Staff Security Advocate
147500 - 199500 USD per year
Company:Semgrep
Location:Arizona, California, Colorado, Connecticut, District of Columbia, Florida, Georgia, Illinois, Maryland, Massachusetts, Michigan, Missouri, Nebraska, New Jersey, New York, North Carolina, Oregon, Tennessee, Texas, Virginia, Washington, and Wisconsin
Languages:English
Seniority level:Staff, 8+ years
Experience:8+ years
Skills:
PythonSoftware DevelopmentCloud ComputingCybersecurityJavaJavascriptAPI testingGoCI/CDDevOps
Requirements:
8+ years of hands-on experience identifying, analyzing, and remediating security vulnerabilities. Proven track record of security research contributions. Deep understanding of OWASP Top 10, secure coding practices, and vulnerability classes. Familiarity with application security testing methodologies (SAST, DAST, IAST). Strong programming skills in Python, JavaScript, Java, Go. Experience with CI/CD pipelines, containerization, infrastructure as code, cloud deployment, and generative AI. Ability to translate complex technical concepts into user-friendly explanations. Exceptional written and verbal communication abilities. Proven public speaking experience. Experience building and nurturing technical communities. Ability to speak with compassion and empathy to all levels. Previous developer relations role (e.g., developer advocate, technical evangelist).
Responsibilities:
Partner with security researchers to investigate security trends. Publish original research, proof-of-concepts, and detailed analysis. Create compelling technical content (presentations, blog posts, videos). Engage with security practitioners and development teams. Lead technical workshops and training sessions. Cultivate relationships with influencers in DevSecOps and AppSec. Serve as the voice of the community to product teams. Beta test products and provide user experience feedback.
