Infrastructure Security Engineer - Infrasec (Remote - Canada)

Summary

The Infrastructure Security (InfraSec) team secures yelp.com and related properties. We manage security for AWS and GCP, focusing on least privilege, containers, developer efficiency, data security for privacy, and system access controls (Linux, Docker, Kubernetes). We develop, implement, and monitor company-wide standards for vulnerability management, authorization, authentication, and data privacy.  We’re looking for an Infrastructure Security Engineer (InfraSec) to join Yelp’s globally expanding Security team and to help keep our cloud and corporate infrastructure, network, endpoints and applications safe.  In this role, you’ll work on improving our cloud and corporate security posture and capabilities. Together with the rest of our awesome security engineers, you’ll build custom solutions at scale with creativity and automation. You’ll also partner with our corporate infrastructure and IT teams to help architect the future of Yelp’s authentication, identity management, and network security systems.  This opportunity is fully remote and does not require you to be located in any particular area in Canada. We welcome applicants from throughout Canada. We’d love to have you apply, even if you don’t feel you meet every single requirement in this posting. At Yelp, we’re looking for great people, not just those who simply check off all the boxes. What you'll do:

• Design, implement, operationalize and maintain systems that ensure the security of Yelp’s AWS and Google Cloud Platform (GCP) environments, focusing on least privilege, containerization, and developer efficiency.
• Develop and enforce data security controls to support privacy initiatives, including data mapping and data retention.
• Manage system-level access controls (such as Linux, Docker, Kubernetes), and tiered access for internal digital assets,balancing strict authentication/authorization with usability.
• Create, extend, and monitor company-wide security standards, proactively identifying and correcting insecure usage across Yelp.
• Develop and operationalize telemetry, reporting, and alerting systems to collect and analyze security-related data.
• Conduct timely vulnerability identification, assessment, and remediation across Yelp’s infrastructure, applications, and services.
• Participate in a robust on-call rotation, respond to security incidents, and contribute to proactive threat modeling and system reviews.
• Mentor other engineers passing on your skills, and serve as a resource in our #security Slack channel by promoting best practices and offering your expertise across the organization.

What it takes to succeed:

• Experience building secure, scalable, and distributed cloud environments (preferably on AWS and GCP).
• Familiarity with modern access controls and authentication mechanisms (Linux, Docker, Kubernetes, IAM, etc.).
• Proficient in at least one programming language (e.g., Python, Java, JavaScript, C) and in designing well-structured APIs.
• Passion for automation to streamline security policy enforcement, detection, and response.
• Strong analytical skills and a proactive approach to vulnerability assessment and threat modeling.
• Effective communicator, able to collaborate across diverse teams and provide security guidance in a constructive, approachable manner.
• Committed to continuous learning, knowledge sharing, and staying current with evolving security trends.

What you'll get: There are a variety of factors that go into determining a compensation range, including but not limited to external market benchmark data and years of experience. Based on the anticipated level of experience that we are seeking, we expect the compensation range for this role to be between $135,000 and $185,000 annually. The actual compensation offered may be influenced by a variety of factors, including the candidate’s experience and skill set.  There may be flexibility with the range included in this posting should a candidate be leveled higher or lower than the posted range. Â

• This opportunity has the option to be fully remote in all locations across Canada.
• This role is posted to fill an existing position.
• You can find more information about Yelp's five star benefits here!

#LI-Remote  Apply tot his job Apply To this Job