Security Engineer
@ Sourcegraph

Hybrid
$144,000
Hybrid
Full Time
Posted 11 hours ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXXX XXXXXXXXXXX XXXXXX******* @sourcegraph.com
Recommended after applying

Job Details

About Sourcegraph Security Engineer

At Sourcegraph, our mission is to enable everyone to code. As a Security Engineer, you will work on vulnerability management, application security testing, vulnerability scanning automation, bug bounty programs, and security reviews for both application and infrastructure security.

Key Responsibilities

  • Contribute to securing Sourcegraph deployments including sourcegraph.com.
  • Discover, fix, and mitigate infrastructure vulnerabilities.
  • Enhance application security via audits, best practices, and code fixes.
  • Participate in reactive incident response when security events arise.
  • Collaborate with teams to implement secure coding guidelines and threat modeling.

Growth & Timeline

Within one month: Deliver on security goals for private code repositories and update vulnerable components.Within three months: Strengthen policies and collaborate with teams to mitigate customer security concerns, along with career planning.Within six months: Implement secure coding practices, proactive research on attack vectors, threat modeling, and maintain compliance with SOC 2, ISO 27001 & GDPR.

About You

You have practical experience securing SaaS applications, have used defensive security tools, and developed software. You are high agency with excellent communication skills. Nice to haves include startup experience and familiarity with Go, TypeScript, Terraform, Kubernetes, GCP, and AI product security.

Compensation & Benefits

As an IC2-IC3 level role, you are offered above-average salary, equity, and generous perks & benefits with compensation influenced by location zones.

Interview Process

The process includes recruiter and hiring manager screens, technical deep dives, team interviews and a final leadership conversation with a co-founder. The overall process is designed to be thorough yet efficient (<5 hours total).

Key skills/competency

  • Security
  • Vulnerability Management
  • Application Security
  • Infrastructure Security
  • Incident Response
  • Secure Coding
  • Threat Modeling
  • Compliance
  • Automation
  • Collaboration
Apply without a personalized resume

How to Get Hired at Sourcegraph

🎯 Tips for Getting Hired

  • Customize your resume: Align it with security and coding skills.
  • Research Sourcegraph's culture: Study their mission and values.
  • Highlight relevant experience: Emphasize SaaS security and automation.
  • Prepare for technical interviews: Review vulnerability management and incident response.

📝 Interview Preparation Advice

Technical Preparation

Review SaaS security practices and tools.
Practice vulnerability scanning and patching techniques.
Study secure coding and threat modeling methods.
Familiarize with container and cloud security.

Behavioral Questions

Describe a time you solved a security crisis.
Explain your approach to cross-team collaboration.
Share a challenge in managing vulnerabilities.
Discuss how you handle incident response stress.

Frequently Asked Questions