# Product Security Engineer
**Company:** [Databricks](https://hotfix.jobs/companies/databricks)
**Location:** Remote
**Salary:** $152K-$261K
**Experience:** 2+ years
**Skills:** Threat Modeling, Python, Java, Scala, JavaScript, SAST, DAST, Exploit Writing, Web Security, Cloud Security
**Posted:** 2026-02-01
> Product Security Engineer embeds security in Databricks' SDLC through threat modeling, design reviews, code audits, exploit development, and tool automation. Requires 2-4 years threat modeling experience and proficiency in Python/Java/Scala/JavaScript.
## Job Description
## Impact You Will Have
- Full SDLC support for new product features: Threat Modeling, Design Review, Manual Code Review, Exploit writing, etc.
- Support Incident Response and Vulnerability Response with other security teams.
- Evaluate SAST tool results, identify false positives, and file defects.
- Work on DAST tools and automation for auto-assessment and defect filing.
- Maintain automation framework for security compliances (FedRamp, PCI, HIPAA, etc.).
- Prioritize security from a risk management perspective.
- Develop and implement security processes to improve productivity.

## What We Look For
- 2-4 years experience with Threat Modeling and finding design problems from data flow diagrams.
- Understanding of at least two domains: Web Security, Cloud Security, Systems Security, Applied Cryptography.
- Proficient in one or more programming languages (**Python**, **Java**, **Scala**, **JavaScript**) for identifying security defects.
- Skilled in scripting and automation for exploits.
- Fuzzing skills (nice-to-have).
- Exploit writing skills (highly desired).
**Apply:** https://hotfix.jobs/jobs/product-security-engineer-at-databricks-f76bc707-23b7-468f-9a0a-99d91a99c62f
**Canonical:** https://hotfix.jobs/jobs/product-security-engineer-at-databricks-f76bc707-23b7-468f-9a0a-99d91a99c62f