Application Security Engineer

LOCATIONS: Remote, United States

Primary Responsibilities

  • As a member of our Global Technology Risk Management team, you will partner with development and engineering teams to provide security guidance as a subject matter expert around application security and operate YUM! application security services for the brand.
  • Aligning with a risk-based approach, define and implement thresholds, metrics, and processes for the identification and remediation of known and potential vulnerabilities in our application portfolio.
  • Leverage existing tools to ensure code coverage, review/report on scan results, and participate in code review sessions with application development teams as necessary.
  • Build small tools, automation, and evaluate/recommend new tooling as necessary to improve our overall security posture.
  • Establish and track remediation timelines, including recommending and monitoring remediation activities.
  • Partner with development groups across YUM! to help them understand vulnerabilities in code, threat models, and design weaknesses and recommend improvements.
  • Partner with security awareness and policy groups to ensure development teams are regularly trained in secure coding practices, and act as the subject matter expert to ensure developer playbooks and policies are continually up to date.
  • Stay abreast of newly-published CWE’s, CVE’s, and attack/evasion techniques to continually keep our application-layer defenses strong.

Basic Qualifications

  • Bachelor's degree and at least 5 years of experience in cybersecurity and/or software development. Additional years of relevant cybersecurity or development experience may be considered in lieu of bachelor's degree.
  • Experience with reviewing application cybersecurity vulnerabilities for risk and relevance as well as in vulnerability mitigations/remediation planning, for identified vulnerabilities
  • Able to successfully communicate with technical personnel and third parties.
  • Knowledge of continuous integration and continuous delivery platforms

Technical Qualifications

  • Knowledge of cloud environment topics including secrets management, infrastructure as code, and serverless technologies
  • Knowledge of CI/CD techniques and build/deployment pipeline technologies
  • Knowledge of application scanning tools using both dynamic and static techniques
  • Knowledge of containers and container management tools
  • Knowledge of Web Application Firewalls and HTTP communication
  • Knowledge of package management tools for languages and operating systems

Yum! Brands, Inc., has over 53,000 restaurants in more than 155 countries and territories, making it a leader in global retail development primarily operating the company’s brands – KFC, Pizza Hut and Taco Bell – global leaders of the chicken, pizza and Mexican-style food categories. The Company’s family of brands also includes The Habit Burger Grill, a fast-casual restaurant concept specializing in made-to-order chargrilled burgers, sandwiches and more. In 2019, Yum! Brands was named to the Dow Jones Sustainability North America Index and in 2020, the company ranked among the top 100 Best Corporate Citizens by 3BL Media.

As the world's largest restaurant company, we have a clear and compelling mission: to build the world's most loved, trusted, and fastest-growing restaurant brands. The key and not-so-secret ingredient in our recipe for growth is our unrivaled culture and talent, which fuels our results. To that end, we're looking for talented, motivated, team-oriented individuals to join us and have the opportunity be your best, have fun, make friends, and make a positive impact.

We are excited about the future growth of our brands. In fact, as a company we are opening an average of 8 restaurants a day worldwide! This growth creates endless opportunities for professional, as well as personal growth. Customer sentiment and love for our brands is the fuel for our excitement! Taco Bell has been named one of the 10 Most Innovative Companies in the World by Fast Company. Pizza Hut delivers more pizzas than any other pizza company in the world, KFC's still uses its 75-year-old finger-lickin' good recipe, including secret herbs and spices to hand-bread its chicken every day, and the Habit Burger Grill is looking to expand its regional footprint across the country.

Check Out Some Of Our Great Benefits (Some available at HQ locations only)
  • Recognition based culture and unique, fun events year round
  • 401(k) with a 6% matching contribution from Yum! Brands with immediate vesting
  • 4 weeks of vacation per year plus holidays
  • Onsite childcare through Bright Horizons
  • Onsite dining center (yes, you can eat KFC, Taco Bell or Pizza hut every day!)
  • 2 paid days off per year to volunteer
  • Tuition reimbursement, education benefits and scholarship opportunities
  • Healthcare and dependent care flexible spending accounts
  • Company paid life insurance
  • Generous parental leave for all new parents and adoption assistance program
  • Onsite dry cleaning, laundry services, concierge
  • Onsite gym with fitness classes and personal trainer sessions
  • Discounts for life’s adventures (ex: theme parks, wireless plans, etc.)
  • Comprehensive medical, vision and dental including prescription drug benefits and 100% preventive care
  • Grow Yourself Week which is devoted to your personal development

Yum! has instituted a COVID-19 vaccination requirement for health and safety reasons. Yum! requires that corporate employees be fully vaccinated against COVID-19 and be able to show proof of vaccination upon starting with the company as a condition of employment, subject to reasonable accommodation as required by law.

Benefits at Yum!

Most of the employee programs and benefits are applicable in the U.S. Internationally, benefits are tailored by market and role. Check with your hiring team to see which ones apply to your job in your market.

Yum! Brands RSC, 1441 Gardiner Ln, Louisville, KY 40213, 502.874.8300

Complementary Content