Staff Product Security Engineer

September 7

☕ Washington – Remote

Although this job is listed in Washington, this company may be open to hiring remote in other states.

💵 $142.5k - $249.4k / year

⏰ Full Time

🔴 Lead

👮‍♂️ Cybersecurity / Security Engineer

🦅 H1B Visa Sponsor

Apply Now

Receive Emails with Similar Jobs

Databricks

WebsiteLinkedInAll Job Openings

Artificial Intelligence • Enterprise • SaaS

Databricks is a data and AI company that provides a unified platform for data engineering, machine learning, and analytics. It focuses on optimizing big data processing and helps organizations leverage Apache Spark to deliver deeper insights and powerful data-driven applications. Databricks also offers robust tools and seamless integration for machine learning operations.

1001 - 5000 employees

Founded 2013

🤖 Artificial Intelligence

🏢 Enterprise

☁️ SaaS

💰 $1.6G Series H on 2021-08

📋 Description

• Full SDLC Support for new product features being developed in ENG and non-ENG teams. This would include Threat Modeling, Design Review, Manual Code Review, Exploit writing, etc. • Work with other security teams to provide support for Incident Response and Vulnerability Response as and when needed. • Work with the results of SAST tools to help evaluate and identify false positives and file defects for real issues. • Work on DAST tools and related automation for auto-assessment and defect filing. • Maintain the automation framework and add new features as needed to support different security compliances that Databricks may want to get into – FedRamp, PCI, HIPPA, etc. • Prioritize security from a risk management perspective, rather than an absolute textbook version. • Help develop and implement security processes to improve the overall productivity of the product security organization and the SDLC process in general

🎯 Requirements

• 3-10 years Experience with the Threat Modeling process and ability to find design problems based on a block diagram of data flow. • Solid understanding on at least two of the following domains - Web Security, Cloud Security, Systems Security and Applied Cryptography. • Proficient with one or more of Programming languages ( Python/Java/Scala/JavaScript) and ability to read code to identify security defects. • Strong skills on scripting and automation on exploits • Fuzzing skills are good to have. • Exploit writing skills is a positive and greatly required.

🏖️ Benefits

• At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region, please visit https://www.mybenefitsnow.com/databricks