Infrastructure Security Engineer Infrasec (Remote Canada)

Yelp engineering culture is driven by our values: were a cooperative team that values individual authenticity and encourages creative solutions to problems. All new engineers deploy working code their first week and we strive to broaden individual impact with support from managers mentors and teams. At the end of the day were all about helping our users growing as engineers and having fun in a collaborative environment.

The Infrastructure Security (InfraSec) team secures and related properties. We manage security for AWS and GCP focusing on least privilege containers developer efficiency data security for privacy and system access controls (Linux Docker Kubernetes). We develop implement and monitor company-wide standards for vulnerability management authorization authentication and data privacy.

Were looking for an Infrastructure Security Engineer (InfraSec) to join Yelps globally expanding Security team and to help keep our cloud and corporate infrastructure network endpoints and applications safe.

In this role youll work on improving our cloud and corporate security posture and capabilities. Together with the rest of our awesome security engineers youll build custom solutions at scale with creativity and automation. Youll also partner with our corporate infrastructure and IT teams to help architect the future of Yelps authentication identity management and network security systems.

This opportunity is fully remote and does not require you to be located in any particular area in Canada. We welcome applicants from throughout Canada. Wed love to have you apply even if you dont feel you meet every single requirement in this posting. At Yelp were looking for great people not just those who simply check off all the boxes.

• Design implement operationalize and maintain systems that ensure the security of Yelps AWS and Google Cloud Platform (GCP) environments focusing on least privilege containerization and developer efficiency.
• Develop and enforce data security controls to support privacy initiatives including data mapping and data retention.
• Manage system-level access controls (such as Linux Docker Kubernetes) and tiered access for internal digital assetsbalancing strict authentication/authorization with usability.
• Create extend and monitor company-wide security standards proactively identifying and correcting insecure usage across Yelp.
• Develop and operationalize telemetry reporting and alerting systems to collect and analyze security-related data.
• Conduct timely vulnerability identification assessment and remediation across Yelps infrastructure applications and services.
• Participate in a robust on-call rotation respond to security incidents and contribute to proactive threat modeling and system reviews.
• Mentor other engineers passing on your skills and serve as a resource in our #security Slack channel by promoting best practices and offering your expertise across the organization.

• Experience building secure scalable and distributed cloud environments (preferably on AWS and GCP).
• Familiarity with modern access controls and authentication mechanisms (Linux Docker Kubernetes IAM etc.).
• Proficient in at least one programming language (e.g. Python Java JavaScript C) and in designing well-structured APIs.
• Passion for automation to streamline security policy enforcement detection and response.
• Strong analytical skills and a proactive approach to vulnerability assessment and threat modeling.
• Effective communicator able to collaborate across diverse teams and provide security guidance in a constructive approachable manner.
• Committed to continuous learning knowledge sharing and staying current with evolving security trends.

There are a variety of factors that go into determining a compensation range including but not limited to external market benchmark data and years of experience. Based on the anticipated level of experience that we are seeking we expect the compensation range for this role to be between $135000 and $185000 annually. The actual compensation offered may be influenced by a variety of factors including the candidates experience and skill set.

There may be flexibility with the range included in this posting should a candidate be leveled higher or lower than the posted range.

• This opportunity has the option to be fully remote in all locations across Canada.
• This role is posted to fill an existing position.
• You can find more information about Yelps five star benefits here!

At Yelp we believe that diversity is an expression of all the unique characteristics that make us human: race age sexual orientation gender identity religion disability and education and those are just a few. We recognize that diverse backgrounds and perspectives strengthen our teams and our product. The foundation of our diversity efforts are closely tied to our core values which include Playing Well With Others and Authenticity.

Were proud to be an equal opportunity employer and consider qualified applicants without regard to race color religion sex national origin ancestry age genetic information sexual orientation gender identity marital or family status veteran status medical condition disability or any other protected status.

We are committed to providing reasonable accommodations for individuals with disabilities in our job application process. If you need assistance or an accommodation due to a disability you may contact us at or 1-.

Note: Yelp does not accept agency resumes. Please do not forward resumes to any recruiting alias or employee. Yelp is not responsible for any fees related to unsolicited resumes.

#LI-Remote

Recruiting and Applicant Privacy Notice