Simplify Logo

Full-Time

Senior Technical Support Engineer

Confirmed live in the last 24 hours

Semgrep

Semgrep

51-200 employees

Vulnerability detection tool for software development

Compensation Overview

$101k - $119k/yr

+ Equity + Benefits

Senior

Remote in USA

Ideally located in the PST Time zone

Category
IT Support
IT & Security
Required Skills
Git
Jenkins
Requirements
  • Excellent written and verbal communication skills.
  • A deep understanding of developer workflows and build systems, including CI / CD environments such as GitHub Actions, GitLab, Circle CI, Jenkins, and Buildkite and SCM environments such as Git, SVN, Perforce etc.
  • Familiarity with Web Application Security concepts including OWASP Top 10.
  • Basic understanding of API and Webhooks.
  • A genuine interest and passion for helping solve problems, with a high degree of empathy for the customer experience.
  • 2+ years of experience working in customer support - Technical support experience is a plus.
Responsibilities
  • Understand, reproduce and resolve complicated technical issues that our customers have raised.
  • Own each customer question from initial creation to resolution.
  • Manage support tickets to ensure issues are recorded, tracked, resolved, and follow-ups are done in a timely manner.
  • Be the voice of the customer and helping prioritize recurring feature requests from our customers with our product and engineering teams.
  • Contribute to building up a best-in-class technical support function, including contributing to our documentation and writing knowledge base articles, writing blogs, or designing integrations between tools.
  • Participate in on-call duties.
  • Lead and improve Support operations to help Semgrep grow as a business - these include systems, process, and training improvements.
Desired Qualifications
  • Prior experience in a fast-paced, tech environment is helpful.
Semgrep

Semgrep

View
Website

Semgrep provides a software solution that helps security engineers and developers find and fix vulnerabilities in their code before it is deployed. The tool integrates into existing workflows and ticketing systems, offering actionable insights that allow developers to trust and act on the results. A standout feature of Semgrep is its ability to significantly reduce false positives in open-source vulnerabilities by up to 98% through reachability analysis, ensuring that only real threats are flagged. The tool is designed for speed, with average scan times of less than 5 minutes and median continuous integration (CI) scan times of just 10 seconds, which enhances productivity for engineering teams. Semgrep targets engineering teams looking for an efficient way to secure their software development life cycle (SDLC) processes, and it likely operates on a subscription-based model for access to its services.

Company Size

51-200

Company Stage

Series D

Total Funding

$193M

Headquarters

San Francisco, California

Founded

2017

Simplify Jobs

Simplify's Take

What believers are saying

  • Increased demand for integrated security solutions in CI/CD pipelines boosts Semgrep's market relevance.
  • The rise of supply chain attacks heightens the need for Semgrep's third-party dependency detection.
  • The shift towards DevSecOps aligns with Semgrep's focus on developer-friendly security tools.

What critics are saying

  • Increased competition from Snyk and GitHub's CodeQL could impact Semgrep's market position.
  • Over-reliance on funding rounds may lead to financial instability if future rounds falter.
  • Rapid technological changes in cybersecurity could render Semgrep's tools obsolete without innovation.

What makes Semgrep unique

  • Semgrep reduces false positives in vulnerabilities by up to 98% with reachability analysis.
  • The tool integrates seamlessly into existing workflows, enhancing SDLC processes for engineering teams.
  • Semgrep's average scan time is under 5 minutes, with a median CI scan time of 10 seconds.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Health Insurance

Paid Vacation

401(k) Retirement Plan

Professional Development Budget

Flexible Work Hours

Remote Work Options

Growth & Insights and Company News

Headcount

6 month growth

-2%

1 year growth

-1%

2 year growth

12%
Silicon Valley Journals
Feb 5th, 2025
Semgrep Raises $100M Series D Funding Round

Semgrep, a leading application security platform, has secured $100 million in Series D funding, led by Menlo Ventures with participation from existing

Semgrep
Apr 19th, 2023
Semgrep, a code & supply chain security search engine, raises Series C

Announcing our $53M Series C led by Lightspeed Venture Partners

R2C
May 11th, 2022
R2c launched DeepSemgrep for Java and Ruby on May 11th 22'.

Recognizing the value of deeper vulnerability detection, today R2c is announcing DeepSemgrep for Java and Ruby.

R2C
Oct 21st, 2021
R2c is developing Semgrep

When R2c began developing Semgrep that was its main focus, and R2c knew that lightweight static analysis, based on syntax-aware matching, would excel at enforcing secure defaults.

TechCrunch
Jul 7th, 2021
r2c raises $27M to scale its security-focused code analysis service

This morning r2c, a startup building a SaaS service around the Semgrep open-source project, announced that it has closed a $27 million Series B. Felicis led the round, which the company said was a pre-emptive deal.