At a Glance
- Tasks: Lead and manage vulnerability management programs to protect our customers.
- Company: Join Samsara, a forward-thinking tech company focused on security and innovation.
- Benefits: Competitive pay, flexible remote work, professional development, and comprehensive health plans.
- Other info: Inclusive culture with opportunities for growth and learning.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technologies.
- Qualifications: 6+ years in security engineering, strong coding skills in Python or GoLang.
The predicted salary is between 80000 - 100000 £ per year.
We’re seeking a talented Senior Application/Product Security Engineer with hands‑on experience deploying, managing, and operating modern Vulnerability Management platforms. In this role, you’ll work alongside technical product managers and engineers across the company to maintain Samsara’s Vulnerability Management infrastructure and de‑risk software vulnerabilities to better protect our customers.
You will be responsible for leading and owning the ongoing operation and maintenance of Samsara’s vulnerability management program, ensuring consistent execution of processes, assisting in managing vulnerability scanning tools and refining detection capabilities, working closely with the Vulnerability Technical Program Manager to generate compliance reports, collaborating with engineering teams to track and support remediation of identified vulnerabilities, analyzing and triaging vulnerabilities, participating in security incident investigations related to high‑profile vulnerabilities, contributing to documentation and process improvements, championing Samsara’s cultural principles, and being regularly on call to support the infrastructure.
Responsibilities
- Lead and own ongoing operation and maintenance of Samsara’s vulnerability management program, ensuring consistent execution of processes.
- Assist in managing vulnerability scanning tools and help refine detection capabilities to improve accuracy and reduce false positives.
- Work closely with the Vulnerability Technical Program Manager to generate and distribute monthly and quarterly compliance reports.
- Collaborate with engineering teams to track and support the remediation of identified vulnerabilities, providing guidance on best practices.
- Assist in analyzing and triaging vulnerabilities, escalating critical issues to senior security engineers or Security Operations as needed.
- Participate in security incident investigations related to high‑profile vulnerabilities, helping gather data and assess potential impact on Samsara infrastructure.
- Contribute to documentation and process improvements to streamline vulnerability management workflows.
- Champion Samsara’s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) in daily work.
Qualifications
- 6+ years of relevant experience with demonstrated impact for security engineering and vulnerability management in an enterprise environment.
- Significant experience with vulnerability management tooling, in particular modern toolsets such as Wiz or Semgrep.
- Deep subject matter expertise with security engineering best practices for subjects such as CVSS, EPSS.
- Strong familiarity with common security vulnerabilities and the ability to judge their severity and impact on the business.
- Excellent development background with experience in Python or GoLang.
- Strong DevOps, DevSecOps, or SRE background with experience in AWS cloud services, and Terraform.
- Experience using security automation platforms such as Tines and serverless frameworks such as AWS Lambda.
- Deep understanding of Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), or Software Composition Analysis (SCA).
An Ideal Candidate Also Has
- Practical experience managing vulnerabilities within a FedRAMP‑certified environment.
- Experience integrating vulnerability management into modern CI/CD pipelines with a "shift‑left" mentality.
Benefits
Our compensation program delivers above‑market total compensation through a combination of base salary, performance‑based bonus/variable pay, and equity in a high‑growth public company. In addition, we provide a flexible, employee‑led remote model, a professional development stipend, comprehensive health and parental leave plans, and other benefits designed to support long‑term success.
Equal Employment Opportunity
At Samsara, we welcome everyone regardless of their background. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender, gender identity, sexual orientation, protected veteran status, disability, age, and other characteristics protected by law.
Equal Opportunity Statement
Samsara is an inclusive work environment and is committed to ensuring equal opportunity in employment for qualified persons with disabilities.
Senior Application Security Engineer (AI & Vulnerability) in London employer: Antler
Samsara is an exceptional employer that prioritises employee growth and inclusivity, offering a flexible remote work model and a comprehensive benefits package that includes competitive compensation, professional development stipends, and robust health plans. As a Senior Application Security Engineer, you will thrive in a collaborative environment that champions innovation and teamwork, while playing a crucial role in safeguarding our customers through advanced vulnerability management practices.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Application Security Engineer (AI & Vulnerability) in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, attend meetups, and engage in online forums. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects and contributions to vulnerability management. This gives potential employers a tangible look at what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on common security vulnerabilities and best practices. Be ready to discuss your hands-on experience with tools like Wiz or Semgrep, as well as your approach to managing vulnerabilities in a CI/CD pipeline.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at Samsara.
We think you need these skills to ace Senior Application Security Engineer (AI & Vulnerability) in London
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter to highlight your experience with vulnerability management and security engineering. We want to see how your skills align with the role, so don’t hold back on showcasing your relevant projects!
Show Off Your Technical Skills:Since this role requires hands-on experience with tools like Wiz or Semgrep, be sure to mention any specific tools you’ve used in your previous roles. We love seeing practical examples of how you've tackled security challenges!
Emphasise Collaboration:This position involves working closely with various teams, so highlight any past experiences where you collaborated with engineers or product managers. We value teamwork, and showing us your ability to work well with others will definitely make you stand out.
Apply Through Our Website:We encourage you to apply directly through our website for a smoother application process. It’s the best way for us to receive your application and ensures you’re considered for the role. Don’t miss out on this opportunity!
How to prepare for a job interview at Antler
✨Know Your Tools Inside Out
Make sure you’re well-versed in the vulnerability management tools mentioned in the job description, like Wiz or Semgrep. Be ready to discuss your hands-on experience with these platforms and how you've used them to improve detection capabilities.
✨Showcase Your Security Knowledge
Brush up on security engineering best practices, especially around CVSS and EPSS. Prepare to explain how you assess vulnerabilities and their impact on business operations, as this will demonstrate your deep subject matter expertise.
✨Prepare for Real-World Scenarios
Think of examples from your past work where you’ve led vulnerability management initiatives or participated in incident investigations. Be ready to discuss specific challenges you faced and how you triaged and remediated vulnerabilities effectively.
✨Emphasise Cultural Fit
Familiarise yourself with Samsara’s cultural principles and be prepared to discuss how you embody these values in your work. Highlight experiences that showcase your ability to collaborate, focus on customer success, and adopt a growth mindset.
