Samsara

Senior Security Engineer – Vulnerability Management

Samsara

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $157,675 - $238,500 per year

Job Level

Senior

Tech Stack

AWSCloudPythonTerraform

About the role

  • Lead and own ongoing operation and maintenance of Samsara’s vulnerability management program, ensuring consistent execution of processes.
  • Assist in managing vulnerability scanning tools and help refine detection capabilities to improve accuracy and reduce false positives.
  • Work closely with the Vulnerability Technical Program Manager to generate and distribute monthly and quarterly compliance reports.
  • Collaborate with engineering teams to track and support the remediation of identified vulnerabilities, providing guidance on best practices.
  • Assist in analyzing and triaging vulnerabilities, escalating critical issues to senior security engineers or Security Operations as needed.
  • Participate in security incident investigations related to high-profile vulnerabilities, helping gather data and assess potential impact on Samsara infrastructure.
  • Contribute to documentation and process improvements to streamline vulnerability management workflows.
  • Champion Samsara’s cultural principles in daily work.

Requirements

  • 6+ years of relevant experience with demonstrated impact for security engineering and vulnerability management in an enterprise environment.
  • Significant experience with vulnerability management tooling, particularly modern toolsets such as Wiz or Semgrep.
  • Deep subject matter expertise with security engineering best practices for subjects such as CVSS and EPSS.
  • Strong familiarity with common security vulnerabilities and the ability to judge their severity and impact on the business.
  • Excellent development background with experience in Python or GoLang.
  • Strong DevOps, DevSecOps, or SRE background with experience in AWS cloud services and Terraform
  • Experience using security automation platforms such as Tines and serverless frameworks such as AWS Lambda.
  • Deep understanding of Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), or Software Composition Analysis (SCA).
Benefits
  • Health benefits
  • Flexible working hours
  • Remote working options
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
vulnerability managementsecurity engineeringPythonGoLangDevOpsDevSecOpsSREAWSTerraformStatic Application Security Testing
Soft Skills
collaborationguidancedocumentationprocess improvementimpact assessment