Leads a team of security researchers to develop high-quality detection rules for secrets, code, and supply chain vulnerabilities. Drives roadmap, automation with AI, and improves coverage accuracy; requires 5+ years security tech lead experience and 2+ years people management.
255k – 319k
Hybrid5+ YOESecurity Engineering
About the role
Responsibilities
Hire, develop, and grow the team, cultivating a productive, engaging, diverse, and inclusive work environment that aligns with Semgrep's core values
Work closely with product management, sales, and product development teams across all product lines
Understand, measure, and elevate the velocity and quality of Semgrep detection rule delivery
Prioritize your team’s work and schedules, balancing current product needs with strategic research that will help scale the team through AI and automation
Contribute to the technical direction and to the research (depending on your profile)
Directly impact the security posture of many customers by improving the quality of our detection
Requirements
2+ years experience as a People Manager
5+ years experience as a Tech Lead in the Security space: App Sec Engineer, Security Researcher, Vulnerability Researcher, etc
Comfortable working in a fast-paced environments where prototypes are rapidly iterated or discarded
Comfortable tech leading and mentoring Security Researchers
Excellent proactive communication skills, both verbal and written
Fit in our low-ego high-impact culture
Excitement about building for customers, iterating fast, and seeing solutions solve real developer problems
Curiosity and a love of new technologies, especially AI/ML
Comfortable writing code, especially in Python or Rust
Example Projects
Improve and scale Semgrep’s automated pipelines for generating and validating high-confidence detection rules
Lead a team to identify and analyze vulnerability patterns (CVEs or from first-principle) across languages and ecosystems, and turn those into detection rules
Put in place unified measurements for performance of detection to ensure the best quality across our customers
Compensation
Estimated starting annual salary range: $255,200 to $319,000 USD
Total compensation may include equity, variable compensation, and benefits
Builds security primitives, platform mitigations, and leads vulnerability remediation for Ramp's financial platform. Partners with engineers for secure-by-design solutions. Requires 5+ years software experience, 2+ years in security/infrastructure.
258k – 355k
Hybrid5+ YOESecurity Engineering
Security Engineer, Application Security
OpenAISan Francisco, CA +2
Identifies and mitigates application security vulnerabilities through code reviews, penetration testing, and security assessments. Collaborates with development teams to integrate secure coding practices and provides guidance on threats and remediation.
260k – 385k
HybridSecurity Engineering
Offensive Security Engineer
PerplexitySan Francisco, CA +1
Offensive Security Engineer conducts red team operations, penetration testing, and AI/ML attack simulations on cloud infrastructure, applications, and pipelines. Requires 5+ years experience in offensive security, expertise in cloud/web/K8s security, and custom tooling in Python/Go.
Safeguards Enforcement Analyst focused on account takeover and credential abuse. Investigate compromise incidents, design remediation workflows, partner with engineering on detection, enforce AI usage policies, and develop scalable enforcement programs for platform safety.
245k – 285k
HybridSecurity Engineering
Security Engineer, Detection & Response
Scale AINew York, NY +3
Senior Security Engineer focused on building detection systems, incident response automation, and maturing telemetry pipelines across cloud environments. Requires 5+ years in detection engineering or security operations and production-grade coding skills.