Staff Offensive Security Engineer (Backend/Client)

Sorry, this job was removed at 11:26 a.m. (MST) on Thursday, July 28, 2022
Find out who’s hiring remotely
See all Remote jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

Work Styles at Zoom
In most cases, you will have the opportunity to choose your preferred working location from the following options when you join Zoom: in-person, hybrid or remote. Visit this page for more information about Zoom's Workstyles .
About Us
Zoomies help people stay connected so they can get more done together. We set out to build the best video product for the enterprise, and today help people communicate better with products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinar.
We're problem-solvers, working at a fast pace to design solutions with our customers and users in mind. Here, you'll work across teams to deliver impactful projects that are changing the way people communicate and enjoy opportunities to advance your career in a diverse, inclusive environment.
Offensive Security Engineer (Client/Backend)
REMOTE / PRODUCT SECURITY / FULL-TIME
Zoom is looking for a Senior or Staff Offensive Security Engineer to join our Offensive Security team. While you will be involved in anything from high-level threat analysis and discovering vulnerabilities to providing guidance on vulnerability remediation, a large portion of your time will be self guided. You will act as an in-house security researcher attacking the Zoom ecosystem as well as contributing to team projects with predefined targets.
Ultimately, we're looking to find the highest-impact issues, and to prioritize remediation as part of a collaborative effort to create the most secure product.
Responsibilities:

  • You will perform security research into Zoom products and features, including contributing to custom tool development (such as fuzzers, proof of concepts, or full exploits) to attack said products and features.
  • You will conduct assigned and self-guided security assessments of Zoom's applications and dependencies.
  • You will assist with high priority issues (i.e. investigating a specific vulnerability to better understand it, fix validation, helping teams understand the details of a vulnerability, and helping developers fix critical security issues).
  • You will communicate discovered issues, how to exploit them, and how to fix them for both technical and nontechnical audiences.


Requirements:

  • 5+ years of experience performing security assessments, penetration tests, and code reviews on C/C++ (Objective-C, Swift, Java, and Python a plus).
  • Proficiency in one or more programming languages, and can both read and understand code written by others well enough to break it.
  • Familiarity with intercepting and modifying traffic using your tool of choice (mitmproxy, proxyman, Charles Proxy, Burp Suite, etc)
  • Security-specific knowledge for one or more OS (Windows, macOS, Linux).
  • Familiarity with building and instrumenting applications (such as using frida-dynamic instrumentation).
  • Ability to find vulnerabilities and create proof of concepts without being able to fully instrument a target nor attack it very aggressively.


Nice to haves:

  • Knowledge of Erlang, Lua, xmpp, or SIP
  • Knowledge of network packet handling/traffic routing
  • Proficiency with IDA Pro, Ghidra, or Binary Ninja
  • Prior development experience
  • Familiar with advanced traffic interception setups in which the the client and the server communicate simultaneously over a variety of protocols that transport plaintext (e.g. HTTP) as well as binary encoded (e.g. protobuf) messages over secure channels
  • Familiarity with CodeQL
  • Familiarity with fuzzing (AFL++, Libfuzzer, custom, etc.)
  • Knowledge of reverse engineering Linux binaries without source code
  • Experience debugging and automating detection of error states and causes
  • Ability to quickly pick up programming languages for code review


#LI-Remote
We believe that the unique contributions of all Zoomies is the driver of our success. To make sure that our products and culture continue to incorporate everyone's perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. Zoom is proud to be an equal opportunity workplace and is an affirmative action employer. All your information will be kept confidential according to EEO guidelines.
We welcome people of different backgrounds, experiences, abilities and perspectives including qualified applicants with arrest and conviction records and any qualified applicants requiring reasonable accommodations in accordance with the law. If you need any assistance or accommodations due to a medical condition, or if you need assistance accessing our website or completing the application process, please let us know by emailing us at [email protected] .
Colorado Salary Range or On Target Earnings:
Minimum:
$145,260.00 USD
Maximum :
$268,740.00 USD
In addition to the base salary and/or OTE listed, Zoom has a Total Direct Compensation philosophy that takes into consideration base salary, bonus and equity value. Information about Zoom's benefits is here . Note: Starting pay will be based on a number of factors and commensurate with qualifications & experience. We also have a location based compensation structure; there may be a different range for candidates in other locations.
Zoom requires all U.S. employees who will work in person at a Zoom office, attend in-person Zoom meetings or have in-person customer meetings to be fully vaccinated. Zoom will consider requests for reasonable accommodations for religious or medical reasons as required under applicable law.
Explore Zoom:

  • Hear from our leadership team
  • Browse Awards and Employee Reviews on Comparably
  • Visit our Blog
  • Zoom with us!
  • Find us on social at the links below and on Instagram
  • View more jobs, sign up for job alerts and join our talent community. Visit the Zoom careers site .


