AT YOKOY, OUR VISION IS SIMPLE: EMPOWER COMPANIES TO SAVE MONEY ON EVERY DOLLAR THEY SPEND. WE’RE SHAPING A FUTURE WHERE BUSINESSES HANDLE THEIR FINANCES EFFICIENTLY, SECURELY, AND COMPLIANTLY - MINIMIZING MANUAL EFFORT THROUGH THE POWER OF AI AND AUTOMATION. BACKED BY WORLD-CLASS INVESTORS, TRUSTED BY HUNDREDS OF GLOBAL CUSTOMERS, AND DRIVEN BY A TEAM OF OVER 250 EXCEPTIONAL MINDS, WE’RE ON A MISSION TO REVOLUTIONIZE THE WAY COMPANIES MANAGE THEIR SPENDING. BUT THAT’S NOT EVERYTHING: RECENTLY, YOKOY HAS BEEN ACQUIRED BY TRAVELPERK, THE HYPERGROWTH GLOBAL BUSINESS TRAVEL PLATFORM, BRINGING TOGETHER TWO BEST-IN-CLASS PLATFORMS THAT ARE TRANSFORMING THE WAY COMPANIES OPERATE.

Are you excited about working in a fast-paced environment alongside a passionate and ambitious team? Join us on our mission to revolutionize the travel and spend management industry! We’re looking for a Security Engineer to help us reach our goals.
As a Security Engineer at Yokoy, you will be responsible for designing, implementing, and maintaining the security infrastructure that protects our SaaS applications and data. You will collaborate with cross-functional teams to ensure that security is an integral part of our development processes, from design to deployment. This role requires a deep understanding of security best practices, threat landscapes, and the ability to implement and enforce robust security measures.

• You develop and implement security strategies, standards, and practices to safeguard our SaaS applications and infrastructure.
• You collaborate with development and operations teams to integrate security into the software development life cycle (SDLC).
• You conduct risk assessments and provide recommendations for mitigating identified risks.
• You design and implement security controls and technologies, such as firewalls, encryption, and intrusion detection/prevention systems.
• You stay abreast of the latest security threats, vulnerabilities, and industry best practices to ensure our security measures are proactive and effective.
• You lead incident response efforts and participate in security incident investigations.
• You provide security guidance to teams and stakeholders, promoting a security-first mindset.
• You assist with, and drive certification cycles (ISO-27001, SOC I/II, PCI-DSS etc.)
• You act as a liaison between Engineering, Business and Clients with regard to security
• You develop a structured approach to Security Awareness and Risk Management
• You provide support to Engineering and Business with ensuring a high standard of security implementations, processes to enable Yokoy services.
• You help the company as a whole understand that security is en enablement service
• ️ What you’ll need:
• You’re an accomplished Security Engineer with a track record of running the security processess and procedures for organisations.
• You hold a degree (University/University of Applied Sciences) in Computer Science, Information Technology, or a related field.
• You have proven experience as a Security Architect or Security Engineer in a SaaS environment.
• You have strong knowledge of security principles and best practices, including encryption, network security, and access controls.
• You have experience with cloud security, particularly in AWS/Azure/GCP environments.
• You are familiar with compliance standards (e.g., GDPR, PDPA, HIPAA) and experience implementing security controls to meet these requirements.
• You have excellent communication skills, with the ability to convey complex security concepts to both technical and non-technical audiences.
• Ideally, you have obtained relevant certifications such as CISSP, CISM, or a Cloud Certified Security Specialty.
• You’re passionate about Security, Business and Engineering.
• You are fluent in English; other languages are a plus.