At a Glance
- Tasks: Lead and manage Samsara’s vulnerability management program to protect our customers.
- Company: Join a forward-thinking tech company focused on security and innovation.
- Benefits: Competitive pay, flexible remote work, health benefits, and professional development support.
- Other info: Inclusive culture with opportunities for growth and learning.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technologies.
- Qualifications: 6+ years in security engineering, strong coding skills in Python or GoLang.
The predicted salary is between 70000 - 90000 £ per year.
We’re seeking a talented Senior Application/Product Security Engineer with hands‑on experience deploying, managing, and operating modern Vulnerability Management platforms. In this role, you’ll work alongside technical product managers and engineers across the company to maintain Samsara’s Vulnerability Management infrastructure and de‑risk software vulnerabilities to better protect our customers.
You will be responsible for leading and owning the ongoing operation and maintenance of Samsara’s vulnerability management program, ensuring consistent execution of processes, assisting in managing vulnerability scanning tools and refining detection capabilities, working closely with the Vulnerability Technical Program Manager to generate compliance reports, collaborating with engineering teams to track and support remediation of identified vulnerabilities, analyzing and triaging vulnerabilities, participating in security incident investigations related to high‑profile vulnerabilities, contributing to documentation and process improvements, championing Samsara’s cultural principles, and being regularly on call to support the infrastructure.
Responsibilities
- Lead and own ongoing operation and maintenance of Samsara’s vulnerability management program, ensuring consistent execution of processes.
- Assist in managing vulnerability scanning tools and help refine detection capabilities to improve accuracy and reduce false positives.
- Work closely with the Vulnerability Technical Program Manager to generate and distribute monthly and quarterly compliance reports.
- Collaborate with engineering teams to track and support the remediation of identified vulnerabilities, providing guidance on best practices.
- Assist in analyzing and triaging vulnerabilities, escalating critical issues to senior security engineers or Security Operations as needed.
- Participate in security incident investigations related to high‑profile vulnerabilities, helping gather data and assess potential impact on Samsara infrastructure.
- Contribute to documentation and process improvements to streamline vulnerability management workflows.
- Champion Samsara’s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) in daily work.
Qualifications
- 6+ years of relevant experience with demonstrated impact for security engineering and vulnerability management in an enterprise environment.
- Significant experience with vulnerability management tooling, in particular modern toolsets such as Wiz or Semgrep.
- Deep subject matter expertise with security engineering best practices for subjects such as CVSS, EPSS.
- Strong familiarity with common security vulnerabilities and the ability to judge their severity and impact on the business.
- Excellent development background with experience in Python or GoLang.
- Strong DevOps, DevSecOps, or SRE background with experience in AWS cloud services, and Terraform.
- Experience using security automation platforms such as Tines and serverless frameworks such as AWS Lambda.
- Deep understanding of Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), or Software Composition Analysis (SCA).
An Ideal Candidate Also Has
- Practical experience managing vulnerabilities within a FedRAMP‑certified environment.
- Experience integrating vulnerability management into modern CI/CD pipelines with a "shift‑left" mentality.
Benefits
Our compensation program delivers above‑market total compensation through a combination of base salary, performance‑based bonus/variable pay, and equity in a high‑growth public company. In addition, we provide a flexible, employee‑led remote model, a professional development stipend, comprehensive health and parental leave plans, and other benefits designed to support long‑term success.
Equal Employment Opportunity
At Samsara, we welcome everyone regardless of their background. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender, gender identity, sexual orientation, protected veteran status, disability, age, and other characteristics protected by law.
Equal Opportunity Statement
Samsara is an inclusive work environment and is committed to ensuring equal opportunity in employment for qualified persons with disabilities.
Senior Application Security Engineer (AI & Vulnerability) employer: Antler
Samsara is an exceptional employer that prioritises employee growth and well-being, offering a competitive compensation package that includes base salary, performance bonuses, and equity in a rapidly growing public company. Our flexible, employee-led remote model fosters a collaborative work culture where innovation thrives, and we are committed to inclusivity and equal opportunity for all employees. Join us to make a meaningful impact in the field of application security while enjoying comprehensive health benefits and professional development opportunities.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Application Security Engineer (AI & Vulnerability)
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, attend meetups, and engage in online forums. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects and contributions to vulnerability management. This gives potential employers a tangible look at what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on common security vulnerabilities and best practices. Be ready to discuss your hands-on experience with tools like Wiz or Semgrep, as well as your approach to managing vulnerabilities in a CI/CD pipeline.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at Samsara.
We think you need these skills to ace Senior Application Security Engineer (AI & Vulnerability)
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter to highlight your experience with vulnerability management and security engineering. We want to see how your skills align with the role, so don’t hold back on showcasing your relevant projects!
Show Off Your Technical Skills:Since this role requires hands-on experience with tools like Wiz or Semgrep, be sure to mention any specific tools you’ve used in your previous roles. We love seeing practical examples of how you've tackled security challenges!
Emphasise Collaboration:This position involves working closely with various teams, so highlight any past experiences where you collaborated with engineers or product managers. We value teamwork, and showing us your ability to work well with others will definitely make you stand out.
Apply Through Our Website:We encourage you to submit your application through our website for the best chance of being noticed. It’s the easiest way for us to keep track of your application and ensure it gets into the right hands!
How to prepare for a job interview at Antler
✨Know Your Tools Inside Out
Make sure you’re well-versed in the vulnerability management tools mentioned in the job description, like Wiz or Semgrep. Be ready to discuss your hands-on experience with these platforms and how you've used them to improve detection capabilities.
✨Showcase Your Security Knowledge
Brush up on security engineering best practices, especially around CVSS and EPSS. Prepare to explain how you assess vulnerabilities and their impact on business operations, as this will demonstrate your deep subject matter expertise.
✨Collaborate Like a Pro
Since collaboration is key in this role, think of examples where you’ve worked closely with engineering teams to track and remediate vulnerabilities. Highlight your ability to provide guidance on best practices and how you’ve contributed to team success.
✨Embrace the Company Culture
Familiarise yourself with Samsara’s cultural principles. Be prepared to discuss how you embody values like customer success and inclusivity in your work. This will show that you’re not just a technical fit but also a cultural one.
