Senior SecDevOps Engineer

Samsara

Samsara

Software Engineering
London, UK
Posted 6+ months ago

Who we are

Samsara (NYSE: IOT) is the pioneer of the Connected Operations™ Cloud, which is a platform that enables organizations that depend on physical operations to harness Internet of Things (IoT) data to develop actionable insights and improve their operations. At Samsara, we are helping improve the safety, efficiency and sustainability of the physical operations that power our global economy. Representing more than 40% of global GDP, these industries are the infrastructure of our planet, including agriculture, construction, field services, transportation, and manufacturing — and we are excited to help digitally transform their operations at scale.

Working at Samsara means you’ll help define the future of physical operations and be on a team that’s shaping an exciting array of product solutions, including Video-Based Safety, Vehicle Telematics, Apps and Driver Workflows, Equipment Monitoring, and Site Visibility. As part of a recently public company, you’ll have the autonomy and support to make an impact as we build for the long term.

Recent awards we’ve won include:

Glassdoor's Highest-Rated Tech Companies for Culture and Values 2023

Great Place To Work Certified™ 2023

Best Place to Work by Built In 2023

Financial Times The Americas’ Fastest Growing Companies 2023

Deloitte Fast 500 Companies

We see a profound opportunity for data to improve the safety, efficiency, and sustainability of operations, and hope you consider joining us on this exciting journey.

About the role:

Samsara’s Security DevOps team is responsible for the security, compliance and continual maturation of Samsara’s build pipelines and public cloud networks. Using industry best practice approaches, we will pave the path toward secure-by-default configurations, easing security and compliance burdens for our partnering product teams.

You should apply if:

  • You want to impact the industries that run our world: Your efforts will result in real-world impact—helping to keep the lights on, get food into grocery stores, reduce emissions, and most importantly, ensure workers return home safely.
  • You are the architect of your own career: If you put in the work, this role won’t be your last at Samsara. We set up our employees for success and have built a culture that encourages rapid career development, countless opportunities to experiment and master your craft in a hyper-growth environment.
  • You’re energized by our opportunity: The vision we have to digitize large sectors of the global economy requires your full focus and best efforts to bring forth creative, ambitious ideas for our customers.
  • You want to be with the best: At Samsara, we win together, celebrate together and support each other. You will be surrounded by a high-calibre team that will encourage you to do your best.

Click here to learn about what we value at Samsara.

In this role, you will:

  • Own Build Pipeline Security:
    • Implement Security as Code, integrating scanners, linters and paved path security tools into the CICD pipeline
    • Maintain “golden images” used to provision AWS hosts (AMIs) and containers (base images)
    • Create and maintain the build automation architecture for non-Engineering teams
  • Partner with other platform teams to mature Samsara’s pre-deployment test methodologies
  • Take ownership and/or lead the engineering responsibility for multiple components in a project
  • Evaluate options and provide recommendations on scope and scale of effort required to develop solutions
  • Champion, role model, and embed Samsara’s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices

Minimum requirements for the role:

  • 5+ years of experience as a security engineer, software engineer, site reliability engineer, or security consultant
  • 3+ years experience with CI/CD tools - GitHub Actions and/or BuildKite
  • Strong ability to automate through scripting languages such as Python, Bash, Go, etc.
  • Experience with Security as Code (SAST/ SCA security tools) and Infrastructure as Code (Terraform, Ansible, etc)
  • Experience in implementing and managing containerized applications using Docker and orchestration platforms like Kubernetes, with security considerations in mind.
  • Experience securing cloud networks (VPCs, ACLs, Security Groups, iptables)
  • Experience with AWS EC2. Additional services a plus.
  • Understanding of security weaknesses, exploits, attacks and mitigations

An ideal candidate also has:

  • Experience with multiple Public Cloud providers (AWS, GCP, Azure)
  • Strong communication skills and desire to collaborate across teams

At Samsara, we welcome everyone regardless of their background, race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, etc. We depend on the unique approaches of our team members to help us solve complex problems. We are committed to increasing diversity across our team and ensuring that Samsara is a place where people from all backgrounds can make an impact.

Accommodations

Benefits

Full time employees receive an above market total compensation package along with employee-led remote and flexible working, health benefits, Samsara for Good charity fund, and much, much more. Take a look at our Benefits site to learn more.

Flexible Working

At Samsara, we have adopted a flexible way of working, enabling teams and individuals to do their best work, regardless of where they’re based. We value in-person collaboration and know a change of scenery and quiet space to work is welcomed from time to time, but also appreciate that the world of work has changed. Our offices remain open for those who prefer to collaborate or work in-office, but we also encourage fully remote applicants. As most roles are not required to be in the office, we are able to hire remotely where Samsara has an established presence. If a role is required to be in a certain location and candidates do not have work authorization for that location, Samsara will conduct an immigration assessment. If the role is not required to be in a specific location, Samsara will move forward with the remote location that works best for the business. All offers of employment are contingent upon an individual’s ability to secure and maintain the legal right to work at the company.

Please note: Samsara does not accept agency resumes and is not responsible for any fees related to unsolicited resumes. Please do not forward resumes to Samsara employees.