Software Engineer (SAST)

Snyk is the leader in secure AI software development, helping millions of developers develop fast and stay secure as AI transforms how software is built. Our AI-native Developer Security Platform integrates seamlessly into development and security workflows, making it easy to find, fix, and prevent vulnerabilities — from code and dependencies to containers and cloud.

Our mission is to empower every developer to innovate securely in the AI era — boosting productivity while reducing business risk. We’re not your average security company - we build Snyk on One Team, Care Deeply, Customer Centric, and Forward Thinking.

It’s how we stay driven, supportive, and always one step ahead as AI reshapes our world.

Every day, the world gets more digital thanks to tens of millions of developers building the future faster than ever. But with exponential growth comes exponential risk, as outnumbered security teams struggle to secure mountains of code. This is where Snyk (pronounced “sneak”) comes in. Snyk is a developer security platform that makes it easy for development teams to find, prioritize, and fix security vulnerabilities in code, dependencies, containers, and cloud infrastructure — and do it all right from the start. Snyk is on a mission to make the world a more secure place by empowering developers to develop fast and stay secure.
Joining Snyk means embracing our core values: One Team, Care Deeply, Customer Centric, and Forward Thinking. As a member of our team, you’ll have the opportunity to thrive in a dynamic environment where fostering collaboration, leading with empathy, driving business impact, and inspiring trust are at the heart of everything we do.

As a Software Engineer on the Code Rules team, you will work side-by-side with our security researchers to evolve the engine that powers our detections. You will understand and interact with the static analysis (SAST) engine to help us extend its reach and make our rules better, while building the tooling that makes rule writing efficient and scalable.

Your work involves interaction with the engine's internals to simplify how we define patterns, extend its reach to new classes of vulnerabilities, and find ways to innovate on how we detect flaws in complex codebases. We are also leveraging AI to accelerate our own development cycles and to blend it with traditional SAST logic to push the boundaries of what automated tools can find.

• Analyzing, designing and implementing high-quality solutions to problems with well-tested, maintainable code.

• Building systems with the long-term in mind, focusing on good design, robust testing, and sustainability from the perspective of cost and scale.

• Supporting our customers by resolving bugs and customer support escalations.

• Collaborate with Security Researchers to author high-precision detection rules using our proprietary logic and domain-specific languages to identify vulnerabilities across various codebases.

• Building and maintaining tools and frameworks that accelerate the development, testing, and deployment of security rules.

• Researching and implementing ways to enhance vulnerability detection, using static analysis and AI.

• At least 3 years experience in software engineering.

• Proficiency in at least one programming language.

• Experience working with or building static analysis tools (SAST), linters, or compiler-related technologies.

• The ability to understand complex, abstract systems like data-flow engines or abstract syntax trees.

• Strong commitment to code quality, and the value of giving and receiving feedback through code reviews.

• Effective communicator both verbally and in writing. 

• A collaborative approach to problem-solving within a cross-functional team.

• Have a genuine interest in cybersecurity and application security.

• Have experience with AI/ML integration, specifically using LLMs to solve engineering or security problems.

• Have experience with formal methods, static analysis.

We care deeply about the warm, inclusive environment we’ve created and we value diversity – we welcome applications from those typically underrepresented in tech. If you like the sound of this role but are not totally sure whether you’re the right person, do apply anyway!

About Snyk

Snyk is committed to creating an inclusive and engaging environment where our employees can thrive as we rally behind our common mission to make the digital world a safer place. From Snyk employee resource groups, to global benefits that help our employees prioritize their health, wellness, financial security, and a work/life blend, we aim to support our employees along their entire journeys here at Snyk.

Benefits & Programs

• Prioritize health, wellness, financial security, and life balance with programs tailored to your location and role.

• Flexible working hours, work-from home allowances, in-office perks, and time off for learning and self development

• Generous vacation and wellness time off, country-specific holidays, and 100% paid parental leave for all caregivers

• Health benefits, employee assistance plans, and annual wellness allowance

• Country-specific life insurance, disability benefits, and retirement/pension programs, plus mobile phone and education allowances