RDQ425R53
As a Sr. Enterprise Security engineer, you will join a growing team that leads our company in enterprise security projects. Reporting to the Director, Enterprise Security, you will be part of the team promoting enterprise security best practices across the business. This role is critical in ensuring the security of our business systems and applications by performing design reviews, producing detailed threat models, and analyzing data flows for potential security risks. The ideal candidate has a strong background in enterprise application security, risk assessment, and secure architecture principles.
The impact you will have:
1. Conduct security design reviews for corporate applications and systems, identifying architectural weaknesses and security gaps.
2. Develop comprehensive threat models to assess attack vectors, vulnerabilities, and mitigations in our deployment and product interactions.
3. Analyze data flows to understand how sensitive data is stored, processed, and transmitted across applications and infrastructure.
4. Provide guidance on the implementation of Databricks security policies, standards, and frameworks aligned with industry best practices (e.g., NIST, ISO 27001, OWASP).
5. Perform risk assessments and recommend appropriate mitigations to reduce the attack surface.
6. Continuously evaluate and improve security design review processes and tooling introducing automation where appropriate.
What we look for:
7. Engineering Bachelor's Degree, or relevant experience.
8. Substantial demonstrated expertise as a Security Engineer with experience in Enterprise security.
9. Strong knowledge of threat modeling methodologies (e.g., STRIDE, DREAD, PASTA) and their application in real-world scenarios.
10. Significant experience with NIST 800-53 or similar frameworks.
11. Experience with automating security reviews is desirable.
12. Expertise in offering perspective and guidance on an enterprise scale for public and internal services in a cloud-centric environment.
13. Skill and experience with Identity and Access Management (IAM) solutions such as Okta; Device Management solutions such as Jamf/Intune; tuning EDR (Crowdstrike/SentinelOne/similar) with complex engineering/development workloads; and Just In Time administrative access is desirable.
14. Familiarity with network access solutions (CASBs/Prisma/NAC) is advantageous.
15. A passion for working in high-growth environments.