Zuora is hiring a
Security Engineer

Summary

Join Zuora's infrastructure security program as a Senior Security Engineer and shape the security posture of our organization by designing, implementing, and maintaining robust security solutions across our complex infrastructure.

Requirements

• Bachelor's degree in Computer Science or a related field. Advanced degree preferred
• Minimum of 10 years of progressive experience in Security Operations
• At least 3-5 years of hands-on experience with AWS and Azure cloud security, including Infrastructure-as-Code software and tooling
• Demonstrated experience working with infrastructure that contains containerized applications (EKS, ECS, etc.)
• Demonstrated experience contributing to technical and procedural documentation and policies
• Demonstrated experience in handling security incidents and conducting thorough root cause analysis
• Proven track record in designing, implementing, and managing security controls for networks and endpoints
• Experience in Infrastructure Vulnerability Management
• Experience in applying Agile methodologies to security projects and initiatives
• In-depth understanding of security fundamentals, including system internals, attack surface reduction, and cryptographic protocols
• Proficiency in scripting languages such as Python, PowerShell, or Perl for automation
• Hands-on experience with industry-standard solutions including SIEM, SOAR, CSPM, DSPM, CDR, CWPP, etc
• Strong knowledge of cloud security technologies, including IAM, encryption, and key management, AWS GuardDuty, WAF, etc
• Familiarity with web application security threats (e.g., OWASP Top 10) and mitigation strategies
• Proficiency in Linux systems administration and troubleshooting

Responsibilities

• Architect and implement automated solutions to fortify our AWS Cloud infrastructure, enhancing efficiency and reducing risk
• Provide technical leadership by designing and implementing security controls for both infrastructure and applications
• Collaborate effectively with cross-functional teams to gather requirements, design, and implement effective security measures
• Identify emerging threats through continuous monitoring, penetration testing, vulnerability assessments, and log analysis
• Develop and grow with a high-performing security team, sharing your expertise and mentoring colleagues
• Lead and participate in on-call rotations to ensure 24/7 security coverage and timely incident response
• Drive significant improvements in security posture by reducing vulnerabilities, enhancing threat detection, and accelerating incident response times
• Lead the development and implementation of innovative security solutions that leverage automation and emerging technologies
• Contribute to a culture of security excellence by mentoring team members and fostering collaboration across the organization

Benefits

• Competitive compensation
• Corporate bonus program
• Performance rewards
• Company equity
• Retirement programs
• Medical insurance
• Generous, flexible time off
• Paid holidays
• Wellness days
• 6 months fully paid parental leave
• Learning & Development stipend
• Opportunities to volunteer and give back, including charitable donation match
• Free resources and support for your mental wellbeing