hero

We invest in people who change the way the world works.

Interested in working with them?
64
companies
914
Jobs

Senior Security Engineer

Zoom

Zoom

Software Engineering
Singapore
Posted on Thursday, September 28, 2023

Responsibilities

  • Validate new security features and updates into existing products and ensures the security of products is maintained throughout the product life cycle

  • Evaluate and grow the security posture of web applications, web services, native and mobile applications

  • Implement standards through your respective role such as OWASP ASVS 4.0

  • Identify potential vulnerabilities (OWASP top 10, critical/high and common issues in NVD, etc.) and methods of improvement in security design or implementation

  • Communicate issues to the application owners, provide meaningful remediation recommendations, and validate that they have been resolved

  • Triage and validate security vulnerabilities found or reported, and relative to your role serve as a Subject Matter Expert in AppSec to the engineering team in identifying mitigation solutions

  • Create security test documents that cover security feature testing, fuzzing, application penetration testing, and regression, etc

  • As a Penetration Tester you will manually test web applications, web services, native and mobile applications while measuring coverage

Requirements:

  • A minimum of 8 years of related experience with a bachelor's degree; or 5 years and a master's degree

  • Knowledge of the Security Development Lifecycle (SDLC)

  • Experience in threat identification using threat modeling techniques

  • Experience with one or more of security tools such as Kali Linux, Burp, Metasploit, Checkmarx, WebInspect, Peach Fuzzer, libFuzzer, AFL, etc.

  • Deep technical understanding of security concepts and vulnerabilities, such as OWASP Top 10, as relevant to each role

  • Strong development experience in one or more of the programming languages and platforms such as Java, JavaScript, Python, C/C++, Objective C, iOS, Android, Window, Mac, as relevant to each role

  • Experience in security for releasing software for Web, Mobile, API, SaaS software in public cloud, or on hardware appliances is required relative to each role

  • Experience in manual application security testing, creating attack plans, and reporting is required for Penetration Testing

We believe that the unique contributions of all Zoomies is the driver of our success. To make sure that our products and culture continue to incorporate everyone's perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. Zoom is proud to be an equal opportunity workplace and is an affirmative action employer. All your information will be kept confidential according to EEO guidelines.

At Zoom, we care about our employees, their families, and their well-being. As part of our award-winning workplace culture and commitment to delivering happiness, our benefits program offers a variety of perks, benefits, and options to help employees maintain their physical, mental, emotional, and financial health; support work-life balance; and contribute to their community in meaningful ways. To view our benefits, click here.

About Us

Zoomies help people stay connected so they can get more done together. We set out to build the best video product for the enterprise, and today help people communicate better with products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinars.

We’re problem-solvers, working at a fast pace to design solutions with our customers and users in mind. Here, you’ll work across teams to deliver impactful projects that are changing the way people communicate and enjoy opportunities to advance your career in a diverse, inclusive environment.

Explore Zoom: