Secops Engineer

**At Yokoy, our vision is simple: empower companies to save money on every dollar they spend. We’re shaping a future where businesses handle their finances efficiently, securely, and compliantly - minimizing manual effort through the power of AI and automation. Backed by world-class investors, trusted by hundreds of global customers, and driven by a team of over 250 exceptional minds, we’re on a mission to revolutionize the way companies manage their spending. But that’s not everything: recently, Yokoy has been acquired by TravelPerk, the hypergrowth global business travel platform, bringing together two best-in-class platforms that are transforming the way companies operate.**

**Are you excited about working in a fast-paced environment alongside a passionate and ambitious team? Join us on our mission to revolutionize the travel and spend management industry** **We’re looking for a SecOps Engineer to help us reach our goals.**

As a **SecOps Engineer**at Yokoy, you will be responsible for designing, implementing, and maintaining advanced threat detection solutions. Collaborating with the TechOps/IT team and various engineering squads at Yokoy as well as TravelPerk, you will ensure robust security measures are applied, and capabilities are built to support comprehensive security logging and monitoring across our products and enterprise.

If you are passionate about staying ahead of emerging threats and possess strong technical expertise in security operations, this is an exciting opportunity to make a significant impact.

**\uD83E\uDDD1\uD83C\uDFFD‍\uD83D\uDCBB What you’ll do**:

- Enhance threat detection & response by designing, implementing, and optimizing security tools, detection mechanisms, and secure configurations to identify and mitigate cybersecurity threats.
- Develop and optimize detection rules, signatures, and indicators of compromise (IOCs) across various security platforms.
- Continuously improve security strategy & technology stack by staying up to date with industry trends, emerging threats, and evolving security best practices.
- Ensure compliance with security frameworks (ISO 27001, SOC 2, PCI-DSS) by developing governance, implementing necessary controls, and securing business processes.
- Collaborate with both non-engineering teams and IT to drive improvements by providing consultative expertise and offering advisory insights for business projects.
- Design, implement and maintain secured cloud security technologies alongside the Product Security team to achieve security and compliance objectives across multiple cloud technologies (e.g. AWS GuardDuty/Security Hub/Inspector, GCP Security Command Center).
- Enhance threat hunting, incident response, and security operations through continuous improvement in detection, analysis, and automation.
- **️ What you’ll need**:

- You hold a degree (University/University of Applied Sciences) in Computer Science, Information Technology, or a related field.
- You’re an accomplished Security Operations Engineer with a track record of threat detection engineering within a security operations center (SOC) or similar environment.
- You bring hands-on experience with SIEM solutions, EDR, intrusion detection/prevention systems, and other security tools.
- You're proficient in scripting languages (e.g. Python) for automating security processes and customizing security tools.
- You have prior experience with implementing infrastructure-as-code (Terraform, Pulumi).
- You have a strong understanding of networking protocols, cybersecurity frameworks, and attack vectors.
- You have exceptional analytical and problem-solving skills with the ability to analyze complex security incidents and provide effective solutions.
- You have excellent communication skills with the ability to convey technical concepts to non-technical stakeholders.
- You bring strong documentation skills for creating and maintaining threat detection rules, procedures, and incident reports.
- You are fluent in English; other languages are a plus.

**\uD83D\uDE80 What you’ll get**:

- ** Ownership & Impact**: From day one, you'll have the autonomy to own your work and make a real difference.
- ** Flat Hierarchies**: Collaborate closely with our leadership team in an open and approachable environment.
- ** Dynamic Environment**: Work in a fast-paced setting where you can quickly see and learn from the impact of your contributions.
- ** Flexibility**: We focus on outcomes, not hours—work when you're most productive.
- ** Hybrid Work Model**: We value in-person collaboration and meet in the office three days a week.
- ** Competitive Package**: Enjoy a flexible and attractive compensation package, with the potential to share in our success.
- ** Remote Work**: Work from anywhere for up to 20 days per year.
- ** Wellbeing**: Choose between private healthcare or a gym allowance (location-dependent), plus access to therapy and coaching support.
- ** Giving Back**: Take 16 paid hours annually to volun