Semgrep

Company Overview and Mission

Semgrep is a code security company on a mission to make it expensive to exploit software. Founded in 2017, the company aims to profoundly improve software security by providing developers with tools to find and fix vulnerabilities before they ship. Semgrep is the creator of the popular open-source static analysis tool of the same name, which is used by leading technology companies like Figma, Dropbox, and Snowflake.

What the Company Does (Products/Services)

Semgrep offers a comprehensive AppSec platform that helps developers write secure code. Their products include Semgrep Code, which finds bugs and security vulnerabilities; Semgrep Supply Chain, which secures open-source dependencies; Semgrep Secrets, which detects exposed credentials in code; and the newly launched Semgrep Multimodal, which combines AI reasoning with rule-based detection. The platform supports over 40 programming languages and integrates with popular CI/CD tools like GitHub and GitLab.

Technology Stack and Engineering Culture

Semgrep's technology is built around its powerful open-source static analysis engine. The company has a strong engineering culture that values speed, audacity, and a user-centric mindset. They operate with a sense of urgency, embrace debate, and are passionate about their mission. Their values include honesty, humility, inclusivity, and a growth mindset. They have a weekly release cycle, constantly shipping new features and improvements to their products.

Work Environment and Benefits

Semgrep offers a remote-first work environment with a globally distributed team. They are committed to creating an inclusive and supportive workplace where everyone is valued and respected. While specific benefits are not detailed, the company's strong funding and rapid growth suggest a competitive compensation and benefits package. They are actively hiring for a variety of roles across all departments.

Why Someone Should Work There

Working at Semgrep is an opportunity to be at the forefront of code security. You would be joining a passionate and talented team that is dedicated to making a real impact on the software development lifecycle. The company is well-funded, has a strong open-source community, and is used by some of the world's leading technology companies. If you are passionate about security and want to work on a product that empowers developers to write more secure code, Semgrep is an excellent place to be.

Key Roles They Typically Hire For

Semgrep is hiring for a wide range of roles, including: Data Scientist, Senior Technical Account Manager, Marketing Operations Manager, Staff AI Product Engineer, and Security Research Manager.