SecDevOps Engineer

About the role:

Samsara’s Security DevOps team is responsible for the security, compliance and continual maturation of Samsara’s build pipelines and public cloud networks. Using industry best practice approaches, we will pave the path toward secure-by-default configurations, easing security and compliance burdens for our partnering product teams.

You should apply if:

• You want to impact the industries that run our world: Your efforts will result in real-world impact—helping to keep the lights on, get food into grocery stores, reduce emissions, and most importantly, ensure workers return home safely.
• You are the architect of your own career: If you put in the work, this role won’t be your last at Samsara. We set up our employees for success and have built a culture that encourages rapid career development, countless opportunities to experiment and master your craft in a hyper growth environment.
• You’re energized by our opportunity: The vision we have to digitize large sectors of the global economy requires your full focus and best efforts to bring forth creative, ambitious ideas for our customers.
• You want to be with the best: At Samsara, we win together, celebrate together and support each other. You will be surrounded by a high-caliber team that will encourage you to do your best. 

Click here to learn about what we value at Samsara. 

In this role, you will: 

• Own Build Pipeline Security:
• Implement Security as Code, integrating scanners, linters and paved path security tools into the CICD pipeline
• Maintain “golden images” used to provision AWS hosts (AMIs) and containers (base images)
• Create and maintain the build automation architecture for non-Engineering teams
• Partner with other platform teams to mature Samsara’s pre-deployment test methodologies
• Champion, role model, and embed Samsara’s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices   

Minimum requirements for the role: 

• 3+ years of experience as a security engineer, software engineer, site reliability engineer, or security consultant
• 2+ years experience with CI/CD tools - GitHub Actions and/or BuildKite 
• Strong ability to automate through scripting languages such as Python, Bash, Go, etc.
• Experience with Security as Code (SAST/ SCA security tools) and Infrastructure as Code (Terraform, Ansible, etc)
• Experience in implementing and managing containerized applications using Docker and orchestration platforms like Kubernetes, with security considerations in mind.
• Experience securing cloud networks (VPCs, ACLs, Security Groups, iptables)
• Experience with AWS EC2. Additional services a plus.
• Understanding of security weaknesses, exploits, attacks and mitigations

An ideal candidate also has:

• Experience with multiple Public Cloud providers (AWS, GCP, Azure)
• Strong communication skills and desire to collaborate across teams
• Excellent problem-solving skills and ability to troubleshoot security-related issues.
• Experience with performance optimization as applied to cloud network infrastructure
• Familiarity with data privacy regulations and compliance