Platform Security Engineer at Mr Yum

Engineering, Remote, Melbourne, Australia melbourne remote engineering
Posted a month ago

About Us

Hi, we’re Mr Yum 👋

Founded in Melbourne, Australia in 2018, Mr Yum is an ordering, payments and growth platform used by leading hospitality and entertainment venues around the globe. 

We’ve experienced huge business growth over the past 12 months. Having expanded to the UK and US and now used by more than 1500 venues around the world, our industry-leading functionality and focus on customer success has seen Mr Yum adopted in all types of venues, from cafes and pubs to stadiums, concert venues and airports. 

With your help, we have ambitious goals to continue to scale the business by building the most beautiful, powerful tools for our customers. 

Our mission is to create the best growth toolkit for hospitality and entertainment in the world. This toolkit is more than just QR code ordering but encompasses a suite of features, including payments, loyalty, marketing and customer insights.

Named LinkedIn’s #4 Top Startups 2021, our team now comprises more than 100 kind and driven humans working out of the Melbourne HQ, Sydney, Brisbane, Los Angeles, London and the Philippines. 

And we’re just getting started.

The Role

This role exists to keep Mr Yum's apps, platform, employee and customer data secure and serves as a subject matter expert on Security across the organisation.

Key Responsibilities

  • Design, build and operate the core security infrastructure used throughout Mr Yum
  • Develop and own the security Incident Response process
  • Keep Mr Yum compliance in check to relevant standards (PCI, GDPR, etc.)
  • Improve engineering standards, tooling, and processes around security
  • “Push the envelope” of security practices by working on zero-trust environments, secure Kubernetes multi-tenancy, Cloud Security and API Fuzzing
  • If we'd worked with you in the past six weeks, you would have

  • Set up kernel probes to perform intrusion detection and enforce container security
  • Set up data pipelines to analyse signals from our security systems and produce meaningful aggregated signals from them
  • Performed joint red-team exercises with our development and SRE teams
  • Implemented robust static analysis and continuous security testing across different codebases
  • Worked with our Platform team to implement a secure-by-default development process
  • Required Skills

  • A strong passion for internet security and Passion for Internet security issues and the threat landscape for popular software and services.
  • Development experience in one or more general-purpose languages
  • Experience with attacks and mitigation methods, with experience working in two or more of the following: web application and browser security; AWS security and secure infrastructure design; Linux internals, security and hardening; Security monitoring and intrusion detection, Incident response and forensics; Authentication and access control; Development of security tools, automation or frameworks
  • Nice To Have

  • Experience with NodeJS/Golang and associated security tooling
  • Experience with Kubernetes security and hardening
  • Experience implementing AWS security and associated tooling/frameworks
  • Experience implementing strong federated authentication
  • Experience obtaining and maintaining compliance (e.g. PCI, GDPR, HIPAA)
  • Why Mr Yum?

    We live and breathe our team mantras - Think 10x, Here To Serve, Run Towards the Fire and Numbers Over Hype - and we’re so proud of the culture we’ve built.

    Work with impact and purpose. We’re helping the hospitality and entertainment industries to thrive and Mr Yum is at the forefront of this technological transformation. Expect collaboration and interesting problems to solve. 

    Work with great people. Work alongside a supportive, diverse and inclusive team. You’ll have the trust, freedom and support to experiment, think 10x and not be afraid of failure but to learn from it...and have fun together along the way. 

    Work that challenges you. We’re growing quickly, and you will too. You’ll have numerous opportunities to embrace discomfort, grow and learn as Mr Yum expands and scales globally. 

    Work that works for you. We’re a flexible, remote-friendly place with unlimited leave options and day-to-day work times to suit your routine. We prioritise our team’s mental health & overall wellbeing, with a no-questions-asked approach to mental health days and access to support programs. 

    Benefits & Perks…
    - A flexible, remote-friendly work environment where people can enjoy a mix of WFH and in-office collaboration
    - Employee share option plan
    - The best new equipment to set you up for success
    - Free access to online mental health & wellbeing resources the ability to connect with local therapists and counsellors
    - Quarterly recognition program 

    Diversity & Inclusion Commitment

    We're committed to growing and empowering an inclusive Mr Yum community. That's why we actively encourage applications from candidates from all backgrounds, experiences, and perspectives. If you require accessibility assistance at any stage of the process, please let us know.