Senior Security Engineer
About Semgrep
Semgrep, the leader in code security for builders, empowers invention without friction. Teams catch, flag, and fix real issues before they ship, powered by security that learns as they build. Semgrep secures code as it’s written and provides guardrails that pave the road for developers to move fast and stay secure. Built for builders and trusted by security, Semgrep lives where developers work, delivering fixes without breaking flow, and giving security teams visibility, control, and confidence. Semgrep gets smarter as you build, with AI that learns your context to cut false positives and prioritize reachable vulnerabilities, validated by 95% of security reviewers across 6M+ findings. Semgrep makes zero false positives a reality with AppSec teams triaging 80% fewer false positives across Code and Supply Chain, dramatically shrinking the backlog.
Founded in San Francisco and backed by Menlo Ventures, Felicis Ventures, Lightspeed Venture Partners, Redpoint Ventures, and Sequoia Capital, Semgrep is recognized by Gartner in Application Security Testing and is trusted by leading organizations, including Snowflake, Dropbox, and Figma. Learn more at semgrep.dev.
About the Team
The Internal Security & Tech Ops team is focused on securing our company and, by extension, our customers and their data. We also provide core technology services to Semgrep's employees. We are responsible for securing Semgrep, representing its security posture to our customers, and providing the services and platforms that our employees rely on.
Our mission is to move Semgrep's security from good to excellent. We strive to be a group that is approachable and customer-orientated. We value constant improvement, leveraging automation and the latest tools and technologies.
Internal Security helps lead our cross-company Security Guild; provides security expertise as part of Semgrep's greater security mission; and partners closely with the Engineering, People Ops and Go-to-Market teams.
About the role
As a Senior Security Engineer, you will help lead our product-focused security efforts. You will embed with our Engineering teams and take our Cloud and Product Security from good to great. We value candidates who have a strong background in Software Engineering and have a track record of both finding security issues in existing infrastructure and working to bake security into future products. To succeed in this role, you must be a ‘builder’ as well as a ‘breaker’.
You will:
- Lead Internal Security efforts