Collaborate with cross-functional engineering teams (mobile, frontend, backend) to perform threat modeling, conduct security reviews, and design secure libraries that enhance the security of Yelp’s applications and services.
Develop and deploy services for login and account security specific to Yelp’s website and mobile apps.
Support security incident response and contribute to the team’s operational activities, including triaging bug bounty submissions and vulnerability reports from internal security tools.
Build automated solutions to detect and prevent potential security threats within Yelp’s application and services.
Evangelize security best practices and policies to be incorporated within software development life cycle.
Be a team player who lives the Yelp Values and thrives in a diverse and inclusive work culture.

Several years of software engineering experience in application security.
Strong understanding of web application security, Mobile security, APIs, and cloud security.
Familiarity with common vulnerabilities (OWASP Top 10).
Command of your favorite modern programming language (Python, Java, Javascript
React, Swift and/or Objective-C).
Security research and pen testing experience are assets.
Comfort reading and navigating unfamiliar codebases.

Competitive salary, a pension scheme, and an optional employee stock purchase plan.
25 days paid holiday (rising to 29 with service), plus one floating holiday.
£150 monthly reimbursement to help cover remote working expenses.
£75 caregiver reimbursement to support dependent care for families.
Private health insurance, including dental and vision.
Flexible working hours and meeting-free Wednesdays.
Regular 3-day Hackathons, bi-weekly learning groups, and productivity spending to support and encourage your career growth.
Opportunities to participate in digital events and conferences.
£75 per month to use toward qualifying wellness expenses.
Quarterly team offsites.

Senior Application Security Engineer

Key skills