Sr. Staff Security Engineer, Incident Response

About This RoleAI processing…

Key Responsibilities

• 1
  Experience : Typically 12+ years of experience in security, with a strong focus on incident response, detection, and/or threat intelligence, or an advanced degree with 8+ years of experience. This includes deep expertise in Incident Management and Incident Response tool development.
• 2
  Cloud Security Expertise : Demonstrates knowledge of Azure and AWS cloud concepts, showing expertise in analyzing logs, correlating available log sources to conclude an attack scenario, and identifying logging gaps to suggest best configurations for IR needs. You can function as an architect of cloud deployment and map cloud environment fundamentals to other major providers.
• 3
  Digital Forensics : Highly skilled in multiple areas of digital forensics (e.g., Network, Application/Log Analysis, Host/Disk, Memory Forensics/Malware Analysis, Cloud Forensics, Endpoint Forensics), able to speak confidently on advanced concepts like virtualized networking, advanced network anomalies, and container forensics.
• 4
  Enterprise Security : Has a detailed understanding of enterprise security incidents and in-depth knowledge of malware on endpoints. Possesses expert understanding of MacOS security posture and architecture.
• 5
  Technical Depth : Proficient with SIEM and SOAR platforms, EDR solutions, and forensic analysis tools. Skilled in leveraging AI and automation technologies to enhance security operations and threat detection capabilities.
• 6
  Leadership & Communication : Exceptional ability to engage in difficult conversations, handle them appropriately, and exhibit empathy and emotional intelligence. Proven capability to build, mentor, and lead high-performing cybersecurity teams, fostering a culture of excellence and continuous improvement. Strong communication of technical decisions through design docs and tech talks.
• 7
  Bias for Action & Collaboration : A history of proactively identifying and solving issues that impact the team and company. Demonstrates a strong desire to help peers and collaborate effectively.
• 8
  Customer/Stakeholder Obsessed : Able to push back or say no to unreasonable stakeholder requests in a professional and constructive manner.

Requirements

• Experience : Typically 12+ years of experience in security, with a strong focus on incident response, detection, and/or threat intelligence, or an advanced degree with 8+ years of experience. This includes deep expertise in Incident Management and Incident Response tool development.
• Cloud Security Expertise : Demonstrates knowledge of Azure and AWS cloud concepts, showing expertise in analyzing logs, correlating available log sources to conclude an attack scenario, and identifying logging gaps to suggest best configurations for IR needs. You can function as an architect of cloud deployment and map cloud environment fundamentals to other major providers.
• Digital Forensics : Highly skilled in multiple areas of digital forensics (e.g., Network, Application/Log Analysis, Host/Disk, Memory Forensics/Malware Analysis, Cloud Forensics, Endpoint Forensics), able to speak confidently on advanced concepts like virtualized networking, advanced network anomalies, and container forensics.
• Enterprise Security : Has a detailed understanding of enterprise security incidents and in-depth knowledge of malware on endpoints. Possesses expert understanding of MacOS security posture and architecture.
• Technical Depth : Proficient with SIEM and SOAR platforms, EDR solutions, and forensic analysis tools. Skilled in leveraging AI and automation technologies to enhance security operations and threat detection capabilities.
• Customer/Stakeholder Obsessed : Able to push back or say no to unreasonable stakeholder requests in a professional and constructive manner.
• U.S. citizenship is required.
• Databricks is seeking an exceptional and strategic Sr.
• What we look for: Experience : Typically 12+ years of experience in security, with a strong focus on incident response, detection, and/or threat intelligence, or an advanced degree with 8+ years of experience.
• This includes deep expertise in Incident Management and Incident Response tool development.
• Cloud Security Expertise : Demonstrates knowledge of Azure and AWS cloud concepts, showing expertise in analyzing logs, correlating available log sources to conclude an attack scenario, and identifying logging gaps to suggest best configurations for IR needs.
• Enterprise Security : Has a detailed understanding of enterprise security incidents and in-depth knowledge of malware on endpoints.
• Technical Depth : Proficient with SIEM and SOAR platforms, EDR solutions, and forensic analysis tools.
• Skilled in leveraging AI and automation technologies to enhance security operations and threat detection capabilities.
• Compliance If access to export-controlled technology or source code is required for performance of job duties, it is within Employer's discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.

Perks & Benefits