Tech Stack

Description

You will lead and maintain Samsara's threat modeling program, collaborate with engineering teams to remediate vulnerabilities, and contribute to security compliance reporting. Your work directly improves the safety and reliability of IoT solutions for physical operations industries.

Requirements

• 6+ years of relevant experience in application or product security and threat modeling in an enterprise environment
• Deep familiarity with OWASP Top Ten, STRIDE (or equivalent), and MITRE ATT&CK
• Experience defining and driving SDLC adoption with business-focused engineers
• Experience managing Bug Bounty programs such as Bug Crowd
• Experience coding with Python or GoLang

Responsibilities

• Lead and own ongoing operation and maintenance of Samsara's threat modeling program
• Detect and raise risks within the Samsara ecosystem, recommending best next steps
• Work with the Vulnerability TPM to generate monthly and quarterly compliance reports
• Collaborate with engineering teams to track and support remediation of vulnerabilities
• Participate in security incident investigations and contribute to process improvements