Empowering data teams with unified analytics
Databricks, headquartered in San Francisco, California, is a unified data analytics platform that simplifies data engineering and collaborative data science. Trusted by over 7,000 organizations, including Fortune 500 companies like Comcast and Shell, Databricks has raised $3.5 billion in funding, ac...
Databricks offers competitive salaries, equity options, generous PTO policies, and a remote-friendly work environment. Employees also benefit from a l...
Databricks fosters a culture of innovation with a strong emphasis on data-driven decision-making. The company values collaboration across teams and en...
Databricks • Remote - Netherlands
Databricks is hiring a Staff Product Security Engineer to enhance the security of their software development lifecycle. You'll focus on security design reviews, threat modeling, and vulnerability management. This role requires expertise in security practices and tools.
You have extensive experience in product security, with a strong focus on enhancing the security of software development lifecycles. Your background includes conducting security design reviews and threat modeling, ensuring that security is integrated into every stage of product development. You are skilled in manual code reviews and exploit writing, allowing you to identify and mitigate vulnerabilities effectively. You have experience working with incident response and vulnerability response programs, demonstrating your ability to handle security incidents and reports efficiently. Your familiarity with SAST and DAST tools enables you to evaluate security risks and automate assessments, contributing to a robust security posture. You are comfortable collaborating with global teams and have a proactive approach to security compliance, including frameworks like FedRamp, PCI, and HIPAA.
As a Staff Product Security Engineer at Databricks, you will play a crucial role in left-shifting security processes within the software development lifecycle. You will manage SDLC functions for various features and products, ensuring that security is prioritized from the outset. Your responsibilities will include conducting thorough security design reviews and developing threat models to identify potential vulnerabilities early in the development process. You will perform manual code reviews and write exploits to test the security of applications, providing valuable insights to the development teams. Additionally, you will support incident response and vulnerability response programs, collaborating with other security teams to address any security incidents that arise. You will leverage the results of SAST tools to identify false positives and file defects for genuine issues, enhancing the overall security of Databricks services. Your work will also involve maintaining and enhancing the automation framework for security assessments, ensuring compliance with various security standards.
At Databricks, you will be part of a dynamic and innovative team dedicated to improving product security. We offer a flexible remote work environment, allowing you to collaborate with colleagues across different regions. You will have the opportunity to work on cutting-edge security practices and contribute to the development of secure software solutions. Our culture emphasizes continuous learning and professional growth, providing you with the resources and support needed to advance your career in product security. Join us in our mission to enhance the security of our products and protect our customers' data.
Apply now or save it for later. Get alerts for similar jobs at Databricks.
