Manager, Security Assurance

Sorry, this job was removed at 5:02 a.m. (PST) on Friday, August 20, 2021
Find out who’s hiring remotely
See all Remote jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

JOB DESCRIPTION

The Security Manager is responsible for working across internal stakeholders and cloud operations teams to drive key aspects of continuous monitoring requirements.

Responsibilities include:

● Lead small team of cloud security assurance engineers, managing objectives and priorities.

● Reporting on compliance assurance from a security lens to upper management

● Assure team carries out its activities across cross functional teams in an unbiased neutral party with ability to call “balls and strikes” in a diplomatic fashion

● Coordinate with internal stakeholder operations teams to demonstrate the

implementation of security compliance control implementations for technical,

management, and operational requirements

● Perform vulnerability and compliance scanning, analyze results, provide assessments and reviews

● Audit security control to ensure compliance with cloud requirements and governance models

● Support the development of technical material, operational processes, security policies, and other core documents

● Manage compliance metrics to SOC2, ISO, FedRAMP and DOD standards

Experience, Skills and competencies

Five or more years experience in:

● Skilled in aligning cloud security to multiple compliance domains (NIST based)

● Strong Linux skills (RHEL preferred)

● Experience working with of DoD STIG’d systems

● Experience on NIST SP 800-53 Series, FedRAMP and DoD cloud systems

● Strong vulnerability scanning tool skills

● Skilled in assuring all assets are under a proper security regiment

● Comprehension of CVE/CVSS scoring methods and knowledge of asset categorization to allow for proper risk alignment based on assets role within the cloud platform

● Experience using a full governance risk and compliance platform (ServiceNow preferred)

● Ability to independently review security teams work and make remediation's / recommendations for improvements from a compliance perspective

● Experience with incident response work flows and ability to audit proper logging and alerting is in place.

● Experience working in AWS environments is a plus

● Experience with the production and/or editing of technical drawings using MS Visio or similar design tools

● Experience having written technical documentation related to FIPS 199, NIST SP 800-37, NIST SP 800-53 REV 4, and continuous monitoring (Preferably in the form of a System Security Plan (SSP))

● POA&M collaboration with internal compliance team; understanding of Third-party

Assessment Organizations (3PAO) audit request and proven ability to provide necessary 3PAO evidence requests

● Experience collaborating with cloud compliance and operation teams

● Use of Nessus and Burp Suite automated tools to pinpoint vulnerabilities and reduce time-consuming tasks

General skills include:

● Demonstrate strong verbal and written communication skills as well as strong analytical and problem-solving abilities

● Excellent English language, grammar, and spelling skills for writing, editing, and proofreading

● Ability to work independently or as a member of a team on various tasks

● Skilled at organizing and translating information into clear written documentation and articulating complex concepts and processes in writing

● Proven ability to effectively research subject matter

● Experience working in a collaborative environment

● Ability to work well under tight deadlines and effectively interact with a wide range of people

Industry-specific requirements

Knowledge, experience and subject matter expertise in the following:

● FedRAMP (Federal Risk Authorization Management Program)

● NIST SP 800-53 Rev 4

● NIST SP 800-37

● FISMA (Federal Information Systems Management Act)

● NIST RMF (Risk Management Framework)

● Supporting Systems Security Assessment and Authorization (SA&A) for Federal Agencies

● NIST FIPS 199, Data Classification

Education

● Bachelor degree in a relevant field (e. g., Cybersecurity, Information Security, Information Assurance, etc.)

Additional

● US Citizenship required

Ensuring a diverse and inclusive workplace where we learn from each other is core to Zoom’s values. We welcome people of different backgrounds, experiences, abilities and perspectives including qualified applicants with arrest and conviction records as well as any qualified applicants requiring reasonable accommodations in accordance with the law.

We believe that the unique contributions of all Zoomies is the driver of our success. To make sure that our products and culture continue to incorporate everyone's perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status.

All your information will be kept confidential according to EEO guidelines.

Explore Zoom:

  • Hear from our leadership team

  • Browse Awards and Employee Reviews on Comparably

  • Visit our Blog

  • Zoom with us!

