Senior Program Analysis Engineer

Summary

Join Semgrep's Supply Chain team as a Program Analysis Engineer and lead the development of advanced code analysis capabilities for dependency vulnerability detection. You will enhance Semgrep's analysis capabilities, advocate for architectural decisions, help set technical and product direction, and mentor other engineers. The role requires 5+ years of experience in program analysis, experience with functional programming, and technical leadership experience. You will work on projects like enhancing callgraph analysis and identifying undeclared dependencies. Semgrep offers a competitive salary, equity, benefits including comprehensive health plans, generous vacation time, 401k, and learning stipends. The company values diversity and a positive work environment.

Requirements

• 5+ years of experience with program analysis, static analysis tools, or compiler development
• Experience working in a functional programming language (OCaml, Haskell)
• Technical leadership experience guiding cross-functional teams through complex engineering initiatives
• Passion for shipping quickly and safely, caring deeply about solving real problems for our users and allowing them to depend on us
• Strong understanding of software dependency management across multiple ecosystems
• Excellent and proactive communication, both verbal and written

Responsibilities

• Make fundamental improvements to Semgrep’s analysis capabilities to enhance the supply chain product offering
• Advocate for architectural decisions that make our code easy to reason about and allow us to scale with an exponentially growing number of users
• Help set technical and product direction, collaborating with the team to determine the future of the product, what features to build, and how to build them
• Help set the technical roadmap for our foundational analysis, listening to our users as well as program analysis engineers and security researchers across the company
• Understand our product roadmap, advocating for improvements to semgrep’s static analysis on behalf of our users and to address supply-chain-specific product gaps
• Advise and mentor other engineers via thoughtful code reviews, planning discussions, technical documentation, and formal mentorship

Benefits

• Salary Range : $166,000-238,000 USD
• Equity
• Comprehensive health plans
• Generous vacation time
• 401k
• Learning stipends