Senior DevTools Engineer

About the role

DevTools will be a new discipline under our existing TechOps team. TechOps' mission is to ensure Semgrep's distributed workforce has the right tools to get their job done. We fall under Semgrep Engineering and value automating processes, being transparent, and minimising friction. DevTools' focus will be on helping Semgrep build better software, faster, and will be designed to support both our traditional engineers, and our growing cohort of'citizen developers'. DevTooling has traditionally been about helping engineers build and ship, but LLMs have minted a whole new cohort of 'citizen developers' outside of engineering. At Semgrep these folk have already built apps delivering real value - budget forecasting, customer health monitoring, prospect profiling tools - the list goes on. We want to support these cohorts with AI-ready tools, processes, and infrastructure - and then get out of their way. You're right for this role if you've seen the good, bad, and ugly of developer experiences and you want to have a shot at using LLMs to apply those lessons. This role requires a mix of skills across developer tooling, LLMs, cloud infrastructure, technical operations, and security. We don't expect deep experience across all of these, but we do want someone who is keen to tackle them all. You will: Design, build, and help manage our cloud-build environments - and make them ready for agentic development. We're moving development off laptops and into centralized environments and we want to take the opportunity to improve both developer experience and security. Build the golden path for our citizen developers . LLMs have meant a broad swath of non-engineers want to build and deploy apps. You'll build the infrastructure to help them do it in a way that provides security, reliability, and redundancy. Help get our existing developer processes 'AI-ready'. You'll partner with Engineering to make sure our tools and codebases are fit for agentic workflows and help build and deploy developer tooling, infrastructure and processes to support this. Bridge Engineering, Security, and TechOps , and be the person who ensures our development processes fit the demands of all three of these stakeholders. You are ideal for this role if: You have 5+ years of software engineering. We want to see significant experience in developer tooling, software engineering or infrastructure engineering roles. You've owned real cloud infrastructure. We expect experience designing, deploying and maintaining AWS (or GCP) infrastructure that handles real-world loads. You have opinionated takes on improving DevEx. We want someone who has seen the good and the ugly, and is ready to apply those lessons. You're AI-pilled or keen to experiment . That's basically where we are, so let's all go experiment with this Agentic stuff. You're comfortable with Python and TypeScript. This is what your customers will be shipping. You're service-orientated. Semgrep employees will be your customers. And some 'nice to haves': Cloud security, container security, and supply chain threats. Semgrep Code (or other SAST tooling) Semgrep Supply Chain (or other SCA tools)

Benefits

Additional Information

About Semgrep Semgrep, the leader in code security for builders, empowers invention without friction. Teams catch, flag, and fix real issues before they ship, powered by security that learns as they build. Semgrep secures code as it's written and provides guardrails that pave the road for developers to move fast and stay secure. Built for builders and trusted by security, Semgrep lives where developers work, delivering fixes without breaking flow, and giving security teams visibility, control, and confidence. Semgrep gets smarter as you build, with AI that learns your context to cut false positives and prioritize reachable vulnerabilities, validated by 95% of security reviewers across 6M+ findings. Semgrep makes zero false positives a reality with AppSec teams triaging 80% fewer false positives across Code and Supply Chain, dramatically shrinking the backlog. Founded in San Francisco and backed by Menlo Ventures, Felicis Ventures, Lightspeed Venture Partners, Redpoint Ventures, and Sequoia Capital, Semgrep is recognized by Gartner in Application Security Testing and is trusted by leading organizations, including Vanta, Lyft, and Dropbox. Learn more at semgrep.dev .

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at semgrep? Share your experience