Senior Security Engineer

Zuora, San Mateo, CA

Unifying order-to-cash for a dynamic subscription world

Zuora is the world’s largest evangelist of the Subscription Economy™. Our leading cloud-based subscription management platform helps companies build and grow subscription business models by establishing, cultivating and monetizing recurring customer relationships. With $250M invested from Tier 1 VCs and institutional wealth management companies it validates that the subscription economy has gone mainstream. Headquartered in San Mateo, CA, with over 500 employees Zuora serves over hundreds of clients, including HP, Dell, Financial Times, GM, Box, Zendesk, LifeTech and more.

We are currently looking for two Senior Security Engineers to join either our applications or our infrastructure security team to build and manage rapidly growing product. As Senior Security Engineer you will have the opportunity to develop your analytical, strategic, and technical skills needed around cyber security foundation.  


  • Building automated security solutions with CloudFormation, Ansible, Jenkins and other DevOps tools
  • Provide technical leadership, solution design, and hands on development support for security controls for infrastructure or application security and software deployments
  • Lead the Security Automation team with various stakeholders
  • Collaborate cross-functionally and engage with all levels of leadership to gather requirements, build appropriate cloud security technology roadmaps and implementation plans.
  • Maintain strong awareness of events in the external community to identify threats and opportunities for enhancement.
  • Develop threat models and perform security health checks in the public cloud (AWS) environment and develop code to address threats and recurring issues
  • Evaluate, test, implement and support third party security tools
  • Identify new security threats by conducting continuous monitoring, penetration testing, vulnerability assessments and log analysis

Required Experience and skills

  • Education & Essential Experience
  • MS or Bachelor in Computer Science or equivalent desired
  • 2-5 years with AWS/public cloud
  • 2-5 years of experience in DevOps or CI/CD Pipelines
  • 10 Years with security engineering, either applications security or system and/or network security

  • Security Skills
  • IT Security frameworks like CIS, NIST etc.
  • Authentication, security firewalls & other security protocols.
  • Vulnerability management, network penetration testing & remediation techniques

  • Programming and Ops Skills
  • Deep knowledge of AWS SDK and CLI for various AWS Services is must
  • Python, Bash, Perl Coding experience
  • Ansible, Puppet scripting
  • Jenkins, Terraform, AWS Cloud Formation
  • Bitbucket, JIRA, Confluence
  • Linux Administration
  • Docker, AWS EC2 Container Service (ECS)

  • Soft Skills
  • Self-starter, customer centric attitude
  • High collaboration and influence skills
  • Willingness to mentor other members within internal or external team
  • Ability to communicate technical concepts and complexity to all audiences
  • Tolerant of ambiguity and a stable, but changing environment

About Zuora

Zuora is a SaaS company and the world’s foremost evangelist of the Subscription Economy. Zuora’s leading subscription relationship management platform helps enable businesses in any industry to launch or shift products to subscription, implement new pay-as-you-go pricing and packaging models, gain new insights into subscriber behavior, open new revenue streams, and disrupt market segments to gain competitive advantage.

Want to learn more about Zuora? Visit https://www.zuora.com/