Skip to content
Databricks

Product Security Engineer

Product Security Engineer embeds security in Databricks' SDLC through threat modeling, design reviews, code audits, exploit development, and tool automation. Requires 2-4 years threat modeling experience and proficiency in Python/Java/Scala/JavaScript.

152k – 261kUnited StatesSecurity EngineeringRemote2+ YOE
Apply

About the role

Impact You Will Have

  • Full SDLC support for new product features: Threat Modeling, Design Review, Manual Code Review, Exploit writing, etc.
  • Support Incident Response and Vulnerability Response with other security teams.
  • Evaluate SAST tool results, identify false positives, and file defects.
  • Work on DAST tools and automation for auto-assessment and defect filing.
  • Maintain automation framework for security compliances (FedRamp, PCI, HIPAA, etc.).
  • Prioritize security from a risk management perspective.
  • Develop and implement security processes to improve productivity.

What We Look For

  • 2-4 years experience with Threat Modeling and finding design problems from data flow diagrams.
  • Understanding of at least two domains: Web Security, Cloud Security, Systems Security, Applied Cryptography.
  • Proficient in one or more programming languages (Python, Java, Scala, JavaScript) for identifying security defects.
  • Skilled in scripting and automation for exploits.
  • Fuzzing skills (nice-to-have).
  • Exploit writing skills (highly desired).

Skills

Threat ModelingPythonJavaScalaJavaScriptSASTDASTExploit WritingWeb SecurityCloud Security

Similar roles

Security Engineering jobs
Stripe

Security Engineer IC

Design and implement infrastructure security controls, develop and manage infrastructure as code for cloud security, and conduct security assessments. Collaborate with cross-functional teams to address risks and enhance the security posture of the cloud environment.

159k – 238kSeattle, WASecurity EngineeringHybrid2+ YOEGoC#
Everlaw

Security Engineer (Security Operations)

Security Engineer triages events, responds to incidents, manages AWS security services, and improves vulnerability management/threat detection on the security operations team. Requires 1-3 years security experience, scripting (Python), Linux, and security tools like SIEM and scanners.

159k – 201kOakland, CASecurity EngineeringHybrid1+ YOEAWSElk
Illumio

Software Engineer, Cloud Security

Develops containerized microservices in Go for cloud security platform processing real-time telemetry from AWS/Azure/GCP, providing insights and recommendations. Requires 2+ years distributed systems experience, Kubernetes, and cloud APIs; onsite in Sunnyvale.

141k – 162kSunnyvale, CASecurity EngineeringOn-site2+ YOEGoSQL
Benchling

Detection and Response Engineer

Security Response Engineer responsible for threat detection, incident response, and building security automation at a biotech AI platform. Requires 1+ years in detection/response and Python scripting experience.

136k – 166kSan Francisco, CASecurity EngineeringHybrid1+ YOEPythonAutomation
Fluidstack

Security Engineer, Infrastructure

Builds and maintains security infrastructure including SIEM, data pipelines, and integrations for EDR, SOAR, CASB across IT, OT, cloud, and data centers. Embeds security into SDLC; requires 2+ years in security tooling and cloud/virtualization experience.

170k – 220kNew York, NY +2Security EngineeringOn-site2+ YOEEdrSIEM