follow-ups, will not be addressed.

Our interviews are supported by a tool that ensures a consistent and thoughtful experience, which may include recordings. Please refer to our candidate privacy statement for more information on how we use your data.

We value the unique contributions of all employees as the driver of our success. We do not discriminate based on race, religion, national origin, gender identity or expression, sexual orientation, age, marital status, veteran status, or disability status. Zoom is proud to be an equal-opportunity workplace and an affirmative action employer. All information will be kept confidential according to EEO guidelines.