Senior Software Engineer – Security (Inci...

Summary Yelp engineering culture is driven by our values: we’re a cooperative team that values individual authenticity and encourages creative solutions to problems. All new engineers deploy working code their first week, and we strive to broaden individual impact with support from managers, mentors, and teams. At the end of the day, we’re all about helping our users, growing as engineers, and having fun in a collaborative environment. The Security Incident Detection and Response Team at Yelp is responsible for leading all security incident response activities, actively managing and increasing detection precision, and providing advanced systems and tooling. Our team is critical to improving Yelp’s detection and response capabilities, ensuring the continued security and integrity of our data and systems. We’re looking for a Security Software Engineer to join our Incident Detection and Response team and contribute to our efforts to ensure Yelp’s cloud and corporate infrastructure, network, endpoints, and applications remain safe. This opportunity requires you to be located in the United Kingdom. We’d love to have you apply, even if you don’t feel you meet every single requirement in this posting. At Yelp, we’re looking for great people, not just those who simply check off all the boxes. What you\'ll do: Participate in incident response as an incident commander, investigator, and/or coordinator throughout the lifecycle of a security incident. Hands on experience in Digital Forensics (MacOS, Linux, Windows), reverse engineering/malware analysis. Develop automated tooling to recognize attacker TTPs (Tools, Tactics and Procedures) and IoCs (Indicators of Compromise). Design, develop, maintain, and operationalize monitoring, correlation, and alerting capabilities for Yelp’s corporate network, infrastructure, and applications to detect suspicious or anomalous behavior. Improve and enhance vulnerability detection and response capabilities.Perform threat hunting, red teaming activities across business applications and infrastructure integrations. Exhibit strong communication skills to enforce rigorous security standards, while upholding Yelp’s value to play well with others. Partner with diverse stakeholders to advance Yelp’s goals. What it takes to succeed: Significant professional experience working to secure consumer websites, mobile applications, and/or large corporate IT infrastructure. Proficiency in reverse engineering/malware analysis, network flow analysis, and digital forensics, to collect and analyze evidence from compromised systems. Proficiency with SOAR and SIEM platforms. Knowledge of modern threat intel (TIP) platforms. Experience in threat modeling, threat hunting, and/or vulnerability management. Software development skills in Python, JavaScript, Objective-C, or similar. Experience building custom tools and solutions to help mature monitoring, detection, and response capabilities, including automating manual processes. Passion for ensuring secure design review and educating others in security best practices. What you\'ll get: Full responsibility for projects from day one, a collaborative team, and a dynamic work environment. Competitive salary, a pension scheme, and an optional employee stock purchase plan. 25 days paid holiday (rising to 29 with service), plus one floating holiday. £150 monthly reimbursement to help cover remote working expenses. £81 caregiver reimbursement to support dependent care for families. Private health insurance, including dental and vision. Flexible working hours and meeting-free Wednesdays. Regular 3-day Hackathons, bi-weekly learning groups, and productivity spending to support and encourage your career growth. Opportunities to participate in digital events and conferences. £81 per month to use toward qualifying wellness expenses. Quarterly team offsites. Closing Yelp values diversity. We’re proud to be an equal opportunity employer and consider qualified applicants without regard to race, color, religion, sex, national origin, ancestry, age, genetic information, sexual orientation, gender identity, marital or family status, veteran status, medical condition, disability, or any other protected status. Notice to Northern Ireland Applicants A Basic criminal background check viaAccessNIis required for employment.Yelp complies with the AccessNI Code of Practice. Having a criminal record will not necessarily prevent a candidate from working with Yelp. Yelp will consider the nature of the position together with the circumstances and background of the candidate\'s offences or other information contained on a disclosure certificate. AccessNI\'s Privacy Policy is availablehere.Yelp\'s Criminal Background Check Policy is available upon request. Note: Yelp does not accept agency resumes. Please do not forward resumes to any recruiting alias or employee. Yelp is not responsible for any fees related to unsolicited resumes. #LI-Remote Recruiting and Applicant Privacy Notice #J-18808-Ljbffr