Senior Security Engineer - Application Security

Summary

Join Samsara, a pioneer in the Connected Operations™ Cloud, as a Senior Security Engineer. You will contribute to company-wide initiatives, including secure software development, vulnerability management, and threat modeling. Partner with engineering and product teams to mitigate security risks and drive secure-by-default practices. This highly visible role requires hands-on technical expertise and strategic influence, shaping the future of application security at Samsara. You will act as a subject matter expert in Python and Go security, and conduct threat modeling sessions. Success in this role hinges on defining success, influencing across domains, and delivering scalable solutions. Samsara offers opportunities for career development and impact in industries that power our global economy.

Requirements

• 4–6+ years of experience in application security, product security, or a related security engineering field
• Strong experience in at least one programming language, including deep familiarity with Python or Go security best practices
• Demonstrated ability to perform and lead threat modeling exercises and translate risks into actionable recommendations
• Experience with SAST/SCA tools such as Semgrep, CodeQL, or Snyk, and integrating them into developer workflows
• Hands-on knowledge of vulnerability management tools and workflows, including triage, remediation, and reporting practices
• Familiarity with modern CI/CD practices and experience embedding security testing into development pipelines
• Strong collaboration and communication skills with experience partnering across teams and disciplines
• Working knowledge of cloud environments (especially AWS) and infrastructure-as-code practices (Terraform preferred)

Responsibilities

• Participate in expanding Samsara’s enterprise-wide application security strategy, covering both product and internal systems
• Collaborate on the design and implementation of scalable security controls including static code analysis (SAST), software composition analysis (SCA), and secret scanning pipelines
• Perform in-depth threat models of critical systems and features, working with engineering and infrastructure teams to mitigate identified risks
• Act as a subject matter expert in Python and Go security practices—reviewing code, building secure patterns, and educating engineers across the business
• Partner with developers to remediate high-impact vulnerabilities and build preventative controls that reduce recurring risk
• Participate in our responsible disclosure and bug bounty program
• Influence the design and implementation of secure CI/CD practices, including shift-left testing, developer feedback loops, and supply chain integrity
• Contribute to the Security Engineering team’s technical strategy, roadmap planning, and engineering culture
• Champion, role model, and embed Samsara’s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices

Preferred Qualifications

• Experience managing application security within a regulated or compliance-heavy environment (e.g., FedRAMP, SOC 2)
• Familiarity with Tines, AWS Lambda, or similar automation tools for orchestrating security workflows
• Contributions to open source security tooling or thought leadership in the AppSec community
• Experience defining internal security standards or secure coding guidelines at scale

Benefits

Full time employees receive a competitive total compensation package along with employee-led remote and flexible working, health benefits, Samsara for Good charity fund, and much, much more