About Sentry
Bad software is everywhere, and we’re tired of it. Sentry is on a mission to help developers write better software faster so we can get back to enjoying technology.
With more than $217 million in funding and 100,000+ organizations that believe we’re on to something, we're building performance and error monitoring tools that help companies like Disney, Microsoft, and Atlassian spend less time fixing bugs and more time building products.
Sentry embraces a hybrid work model across our global hubs, with Mondays, Tuesdays, and Thursdays set as in-office anchor days to encourage meaningful collaboration. If you like to selfishly build things that make your digital life better, come help us build the next generation of software monitoring tools.
About The Role
The Security Team is responsible for securing all things Sentry: our customers, our code, and everything in between. We are a small but growing team with broad scope, high trust, and the autonomy to tackle hard security problems with creativity and an engineering mindset. We work at a company with a strong developer culture, building a product that millions of developers genuinely love and rely on. That context shapes everything about how we operate.
As a Senior Security Engineer on this team, you'll work across application and platform security domains. You’ll own and shape the practices that keep Sentry secure as we grow: security reviews, threat modeling, vulnerability management, and embedding secure coding practices into an engineering organization that cares about doing things right. You'll partner closely with product and engineering teams to influence how features are designed and built from the start. You will work as a technical collaborator who helps make the secure path the obvious one. As Sentry expands our agentic product capabilities and development practices, you'll also find yourself at the frontier of a new set of security challenges.
In this role, you will
- Own and mature Sentry's security review program. From secure code review, to architecture review, and threat modeling. You will build processes, tooling, and culture which makes security a natural part of how we ship and operate.
- Influence mature vulnerability management practices. Intake, triage, prioritization, remediation tracking, and management of our bug bounty and responsible disclosure program.
- Champion secure-by-design principles. Partner with engineering and product teams to embed security early in the development lifecycle and integrate security tooling into developer and CI/CD workflows.
- Validate and reproduce application and infrastructure security findings. Scanning, manual testing, coordinate penetration testing and vulnerability validation across Sentry's application, SDKs and cloud-based platform.
- Evaluate and respond to emerging threats relevant to application security Sentry. We build and operate a complex application and cloud environment, including the novel attack surface introduced by Sentry's agentic product features and AI-assisted engineering practices.
You’ll thrive in this role if you
- Enjoy operating cross-functionally, building relationships, and influencing with technical expertise, and shaping how security gets done across a fast-moving engineering organization.
- Get excited when something new lands on your desk, be it an interesting vulnerability, a sweet exploit, a novel agentic architecture, an unfamiliar cloud primitive, or a bug class you haven't seen before.
- Love working in an developer-forward culture where your colleagues are builders who care deeply about code quality and customer satisfaction.
- Reach for automation first, you'd rather build a scalable, systematic solution to a security problem than solve it manually a hundred times.
- Thrive with real ownership, you prefer to build and drive work end-to-end, you're energized by the autonomy that comes with being on a small, high-trust team.
Qualifications
- 5+ years of industry experience designing, building, securing complex applications and large-scale distributed cloud systems
- Degree in Computer Science or a related field, equivalent training, or professional experience
- Direct experience with security reviews, SDLC practices, secure CI/CD, architecture reviews, threat modeling, vulnerability management, bug bounty and responsible disclosure programs
- Experienced and comfortable programming in at least one language, must be comfortable reviewing Python, Typescript, Go, Rust applications
- Familiarity with using distributed cloud technology (AWS, GCP, Azure, Kubernetes, Docker, Terraform, etc.) and securing those technologies (cloud networking, IAM, etc.)
- A collaborative approach to problem solving paired with strong written and verbal communication
Not sure if you meet 100% of the qualifications? We encourage you to apply anyway. We're interested in people are excited about this opportunity and eager to grow.
The base salary range (or hourly wage range, if applicable) that Sentry reasonably expects to pay for this position is $200,000 to $295,000 CAD. A successful candidate’s actual base salary (or hourly wage) amount will be determined by a variety of relevant factors including, without limitation, the candidate’s work location, education, work and other relevant experience, skills, and job-related knowledge. A successful candidate will be eligible to participate in Sentry’s employee benefit plans/programs applicable to the candidate’s position (including incentive compensation, equity grants, paid time off, and group health insurance coverage). See Sentry Benefits for more details about the Company’s benefit plans/programs.
Equal Opportunity at Sentry
Sentry is committed to providing equal employment opportunities to its employees and candidates for employment regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, or other legally-protected characteristic. This commitment includes the provision of reasonable accommodations to employees and candidates for employment with physical or mental disabilities who require such accommodations in order to (a) perform the essential functions of their jobs, or (b) seek employment with Sentry. We strive to build a diverse team, with an inclusive culture where every teammate can thrive. Sentry is an open-source company because we believe that everyone, everywhere, should have the ability and tools to make great software. Software should be accessible. That starts with making our industry accessible.
If you need assistance or an accommodation due to a disability, you may contact us at accommodations@sentry.io.
Want to learn more about how Sentry handles applicant data? Get the details in our Applicant Privacy Policy.