Senior Application Security Engineer

Full Time
New York, NY, USA
4 months ago

Yext (NYSE: YEXT) is the leading digital presence platform for multi-location brands, with thousands of customers worldwide. With one central platform, brands can seamlessly deliver consistent, accurate, and engaging experiences and meaningfully connect with customers anywhere in the digital world. Our AI and machine learning technology powers the knowledge behind every customer engagement, which is only possible through our team of innovators and enthusiastic collaborators. Join us and experience firsthand why we are consistently recognized as a ‘Best Place to Work’ globally by industry leaders such as Built In, Fortune, and Great Place To Work®!

Yext is seeking a Senior Application Security Engineer reporting into the Security Office. This role will serve as a technical subject matter expert in various key areas of the product and software platform for the Application Security team such as Threat modeling, Secure code review, penetration testing and other post-deployment security monitoring. This role will enable the product and engineering teams to make the right security & privacy decisions by performing reviews, assessments and other offensive exercises and recommending best practices. This role will also help assist the Application Security leader drive the culture and awareness within Yext around Security practices and compliance initiatives.

What You'll Do

  • Design and implement security practices and standards across product and application environments
  • Threat Modeling systems and applications and performing security reviews
  • Perform detailed penetration tests of web and mobile infrastructure
  • Identifying security risks and developing mitigation strategies
  • Develop tooling and automation to facilitate continual testing and increase coverage of penetration tests and other security assessments
  • Develop system design and software best practices for engineering teams
  • Provide guidance for secure coding practices and proactive controls based on OWASP Top 10 and CIS Controls
  • Contribute to creation of security training and delivery to internal teams
  • Assist in the analysis and response to bug bounty programs

What You Have

  • Bachelor’s Degree in Information Technology or related field of study. 
  • 5 - 7 years of relevant work experience in Development or Security Engineering teams.
  • Experience in software development, ability to guide and mentor a technical engineering team in coding and scripting best practices.
  • Good understanding of modern application security frameworks and offensive security toolkits. 
  • Self-motivated team player that is energetic, with excellent interpersonal and organizational skills
  • Strong leadership and negotiation skills with technical groups.
  • Experience presenting to development and architecture teams on security recommendations
  • Strong problem-solving, critical thinking and analytical skills.

#LI-JB1

Pay ranges at Yext are established based on an analysis of salaries for positions with a similar level of accountability and impact in the relevant labor market. Salary levels are expected to change to reflect an employee’s job performance (results and impact) over time. Salaries at the time of hire are typically offered in the lower to middle of the above-referenced range in order to provide the opportunity to reflect performance-based increases over time. In addition to base salaries, employees at Yext are typically eligible for a comprehensive package of benefits including medical, dental and vision benefits; life insurance; short term and long-term disability; 401(k) retirement plan; and vacation and sick leave. Successful candidates may also be eligible for equity (stock) based compensation and/or variable pay programs based on performance relative to goals and targets.

Annual Base Pay Range$145,350—$297,500 USD

Yext is committed to building an inclusive and diverse culture where every person is seen, heard, and valued. We believe in equal employment opportunity and welcome employees and applicants of all races, colors, ethnicities, religions, creeds, national origins, ancestries, genetics, sexes, pregnancy or childbirth, sexual orientations, genders (including gender identity or nonbinary or nonconformity and/or status as a trans individual), ages, physical or mental disabilities, citizenships, marital, parental and/or familial status, past, current or prospective service in the uniformed services, or any characteristic protected under applicable law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. It is Yext’s policy to provide reasonable accommodations to people with disabilities as required by law. If you have a disability that requires an accommodation in completing this application, interviewing, or participating in the employee selection process, please complete this form.