Match score not available

Senior Security Engineer (Incident Response)

extra holidays
Remote: 
Full Remote
Contract: 
Experience: 
Expert & Leadership (>10 years)
Work from: 

Offer summary

Qualifications:

12+ years experience in Incident Response, Cloud Security Essentials certifications, Broad Security subject matter expertise, Expertise in core IR skills, Knowledge of SIEM and SOAR systems.

Key responsabilities:

  • Lead incidents, investigations, and security initiatives
  • Communicate technical decisions and mentor junior responders
  • Triage and respond to security events and alerts
  • Build automation for incident response improvements
  • Participate in 24x7 operations and on-call schedule
Databricks logo
Databricks Computer Software / SaaS XLarge https://databricks.com/
5001 - 10000 Employees
See more Databricks offers

Job description

RDQ324R4

The Incident Response team's mission is to respond to security threats, incidents and investigations to protect our customers, employees and enterprise data in an efficient and standardised manner. We're a tight-knit team of security incident responders and incident handlers doing "Security for Databricks on Databricks", using our own platform to create near-real-time log analytics, alerting and forensics.

You will be an individual contributor on the Security Incident Response (IR) team at Databricks, reporting to the Head of Incident Response. You will be responsible for leading incidents, investigations and security initiatives from postmortems. You will be a security multiplier and help the team scale security incident response at Databricks as amongst the first members of the team in India.

The impact you will have:

  • You will identify problems with ambiguous requirements (lack of clarity, inconsistencies, technical limitations) for their your work , and communicates these issues early to help course-correct
  • You will communicate technical decisions through design docs, tech talks and mentor junior security responders via security guidance, design reviews and code reviews.
  • You will triage and respond to security events and alerts by understanding existing logs, correlating from multiple sources during an investigation.
  • Respond to new incidents as part of a distributed 24x7 operations and oncall schedule.
  • You will build automation to improve security incident response and alerts triage.

What we look for:

  • A minimum of 12+ years experience in Incident Response work
  • Cloud Security Essentials in at least 1 of AWS, GCP or Azure. Working knowledge of GCP and Azure.
  • Broad Security subject matter expertise.
  • Expertise in few core IR skills (DFIR , Reverse Engineering, Traditional Network Security, Storage and access security, Sandboxing, Compute security etc)
  • Experience with Enterprise Security, End Point Security and SaaS applications.
  • Working knowledge of a SIEM and SOAR
  • Have experience building Incident Response Tooling and scripting language skills

About Databricks

Databricks is the data and AI company. More than 10,000 organizations worldwide — including Comcast, Condé Nast, Grammarly, and over 50% of the Fortune 500 — rely on the Databricks Data Intelligence Platform to unify and democratize data, analytics and AI. Databricks is headquartered in San Francisco, with offices around the globe and was founded by the original creators of Lakehouse, Apache Spark™, Delta Lake and MLflow. To learn more, follow Databricks on TwitterLinkedIn and Facebook.

Benefits

At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region, please visit https://www.mybenefitsnow.com/databricks

Our Commitment to Diversity and Inclusion

At Databricks, we are committed to fostering a diverse and inclusive culture where everyone can excel. We take great care to ensure that our hiring practices are inclusive and meet equal employment opportunity standards. Individuals looking for employment at Databricks are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political affiliation, race, religion, sexual orientation, socio-economic status, veteran status, and other protected characteristics.

Compliance

If access to export-controlled technology or source code is required for performance of job duties, it is within Employer's discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.

Required profile

Experience

Level of experience: Expert & Leadership (>10 years)
Industry :
Computer Software / SaaS
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Other Skills

  • Mentorship
  • Verbal Communication Skills
  • Problem Solving

Security Engineer Related jobs