#LI-Remote

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
  • People Operations
    • C#Languages
    • C++Languages
    • JavaLanguages
    • JavascriptLanguages
    • PerlLanguages
    • PythonLanguages
    • RubyLanguages
    • ScalaLanguages
    • SqlLanguages
    • jQueryLibraries
    • ReactLibraries
    • ReduxLibraries
    • DjangoFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • SpringFrameworks
    • CassandraDatabases
    • HiveDatabases
    • MongoDBDatabases
    • MySQLDatabases
    • OracleDatabases
    • PostgreSQLDatabases
    • AWSDatabases
    • AWS (Amazon Web Services)Services
    • GitHubServices
    • GitLabServices
    • New RelicServices
    • Google AnalyticsAnalytics
    • TableauAnalytics
    • FigmaDesign
    • SalesforceCRM
    • ClariCRM
    • OutreachEmail
    • KnowledgeTreeEmail
    • ZoomCollaboration
    • We use Zoom for Chat, Meetings, Webinars, Phone and more!Collaboration
    • AsanaProject Management

Location

We are located North of the DTC area. Just a short drive away you can find trendy restaurants, bars, and the Cherry Creek Reservoir!

An Insider's view of Zoom Video Communications

What’s the vibe like in the office?

This office is fun, driven, smart, and happy. We’re proud of each other, our product, and how we work hard to make our customers happy and cared for.

Michael

Developer Advocate

What projects are you most excited about?

Right now, I’m most excited about optimizing our enablement programs at Zoom. As our team grows, it’s vital that we scale our programs and processes thoughtfully to ensure every Zoomie feels comfortable, confident, and equipped for success in their role. Watching individuals evolve as Zoom experts is both fun and fulfilling!

Ashley

Customer Success Operations Manager

How has your career grown since starting at the company?

In my year and a half at Zoom, I’ve had the privilege of moving from a BDR, to a Team Lead, to an Account Executive. Through each step, my manager was transparent, approachable & committed to my own professional growth. Zoom recognizes that not all career paths are the same, and each manager takes an individual approach to identify what drives you.

Nicole

Small/Medium Business Account Executive

How do you empower your team to be more creative?

One of the things I love about Zoom is the trust they have in me that allows me to be creative. Being a leader at Zoom I'm able to watch my team collaborate and teach each other. For me that's creativity. People with different ideas and experiences working together with one purpose. By empowering people to be creative you open the door to success.

Tuckett

SMB VAST Sales Manager

What makes someone successful on your team?

Teamwork is in our day to day, not only with other BDRs, where each can provide different points of view in a situation, but also with the Account Executives that are an indispensable guide to succeed when looking for new clients.

Sandra

Business Development Rep.

What are Zoom Video Communications Perks + Benefits

Zoom Video Communications Benefits Overview

Zoom offers a wide range of benefits and perks to ensure our employees feel supported, enriched and cared for including free books, a wellness credit of $300 per month, and a multitude of Zoom-sponsored activities and celebrations to help you Work Happy.

To deliver this happiness to our employees, Zoom employs above-market and progressive compensation programs. At Zoom, we believe this is achieved through analyzing total direct compensation holistically. We offer all employees equity, allowing them to become owners who are vested in and benefit from the long-term success of the company.

Culture
Volunteer in local community
Partners with nonprofits
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Flexible work schedule
Remote work program
Diversity
Dedicated diversity and inclusion staff
Diversity manifesto
Diversity employee resource groups
Employee Resource Groups include Veterans and Women@Zoom with more on the way!
Hiring practices that promote diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Wellness programs
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
Zoom offers a 401(k) plan with automatic enrollment and a separate deferral percentage for bonuses. We match 50% of the first 3% of 401(k) contributions.
Company equity
Employee stock purchase plan
Charitable contribution matching
Child Care & Parental Leave Benefits
Childcare benefits
Generous parental leave
Family medical leave
Adoption Assistance
Return-to-work program post parental leave
Company sponsored family events
Vacation & Time Off Benefits
Unlimited vacation policy
Paid volunteer time
Paid holidays
Paid sick days
Office Perks
Commuter benefits
Company-sponsored outings
Free daily meals
Free snacks and drinks
Some meals provided
Company-sponsored happy hours
Onsite office parking
Recreational clubs
Relocation assistance
Home-office stipend for remote employees
Professional Development Benefits
Job training & conferences
Lunch and learns
Promote from within
Mentorship program
Online course subscriptions available

Additional Perks + Benefits

Zoom listens to its employees. We’re growing and want our employees to be as happy as possible. One way we deliver this happiness is by continually building our benefits programs to best fit the wants and need of our employees. We also hold monthly Zoom Meetings with the whole company and our CEO Eric Yuan himself addresses questions or concerns submitted by employees. If you want to feel heard and appreciated join us in our ever evolving company and product!

More Jobs at Zoom Video Communications

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about Zoom Video CommunicationsFind similar jobs like this