Key Facts

Remote From:

United States

Full time

Senior (5-10 years)

English

Hard Skills

Other Skills

•
Collaboration
•
Analytical Skills
•
Prioritization

Roles & Responsibilities

B.S. or M.S. in Computer Science, Information Security, Engineering or a related field
5+ years in Information Security, including 4+ years in Vulnerability Management and 5+ years in DevOps
Experience performing vulnerability scanning with tools such as Tenable Nessus, Prisma Cloud, Burp Suite, Qualys, or similar
Proficient in scripting (Python, Bash, PowerShell, or similar) to automate remediation and reporting tasks

Requirements:

Conduct vulnerability scans across systems, networks, endpoints, and applications
Validate, prioritize, and drive remediation of identified vulnerabilities
Own vulnerability reporting, including tracking remediation status and risk exposure
Lead and coordinate stakeholder meetings to review findings and remediation plans

Zoom

Information Technology & Services

About Zoom

Zoomies help people stay connected so they can get more done together. We set out on a mission to make video communications frictionless and secure by building the world’s best video product for the enterprise, but we didn’t stop there. With products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinar, we bring innovation to a wide variety of customers, from the conference room to the classroom, from doctor’s offices to financial institutions to government agencies, from global brands to small businesses. We do what we do because of our core value of Care: care for our community, our customers, our company, our teammates, and ourselves. Our global employees help our customers meet happier, communicate better, and create meaningful connections the world over. Zoomies are problem-solvers and self-starters, working hard to get results and moving quickly to design solutions with our customers and users in mind. Here, you’ll work across teams to dig deep into impactful projects that are changing the way people communicate, and find room to grow with opportunities to stretch your skills and advance your career in a diverse, inclusive environment. Learn more about careers at Zoom by visiting our careers site: https://careers.zoom.us/home

Company type: Large

Industry: Information Technology & Services

Founded: 2018

Company size: 5001 - 10000

Website LinkedIn See all jobs →

Job description

Immigration sponsorship is not available for this position

What you can expect

The Security Vulnerability Management Engineer will work closely with Information Security Engineers and cross-functional IT teams to ensure appropriate security controls are in place and that security policies are effectively implemented across the organization.

This role is responsible for operating and maturing the vulnerability management program, leading stakeholder engagements, and providing regular updates to leadership on scanning results, risk posture, and remediation efforts.

About the Team

You will be part of a high-performing, experienced team responsible for maintaining FedRAMP and IL4 compliance for Zoom for Government and Zoom for Defense - our offerings to the U.S. Government. In this role, you will actively scan, monitor, manage, and report on vulnerabilities (CVEs), contribute to monthly POA&M reporting, and analyze and recommend remediation strategies. Your work will directly support maintaining the authorizations required to deliver secure services to U.S. Government customers.

Responsibilities

Conducting vulnerability scans across systems, networks, endpoints, and applications.
Validating, prioritizing, and driving remediation of identified vulnerabilities
Partnering with engineering and IT teams to track and improve patching cadence.
Owning vulnerability reporting, including tracking remediation status and risk exposure.
Maintaining and optimize vulnerability scanning tools and schedules.
Integrating vulnerability management tools with SIEM platforms.
Developing dashboards and metrics to provide visibility into security posture for leadership.
Creating and improving tools, documentation, processes, and techniques to support vulnerability remediation.
Leading and coordinating stakeholder meetings to review findings and remediation plans.

What we’re looking for

Hold a B.S. or M.S. in Computer Science, Information Security, Engineering or related fields.
Have experience working with CI/CD pipelines, containerized environments, and building, testing, and deployment in an IL4 environment.
Demonstrate understanding of FedRAMP CVE guidelines, remediation timelines, and vulnerability frameworks such as CVE and CVSS.
Bring 5+ years of experience in Information Security, including 4+ years in Vulnerability Management, and 5+ years in DevOps.
Able to perform vulnerability scanning using tools such as Tenable Nessus, Prisma Cloud, Burp Suite, and similar platforms (e.g., Qualys, Tenable).
Demonstrate proficiency in scripting (Python, Bash, PowerShell, or similar) to automate remediation and reporting tasks.
Able to apply experience in Infrastructure Security, including OS hardening, and good knowledge of network technologies and protocols.
Utilize experience in application, network, and system security, including intrusion analysis, malware, antivirus, host-based and network forensics, and tools such as JIRA, Confluence, and ServiceNow.

Salary Range or On Target Earnings:

Minimum:

$124 000,00

Maximum:

$271 200,00

In addition to the base salary and/or OTE listed Zoom has a Total Direct Compensation philosophy that takes into consideration; base salary, bonus and equity value.

Note: Starting pay will be based on a number of factors and commensurate with qualifications & experience.

We also have a location based compensation structure; there may be a different range for candidates in this and other locations

At Zoom, we offer a window of at least 5 days for you to apply because we believe in giving you every opportunity. Below is the potential closing date, just in case you want to mark it on your calendar. We look forward to receiving your application!

Anticipated Position Close Date:

03/27/26

Ways of Working
Our structured hybrid approach is centered around our offices and remote work environments. The work style of each role, Hybrid, Remote, or In-Person is indicated in the job description/posting.

Benefits
As part of our award-winning workplace culture and commitment to delivering happiness, our benefits program offers a variety of perks, benefits, and options to help employees maintain their physical, mental, emotional, and financial health; support work-life balance; and contribute to their community in meaningful ways. Click Learn for more information.

About Us
Zoomies help people stay connected so they can get more done together. We set out to build the best collaboration platform for the enterprise, and today help people communicate better with products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinars.
We’re problem-solvers, working at a fast pace to design solutions with our customers and users in mind. Find room to grow with opportunities to stretch your skills and advance your career in a collaborative, growth-focused environment.

Our Commitment

At Zoom, we believe great work happens when people feel supported and empowered. We’re committed to fair hiring practices that ensure every candidate is evaluated based on skills, experience, and potential. If you require an accommodation during the hiring process, let us know—we’re here to support you at every step.

If you need assistance navigating the interview process due to a medical disability, please submit an Accommodations Request Form and someone from our team will reach out soon. This form is solely for applicants who require an accommodation due to a qualifying medical disability. Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed.

#LI-Remote

Ready to apply?

APPLY

Share ·