Zoomies help the world connect — and deliver happiness while doing it. We set out to build the best video conferencing product for the enterprise, and today help people communicate better with products like Zoom Phone, Zoom Rooms, Zoom Video Webinars, Zoom Apps, and OnZoom.

We’re problem-solvers and self-starters, working at a fast pace to design solutions with our customers and users in mind. Here, you’ll work across teams to dig deep into impactful projects that are changing the way people communicate, and enjoy opportunities to advance your career in a diverse, inclusive environment. 

Zoom is seeking a hands-on Sr. Security Analyst to join our enterprise security team.  As a hands-on security analyst you will work with the various security, IT, and business teams on identifying owners, conducting assessments, and remediating identifying risks.  You will have worked with various frameworks including NIST CyberSecurity Framework, ISO, and SOC2.  

You have worked on enterprise business applications and have been a hands-on business systems analyst.  You will need to have a security minded approach towards enterprise systems and understand security best practices including OWASP top 10, CIS benchmarks, NIST, and ISO frameworks.  You have worked in both SaaS and on-premise enterprise systems and understand the threats and vulnerabilities with each model. 

Responsibilities:

• Collaborate with business owners to identify application owners

• Determine the type of data used in the various business applications

• Identify and assess security and privacy risks 

• Identify sensitive data recommend encryption and/or mitigating controls

• Work with vendors to identify any vulnerabilities and work with IT team on updates 

• Recommend security improvements and best practices for enterprise applications

• Review current processes for user account provisioning and de-provisioning and determine risks

• Hands-on experience with enterprise applications such as Salesforce, Workday, Netsuite, or other enterprise applications

Requirements:

• At least 3 years of experience as a business systems security analyst

• Some hands-on experience working with enterprise business applications

• Hands-on experience working with both enterprise on-prem and SaaS applications

• Prior experience conducting risk assessments and reviews 

• Understanding of on-premise client/server and cloud architecture, microservices, and containers

• Bachelor's degree or experience with Master's degree in Business, Systems, Computer Science,  or equivalent

Preferred Qualifications: 

• Enterprise application certifications 

• Master’s degree in Computer Science, Information Systems, Information Assurance, or related field

• Experience working in video communications, technology, or financial services industry