[Remote] Staff Security Detection Engineer

Note: The job is a remote job and is open to candidates in USA. Databricks is a leading data and AI company that provides a unified platform for data, analytics, and AI. They are seeking a Staff Security Detection Engineer to play a critical role in safeguarding products and infrastructure against cyber threats by designing and implementing scalable detection solutions using advanced machine learning techniques.

Responsibilities

• Design and implement advanced detection strategies by deeply understanding and analyzing new or unknown log sources, schemas, and raw data
• Collaborate with cross-functional teams, including product and data engineering teams, to build efficient log ingestion pipelines and support large-scale data analytics
• Engineer and deploy detection solutions on Databricks using Spark, Python, and other cutting-edge technologies with a strong emphasis on clean code, rigorous testing, and comprehensive documentation
• Develop Rule-based and/or ML-based intrusion detection models and integrate them with Databricks' platform, ensuring high accuracy and minimal false positives
• Partner with Incident Response teams to perform threat hunting and to provide detailed logging, alerts, and playbooks, empowering proactive threat detection and response
• Influence the development of long-term technology strategies and roadmaps for detection engineering, ensuring alignment with broader business and security goals
• Represent Databricks at security and engineering conferences, presenting novel detection approaches and thought leadership within the security community

Skills

• 10+ years of relevant experience or advanced degree + 7 years of experience, with a focus on security detection engineering
• 6+ years of software engineering experience, with 4+ years specifically in security-related engineering, particularly in detection engineering
• Expertise in securing and operating at least one major cloud environment (AWS, Azure, GCP)
• Strong technical proficiency in key areas such as network security, cloud security, application/log analysis, and endpoint security
• Proven experience in Python, Git/GitHub, and CI/CD automation (terraform knowledge is a plus)
• Familiarity with distributed computing environments (e.g., Pyspark), SQL, data analysis tools, and machine learning
• A strong passion for continuous learning and staying updated on evolving attack techniques and defense strategies
• Excellent communication skills, with the ability to collaborate effectively across teams and present complex ideas clearly to stakeholders at all levels
• A leadership mindset with the ability to mentor peers, drive strategic initiatives, and influence the organization's security direction

Benefits

• Eligibility for annual performance bonus
• Equity
• Comprehensive benefits and perks that meet the needs of all of our employees

Company Overview

Company H1B Sponsorship