  • Find us on social at the links below and on Instagram

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
  • People Operations
    • C#Languages
    • C++Languages
    • JavaLanguages
    • JavascriptLanguages
    • PerlLanguages
    • PythonLanguages
    • RubyLanguages
    • ScalaLanguages
    • SqlLanguages
    • jQueryLibraries
    • ReactLibraries
    • ReduxLibraries
    • DjangoFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • SpringFrameworks
    • CassandraDatabases
    • HiveDatabases
    • MongoDBDatabases
    • MySQLDatabases
    • OracleDatabases
    • PostgreSQLDatabases
    • AWSDatabases
    • AWS (Amazon Web Services)Services
    • GitHubServices
    • GitLabServices
    • New RelicServices
    • Google AnalyticsAnalytics
    • TableauAnalytics
    • FigmaDesign
    • SalesforceCRM
    • ClariCRM
    • OutreachEmail
    • KnowledgeTreeEmail
    • ZoomCollaboration
    • We use Zoom for Chat, Meetings, Webinars, Phone and more!Collaboration
    • AsanaProject Management

Location

55 Almaden Blvd Ste. 400, San Jose, CA 95113

An Insider's view of Zoom Video Communications

How would you describe the company’s work-life balance?

From the first day I stepped into the Zoom office till today, I have had one of the greatest career experiences of my life. As a Zoom employee, I always felt seen and heard celebrated for being true self. We work very hard at Zoom but our leadership team and management always find ways to make us feel appreciated and cared for.

Jamonique

Diversity Specialist

How does the company support your career growth?

At Zoom we express our values of care through Zoom Abilities, which are behaviors all Zoomies are expected to cultivate in order to ensure our success. We're encouraged to develop these by participating in learning opportunities around career growth.

Sarah

Talent and Organizational Development Consultant

How do you empower your team to be more creative?

As a leader of a support function, it’s key to respect what our sellers do day in and day out - and the teams that support them. Having this balance is such an amazing part of teamwork as no one sells alone.

Hilary

Head of Sales Operations and Enablement

What are Zoom Video Communications Perks + Benefits

Zoom Video Communications Benefits Overview

Zoom offers a wide range of benefits and perks to ensure our employees feel supported, enriched and cared for including free books, a wellness credit of $300 per month, and a multitude of Zoom-sponsored activities and celebrations to help you Work Happy.

To deliver this happiness to our employees, Zoom employs above-market and progressive compensation programs. At Zoom, we believe this is achieved through analyzing total direct compensation holistically. We offer all employees equity, allowing them to become owners who are vested in and benefit from the long-term success of the company.

Culture
Volunteer in local community
Partners with nonprofits
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Flexible work schedule
Remote work program
Diversity
Dedicated diversity and inclusion staff
Diversity manifesto
Diversity employee resource groups
Employee Resource Groups include Veterans and Women@Zoom with more on the way!
Hiring practices that promote diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Wellness programs
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
Zoom offers a 401(k) plan with automatic enrollment and a separate deferral percentage for bonuses. We match 50% of the first 3% of 401(k) contributions.
Company equity
Employee stock purchase plan
Charitable contribution matching
Child Care & Parental Leave Benefits
Childcare benefits
Generous parental leave
Family medical leave
Adoption Assistance
Return-to-work program post parental leave
Company sponsored family events
Vacation & Time Off Benefits
Unlimited vacation policy
Paid volunteer time
Paid holidays
Paid sick days
Office Perks
Commuter benefits
Company-sponsored outings
Free daily meals
Free snacks and drinks
Some meals provided
Company-sponsored happy hours
Onsite office parking
Recreational clubs
Relocation assistance
Home-office stipend for remote employees
Professional Development Benefits
Job training & conferences
Lunch and learns
Promote from within
Mentorship program
Online course subscriptions available

Additional Perks + Benefits

Zoom listens to its employees. We’re growing and want our employees to be as happy as possible. One way we deliver this happiness is by continually building our benefits programs to best fit the wants and need of our employees. We also hold monthly Zoom Meetings with the whole company and our CEO Eric Yuan himself addresses questions or concerns submitted by employees. If you want to feel heard and appreciated join us in our ever evolving company and product!

More Jobs at Zoom Video Communications

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about Zoom Video CommunicationsFind similar jobs like this