Senior Security Operations Engineer - Incident Response

Summary

Join Samsara's Security Operations Team and play a critical role in safeguarding the company by monitoring and responding to security events, leading security incidents, and conducting investigations. You will own the end-to-end lifecycle of security incidents, coordinating cross-functional response efforts and ensuring resolution in alignment with internal SLAs. This role also involves contributing to runbook creation, workflow automation, and process refinement. You will collaborate with a global team, fostering operational excellence and problem-solving. The ideal candidate has deep experience in security engineering, incident response, and communication, along with proficiency in Python and experience with SIEM tools. Samsara offers a competitive compensation package and benefits.

Requirements

• Deep experience in Security Engineering spanning 7+ years, with a strong focus on Security Incident Response over the last 4+ years
• Ability to communicate investigative findings and strategies to technical staff, executive leadership, and legal
• Ability to build scripts or tools to support Samsara’s investigation processes, with proficiency in Python
• Mentor and train security operation engineers on data collection, analysis, and reporting technical analysis
• Practical experience acting as a lead during security incident response, including monitoring and triaging alerts, and coordinating across teams
• Understanding of analysis and forensics techniques on macOS, Windows, and Linux
• Experience utilizing SIEM tools to perform log reviews
• Experience in cloud architecture and security (AWS, GCP) and cloud-based services
• Be comfortable working in the Pacific (PST) OR Eastern (EST) Time Zones

Responsibilities

• Monitor security events and provide technical analysis on alerts
• Lead information security incidents and employee investigations by developing the incident response strategy, lead the execution through incident closure, while providing incident updates to key stakeholders throughout the incident
• Deliver security guidance clearly and concisely for incident response and insider threat initiatives
• Coordinate the building of services, capabilities, integrations, and implementations of technologies to support security operations, incident response, and insider threat
• Champion, role model, and embed Samsara’s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices

Preferred Qualifications

• 4+ years of experience working on insider threat initiatives or employee investigations
• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field
• GIAC Certified Incident Handler (GCIH) Certification
• Familiarity with common security frameworks and standards, including NIST Cybersecurity Framework, ISO 27001, FedRAMP

Benefits

Full time employees receive a competitive total compensation package along with employee-led remote and flexible working, health benefits, Samsara for Good charity fund, and much, much more