Broxer
Unirse
This page was automatically translated and may contain errors. View in English.
Yelp

Senior Application Security Engineer

Yelp

Remote · Jornada completa

Sé el primero en postularte

Experiencia
3+ yrs
Salario
Vacantes
1
Al corriente
Hace 2 horas

Descripción del trabajo

Role overview

Yelp’s engineering environment is built around collaboration, individuality, and practical problem solving. New engineers are expected to ship production code within their first week, and the company emphasizes support from managers, mentors, and teammates so people can grow their impact quickly. The broader mission is to improve user experience, strengthen engineering capability, and keep the work enjoyable in a team-focused setting.

The Application Security group is responsible for protecting Yelp’s users, services, and applications. The team supports both internal engineering groups and external consumers and businesses, and its work includes internal tooling such as SAST as well as Yelp’s public bug bounty program. As an Application Security Engineer, you will work with mobile, frontend, and backend engineers to create secure-by-default systems and reusable frameworks that can scale with Yelp’s expanding product surface.

This role is focused on reducing security risk across Yelp’s applications and services. You will help embed security into the development lifecycle, partner across teams to design safer systems, and contribute to the protection of products used by millions of people every day. The position requires you to be based in the Republic of Ireland.

Key responsibilities

  • Work with mobile, frontend, and backend engineering teams on threat modeling, security reviews, and the creation of secure libraries for Yelp’s products and services.
  • Design and ship login and account-protection services for Yelp’s web and mobile platforms.
  • Assist with incident response and operational security work, including the review of bug bounty reports and findings from internal security tooling.
  • Develop automation that helps identify, block, and reduce security threats across Yelp’s application ecosystem.
  • Promote secure engineering practices and help ensure security requirements are built into the software development lifecycle.
  • Contribute as a collaborative teammate in a diverse, inclusive environment that reflects Yelp’s values.

Required qualifications

  • Broad software engineering background with a strong interest in application security.
  • Several years of experience working in software engineering with an application security focus.
  • Good knowledge of web security, mobile security, APIs, and cloud security concepts.
  • Working familiarity with common web risks, including the OWASP Top 10.
  • Comfortable using at least one modern programming language such as Python, Java, JavaScript/React, Swift, or Objective-C.
  • Security research and penetration testing experience are helpful.
  • Able to read, understand, and move through unfamiliar codebases with confidence.

Benefits and working environment

  • Ownership of meaningful projects from the start, with a supportive team and collaborative culture.
  • Competitive compensation, pension coverage, and an optional employee stock purchase plan.
  • 25 days of paid leave, increasing to 29 days with service, plus one floating holiday.
  • €150 each month for remote working expenses.
  • €86 monthly caregiver reimbursement for dependent care support.
  • Private medical insurance, including dental and vision cover.
  • Flexible working schedule and meeting-free Wednesdays.
  • Regular three-day hackathons, bi-weekly learning groups, and productivity spending to support professional growth.
  • Access to digital events and conferences.
  • €86 per month for eligible wellness expenses.
  • Quarterly team offsites.

Additional information

Applicants must be located in the Republic of Ireland. Yelp encourages people to apply even if they do not meet every requirement listed. The company promotes diversity and is committed to equal opportunity regardless of race, color, religion, sex, national origin, ancestry, age, genetic information, sexual orientation, gender identity, marital or family status, veteran status, medical condition, disability, or other protected status.

Application notice

Agency resumes are not accepted. Do not send resumes to any recruiting alias or employee, and the company is not liable for any fees tied to unsolicited resumes.

Recruiting and Applicant Privacy Notice

Habilidades

Pitón JavaScript Seguridad en la nube Application Security Secure Coding Incident Response Web Security Penetration Testing API Security Threat modeling Security Architecture Mobile Security

Déjelo si desea una respuesta; no lo utilizaremos para ningún otro fin.

Haz clic para navegar, arrastrar y soltar, o pasta una captura de pantalla

PNG, JPG, GIF, MP4, WebM, MOV · Máximo 20 MB cada uno · Hasta 5 archivos