Enterprise Security Architect

Redwood City, CA, United States

Apply now


Customers have changed. They’re looking for new ways to engage with businesses. Consumers today have a new set of expectations. They want outcomes, not ownership. Customization, not generalization. Constant improvement, not planned obsolescence.

In the old world (let’s call it the Product Economy) it was all about things. Acquiring new customers, shipping commodities, billing for one-time transactions. But in today’s new era, it’s all about relationships. More and more customers are becoming subscribers because subscription experiences built around services meet consumers’ needs better than the static offerings or a single product.

Our vision is “The World Subscribed” where one day every company will be a part of the Subscription Economy® (a phrase coined by our CEO, Tien Tzuo and author of the best selling book Subscribed).

As consumers wave goodbye to ownership, join us as we help companies win on their journey to usership!


Our Information Technology (IT) team is Zuora's internal engineering organization, responsible for creating technology experiences that connect our teams, drive business alignment and build a stronger, more collaborative workplace. With a cloud-first approach, we empower our global ZEOs with increased productivity and self-service to enable company growth, scale and flexibility while hardening our security and compliance posture.


An Enterprise Security Architect at Zuora is securing our cloud environments and protecting our customers, partners, employees, and intellectual property. As an Enterprise Security Architect, you will collaborate with internal and external teams  to improve and scale the security controls in the infrastructure. You will be responsible for operations, development and technology acquisition and deployments, to jointly build, maintain, and operate the risk-based processes, standards, baselines, and guidelines necessary to implement cloud architecture, and secure infrastructure. You’ll find work at Zuora to be uniquely rewarding because of our company culture and your great co-workers.

OUR TECH STACK: AWS, Azure, GCP, Active Directory, Okta, RSA, OneLogin


  • As a Security Architect, you will provide technical direction, oversight, and execution guidance for the Security Architecture and Engineering teams as well as greater enterprise security teams.
  • Collaborate with other technical architects across other teams to maintain visibility into the evolving technical solution to assess the risk and proactively inspire change. 
  • Provide strategic technical security leadership, champion architecture practices, and provide guidance to management on the design and planning of IT systems.
  • Be responsible for the definition and maintenance of security reference architectures that provide roadmaps and design guidance for key security domains such as application, infrastructure, datacenter, cloud platforms and products, IAM integration, data privacy and enabling services.
  • Architect and design information security solutions to protect company assets; address regulatory requirements and align to the NIST or CIS security frameworks.
  • Architect and design API Security, Container and Cloud Security.
  • Serve as an information security advisor to key technology and business stakeholders, establishing trust relationships through active engagement and collaboration.
  • Ensure solutions align with enterprise security standards, policies, and procedures.
  • Identify business requirements that affect the enterprise security architecture and provide solutions that integrate into the overall architectural vision and strategy.
  • Development of security requirements and use cases, conduct security design, compliance and risk assessments, review and document information security policies and procedures, and evaluate security vendors, services and technologies.
  • Partner with technology and security leads to understand environments and identify strategic plans and solutions that deliver the highest levels of security. Develop and deliver on security programs and processes that span the company.
  • Provide guidance and expertise in the development of security standards, architectural governance, design patterns, and security best practices that align with Zuora’s policies.
  • Continue to formally document Zuora security layered model and build out current and future state security models.


  • 10+ years in technical security with 8+ years specifically on security architecture
  • Scripting and coding skills with one or more of the following: REST, Bash, Python, Go.
  • Experience working with Secure Web Gateway, CASB, DLP, DNS, DNS over HTTPS, and IdP/authentication, SAML, OTP
  • Deep knowledge and experience in performing threat modeling, risk assessment, pen testing, and data security validation.
  • Experience working with web services and APIs,  and micro-services architecture and deployment
  • Experience working in an Agile/Scrum  environment with Jira, and Confluence
  • Demonstrated experience in developing and refining security programs and governance in a multi-platform environment
  • Organizational/Program Management Skills
  • Experience calculating and assessing risk based on threats, vulnerabilities, and mitigating factors
  • Knowledge of best practices and methods of IT security strategy, enterprise architecture and security architecture
  • Strong time management skills with the ability to manage multiple projects and deliverables
  • Ability to identify threats, vulnerabilities and consequences and design appropriate responses.
  • Understanding of cybersecurity architectures and tools and financial regulatory guidance and industry best practices.
  • Experience defining security design patterns that map to regulatory guidance, security standards and policies for cyber compliant solutions as well as validation of existing security controls.
  • Working knowledge of NIST and CIS frameworks, processes and associated standards and policies.
  • Exceptional communication and collaboration skills.
  • Superior written, presentation, and verbal communication skills, ability to describe complex problems simply.
  • Industry certifications are a plus: CISSP, CISM, or CISA,
  • Bachelor's degree in computer science, mathematics, related field or equivalent years of relevant experience



Zuora (NYSE: ZUO) Zuora provides the leading cloud-based subscription management platform that functions as a system of record for subscription businesses across all industries. Powering the Subscription Economy®, the Zuora platform was architected specifically for dynamic, recurring subscription business models and acts as an intelligent subscription management hub that automates and orchestrates the entire subscription order-to-revenue process seamlessly across billing and revenue recognition. Zuora serves more than 1,000 companies around the world, including Box, Ford, Penske Media Corporation, Schneider Electric, Siemens, Xplornet, and Zoom.

At Zuora, we have one CEO but ​every employee is empowered and supported to be the ‘ZEO’ of their own career experience. By embedding inclusion and belonging into our processes, policies and culture, we are building a workplace where our 1,200+ ZEOs across North America, Europe, and APAC can bring all the elements of who they are into their work. In addition to an industry-leading six-month, 100% paid parental leave for all our ZEOs, we also offer programs to support your mental health and give back to our communities along with “career cash” and plenty of learning and development opportunities.

To learn more visit www.zuora.com

Zuora is proud to be an Equal Employment Opportunity employer.

Think, be and do you! At Zuora, different perspectives, experiences and contributions matter. Everyone counts. Zuora is proud to be an Equal Opportunity Employer committed to creating an inclusive environment for all.

Zuora does not discriminate on the basis of, and considers individuals seeking employment with Zuora without regards to, race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics.

We encourage candidates from all backgrounds to apply. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us by sending an email to assistance@zuora.com.

Apply now

Let’s do this.

You’re unique and we’re on a journey – so let’s embark on a unique journey together. We encourage you to apply to all roles that utilize your skills and ignite the passion within you.

No matter where you’re located, or which team you work on, you’ll be part of a group of people working together to build a better world: The World Subscribed.

Go ahead and apply!



Get to Know Us

Go ahead, take a look inside #ZEOLife. Meet our ZEOs and learn what it’s like to be a part of our team.

Read the Life at Zuora Blog

Choosing to Challenge, Today and Everyday at Zuora

Zuora’s executive team shares their insights on how we can “Choose to Challenge”...

Read more  

Choosing to Challenge, Today and Everyday at Zuora

C-Crets to Advocating for Yourself at Work

Four steps everyone can take to guide their career to the next level while maint...

Read more  

C-Crets to Advocating for Yourself at Work

Highlights from the Subscription Experience 2021

The global Subscribed experience goes virtual in our first ever Subscription Exp...

Read more  

Highlights from the Subscription Experience 2021

Connect with us

All about relationships. Let’s connect!