As an Application Security Engineer, you ll work hands-on with developers and architects to drive secure design, build security automation, and support critical projects across our cloud-native platform. This role is part of our growing presence in Sydney and offers the opportunity to shape and scale security practices globally.

This is a hybrid position, so you ll work both remotely and in the office.

What you ll do

Collaborate with teams across a global organization to support the adoption and implementation of secure software development practices and tooling.
Contribute hands-on to critical engineering and tooling projects, working closely with technical leads and product owners to ensure security is a key part of successful project outcomes.
Mentor engineers and influence architectural decisions to ensure security is embedded by design.
Design and develop reusable, flexible security components and APIs to support scalable, secure application development across the company.
Define and promote best practices to ensure software security without compromising functionality, usability, reliability, or availability.
Participate in design and code reviews, providing actionable security recommendations as needed.
Collaborate with project teams to design and prototype secure solutions, validating key assumptions and security objectives.
Evaluate, implement, and support a range of security tools to improve visibility and reduce risk.
Build strong relationships and communicate effectively with stakeholders throughout the SDLC, including Product, Engineering, and Operations teams.

Your experience

2+ years of experience in application security, software development, or a related engineering role.
Strong understanding of secure software development practices, including experience working with developers to embed security into the SDLC.
Hands-on experience conducting security design reviews, threat modeling, and code reviews for web and cloud-based applications.
Familiarity with common application vulnerabilities (e.g., OWASP Top 10) and experience in identifying and remediating them.
Experience working with security tools such as SAST, DAST, SCA, and container security scanners.
Ability to communicate security concepts effectively to both technical and non-technical stakeholders.

Nice to haves:

Experience with AWS security best practices and securing cloud-native architectures.
Background in DevSecOps or building security automation into CI/CD pipelines.
Familiarity with Bug Bounty triage or managing responsible disclosure programs.
Experience with regulatory frameworks (e.g., ISO 27001, SOC 2, or GDPR) as they relate to product security.
Programming or scripting skills (e.g., Python, JavaScript, or Go) to build internal tools or automation.

#ZEOLife at Zuora

As an industry pioneer, our work is constantly evolving and challenging us in new ways that require us to think differently, iterate often and learn constantly it s exciting. Our people, whom we refer to as ZEOs are empowered to take on a mindset of ownership and make a bigger impact here. Our teams collaborate deeply, exchange different ideas openly and together we re making what s next possible for our customers, community and the world.

As part of our commitment to building an inclusive, high-performance culture where ZEOs feel inspired, connected and valued, we support ZEOs with:

Competitive compensation, variable bonus and performance reward opportunities, and retirement programs
Medical, dental and vision insurance
Generous, flexible time off
Paid holidays, wellness days and company wide end of year break
6 months fully paid parental leave
Learning & Development stipend
Opportunities to volunteer and give back, including charitable donation match
Free resources and support for your mental wellbeing

More Jobs at Zuora

Solutions Engineer (Google Workspace)

chennai, all india

5.0 - 9.0 yrs

Salary: Not disclosed

Security Engineer II

bengaluru

2.0 - 7.0 yrs

INR 6 - 10 Lacs

Business System Analyst - Netsuite

chennai, tamil nadu, india

5.0 - 5.0 yrs

Salary: Not disclosed

Mock Interview

Practice Video Interview with JobPe AI

Start JavaScript Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Enhance Your Javascript Skills

Practice Javascript coding challenges to boost your skills

Start Practicing Javascript Now

Zuora

Login to

Please Verify Your Phone or Email

Confirm Action

Security Engineer II