about 4 hours ago
Responsibilities
- Lead and maintain Samsara’s vulnerability management program.
- Manage vulnerability scanning tools and improve detection capabilities.
- Generate and distribute compliance reports with the Vulnerability Technical Program Manager.
- Collaborate with engineering teams to remediate identified vulnerabilities.
- Analyze and triage vulnerabilities, escalating critical issues as needed.
- Participate in security incident investigations related to high-profile vulnerabilities.
- Contribute to documentation and process improvements for vulnerability management.
- Champion Samsara’s cultural principles in daily work.
- Be regularly on call to support.
Requirements
- 6+ years of experience in security engineering and vulnerability management.
- Significant experience with vulnerability management tools like Wiz or Semgrep.
- Expertise in security engineering best practices, including CVSS and EPSS.
- Familiarity with common security vulnerabilities and their business impact.
- Excellent development skills in Python or GoLang.
- Strong background in DevOps, DevSecOps, or SRE with AWS and Terraform experience.
- Experience with security automation platforms and serverless frameworks.
- Deep understanding of SAST, DAST, or Software Composition Analysis.
Benefits
- Flexible, employee-led remote work model.
- Professional development stipend.
- Comprehensive health and parental leave plans.
- Above-market total compensation including base salary, bonuses, and equity.