Infrastructure Security Engineer - Infrasec (Remote - Canada)

Summary

Yelp engineering culture is driven by our values: we’re a cooperative team that values individual authenticity and encourages creative solutions to problems. All new engineers deploy working code their first week, and we strive to broaden individual impact with support from managers, mentors, and teams. At the end of the day, we’re all about helping our users, growing as engineers, and having fun in a collaborative environment.

Infrastructure Security Team

The Infrastructure Security (InfraSec) team secures yelp.com and related properties. We manage security for AWS and GCP, focusing on least privilege, containers, developer efficiency, data security for privacy, and system access controls (Linux, Docker, Kubernetes). We develop, implement, and monitor company-wide standards for vulnerability management, authorization, authentication, and data privacy.

Job Description

We’re looking for an Infrastructure Security Engineer (InfraSec) to join Yelp’s globally expanding Security team and to help keep our cloud and corporate infrastructure, network, endpoints and applications safe. In this role, you’ll work on improving our cloud and corporate security posture and capabilities. Together with the rest of our awesome security engineers, you’ll build custom solutions at scale with creativity and automation. You’ll also partner with our corporate infrastructure and IT teams to help architect the future of Yelp’s authentication, identity management, and network security systems. This opportunity is fully remote and does not require you to be located in any particular area in Canada. We welcome applicants from throughout Canada. We’d love to have you apply, even if you don’t feel you meet every single requirement in this posting. At Yelp, we’re looking for great people, not just those who simply check off all the boxes.

Responsibilities

• Design, implement, operationalize and maintain systems that ensure the security of Yelp’s AWS and Google Cloud Platform (GCP) environments, focusing on least privilege, containerization, and developer efficiency.
• Develop and enforce data security controls to support privacy initiatives, including data mapping and data retention.
• Manage system-level access controls (such as Linux, Docker, Kubernetes), and tiered access for internal digital assets, balancing strict authentication/authorization with usability.
• Create, extend, and monitor company-wide security standards, proactively identifying and correcting insecure usage across Yelp.
• Develop and operationalize telemetry, reporting and alerting to ensure the security and integrity of our systems.