Sr. Business Application Security Analyst
Zoomies help the world connect — and deliver happiness while doing it. We set out to build the best video conferencing product for the enterprise, and today help people communicate better with products like Zoom Phone, Zoom Rooms, Zoom Video Webinars, Zoom Apps, and OnZoom.
We’re problem-solvers and self-starters, working at a fast pace to design solutions with our customers and users in mind. Here, you’ll work across teams to dig deep into impactful projects that are changing the way people communicate, and enjoy opportunities to advance your career in a diverse, inclusive environment.
Zoom is seeking a hands-on Sr. Security Analyst to join our enterprise security team. As a hands-on security analyst you will work with the various security, IT, and business teams on identifying owners, conducting assessments, and remediating identifying risks. You will have worked with various frameworks including NIST CyberSecurity Framework, ISO, and SOC2.
You have worked on enterprise business applications and have been a hands-on business systems analyst. You will need to have a security minded approach towards enterprise systems and understand security best practices including OWASP top 10, CIS benchmarks, NIST, and ISO frameworks. You have worked in both SaaS and on-premise enterprise systems and understand the threats and vulnerabilities with each model.
Responsibilities:
Collaborate with business owners to identify application owners
Determine the type of data used in the various business applications
Identify and assess security and privacy risks
Identify sensitive data recommend encryption and/or mitigating controls
Work with vendors to identify any vulnerabilities and work with IT team on updates
Recommend security improvements and best practices for enterprise applications
Review current processes for user account provisioning and de-provisioning and determine risks
Hands-on experience with enterprise applications such as Salesforce, Workday, Netsuite, or other enterprise applications
Requirements:
At least 3 years of experience as a business systems security analyst
Some hands-on experience working with enterprise business applications
Hands-on experience working with both enterprise on-prem and SaaS applications
Prior experience conducting risk assessments and reviews
Understanding of on-premise client/server and cloud architecture, microservices, and containers
Bachelor's degree or experience with Master's degree in Business, Systems, Computer Science, or equivalent
Preferred Qualifications:
Enterprise application certifications
Master’s degree in Computer Science, Information Systems, Information Assurance, or related field
Experience working in video communications, technology, or financial services industry