Zoom is seeking a hands-on Security Operations Engineering professional to lead our cyber defense program. In this role your mission will be to defend Zoom’s platform and enterprise IT systems, including security intelligence, threat hunting, and advanced incident response functions. You will closely collaborate with many other teams within Zoom, as well as external customer security teams to actively defend Zoom’s assets and the security of our customers. 

This leadership role is to support Zoom’s growing Detection and Response team. You will lead day-to-day operations to Protect against, Detect, and Respond to threats to Zoom’s reputation, customers, and Information Technology. This role is a highly technical role that leads the operational response to security events and incidents as well as providing a point of escalation. You will be deeply involved in the planning and execution of projects involving the SOC. You will play a key role in defending Zoom’s network and intellectual properties as you “lead from the front”.

Who You are: You are either a security leader looking for your next challenge or an experienced security professional looking to take your career to the next level of responsibility. You enjoy working closely with other team members to solve complex problems while continuing to hone your own skills. You have the ability and drive to see a project to its completion while making course corrections along the way. You are capable of handling the most challenging security alerts and incidents and are comfortable delegating tasks to others in the heat of an incident. You are not comfortable with the status quo and seek innovative solutions to automate repetitive tasks. You are comfortable with both on-prem and cloud native security operations. You desire to build up other security professionals and don’t shy away from teachable moments.

What you will do:

• Drive operational excellence of a geographically dispersed Security Operations team

• Serve as the first escalation point in the incident response process

• Assist with selecting, building, and implementing tools to automate security monitoring and incident response tasks

• Develop innovative and cutting-edge detection content aligned with ATT&CK, Cyber Kill Chain, and various other cyber security frameworks

• Define and enforce service level objectives to ensure the 

• Partner with the Head of Detection and Response to define and produce actionable, value demonstrating metrics for the team and key business stakeholders

• Work with key stakeholders to identify, respond to, and remediate information security issues

• Develop junior members of the team through coaching and mentoring

• Contribute ideas and solve problems as part of a fast-paced, growing, and evolving team

 What you will need:

• Bachelor’s in Computer Science, Information Security, Engineering, or 5+ years of experience in Information security

• Previous experience leading a team or progressive growth in responsibilities in a SOC environment

• Previous experience in a SOC, Hunt Team, or Incident Response Team

• Experience with SIEM and SOAR

• Experience building and tuning detection capabilities

• Ability to mentor junior team members

• Passion for security and solving tomorrow’s problems

What will make you stand out:

• Cloud experience (AWS, OCI, Azure, GCP)

• Relevant certifications (GCIA,GCIH, GCFA, GCFE, etc.) are great but experience is key

• Demonstrated ability to transform and shape teams

• Scripting or programming experience (Python, PowerShell, Bash)

• DFIR subject matter expertise

• Previous red/purple team experience (practical or lab based)

• Previous threat hunting experience

• Ability to automate tasks and code solutions to repetitive problems

Ensuring a diverse and inclusive workplace where we learn from each other is core to Zoom’s values. We welcome people of different backgrounds, experiences, abilities and perspectives including qualified applicants with arrest and conviction records as well as any qualified applicants requiring reasonable accommodations in accordance with the law.

We believe that the unique contributions of all Zoomies is the driver of our success. To make sure that our products and culture continue to incorporate everyone's perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status.

#LI-Remote 

Ensuring a diverse and inclusive workplace where we learn from each other is core to Zoom’s values. We welcome people of different backgrounds, experiences, abilities and perspectives including qualified applicants with arrest and conviction records as well as any qualified applicants requiring reasonable accommodations in accordance with the law.

We believe that the unique contributions of all Zoomies is the driver of our success. To make sure that our products and culture continue to incorporate everyone's perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status.

All your information will be kept confidential according to EEO guidelines.

Explore Zoom:

• Hear from our leadership team

• Browse Awards and Employee Reviews on Comparably

• Visit our Blog

• Zoom with us!

• Find us on social at the links below and on Instagram