- Full SDLC Support for new product features being developed in ENG and non-ENG teams. This would include Threat Modeling, Design Review, Manual Code Review, Exploit writing, etc.
- Work with other security teams to provide support for Incident Response and Vulnerability Response as and when needed.
- Work with the results of SAST tools to help evaluate and identify false positives and file defects for real issues.
- Work on DAST tools and related automation for auto-assessment and defect filing.
- Maintain the automation framework and add new features as needed to support different security compliances that Databricks may want to get into – FedRamp, PCI, HIPPA, etc.
- Prioritize security from a risk management perspective, rather than an absolute textbook version.
- Help develop and implement security processes to improve the overall productivity of the product security organization and the SDLC process in general
- 3+ years of experience with the Threat Modeling process and ability to find design problems based on a block diagram of data flow.
- Solid understanding on at least two of the following domains - Web Security, Cloud Security, Systems Security and Applied Cryptography.
- 3+ years of experience with one or more of Python/Java/Scala/JavaScript and ability to read code to identify security defects.
- Strong skills on scripting and automation on exploits
- Fuzzing skills are good to have.
- Exploit writing skills is a positive and greatly required.
- Private medical insurance
- Private dental insurance
- Health Cash Plan
- Life, income protection & critical illness insurance
- Pension Plan
- Equity awards
- Enhanced Parental Leaves
- Fitness reimbursement
- Annual career development fund
- Home office & work headphones reimbursement
- Business travel accident insurance
- Mental wellness resources
- Employee referral bonus
-
Security Engineer
1 week ago
Maticmind S.p.A United KingdomCerchiamo un Security Engineer per il nostro team di Roma. · Il/La candidato/a Il profilo ha maturato un'esperienza di almeno cinque anni, in contesti complessi ed articolati, di delivery di progetti e gestione di piattaforme di sicurezza di rete con particolare riguardo alle te ...
-
Security Engineer
1 hour ago
eFinancialCareers London, United KingdomOur client are a leading London trading and clearing house looking for a security engineer to join them within the cyber security team. Our client maintain critical national infrastructure and you will be responsible for engineering and maintaining an effectiveand modern cyber se ...
-
Security Engineer
5 days ago
Jefferson Frank London, United Kingdom_**Security Engineer - £70,000 - London (Hybrid)**_ · We have partnered with a leading financial services organisation that has an established hybrid environment with both AWS and On-Prem. They are looking for a Security Engineer to join a well established team. · This organisati ...
-
Security Engineer
1 week ago
Yolk Recruitment Ltd London, United Kingdom**Security Engineer | Cardiff | Hybrid (2 days per week in office) | Up to £100,000 | Challenger Bank** · Yolk Recruitment are working with a disrupting fintech organisation based in Cardiff looking to expand their Cyber Security function. Their tech team operate a hybrid working ...
-
Security Engineer
1 week ago
eFinancialCareers London, United Kingdom**Contract Length**: Initially 6 months · **Working Style**:Hybrid · - 2 days a week on site · **Key Experience Required**: · - Automation experience using technologies such as Ansible Tower · - 5 years relevant experience in IT security, including direct experience within a Secu ...
-
Security Engineer
1 week ago
Arthur London, United KingdomSecurity Engineer - London - Remote - Azure, VM Ware, (Python, Golang, Rust, Perl, Bash, PowerShell, etc.), Linux, Windows · We are a newly formed function who has an exciting future in helping shape the digital strategy for the international business whilst working closely with ...
-
Security Engineer
1 week ago
Mpro Recruitment Limited London, United Kingdom Full timeJob Details · We are recruiting for a Security Engineer/Technician to join our extensive network of clients looking for Security Engineers in South East London · We are looking for someone with a strong background in installing and servicing CCTV, Access Control and Intruder Alar ...
-
Security Engineer
1 week ago
eFinancialCareers London, United KingdomYou will have a solid background working within a busy IT team; experience in designing and implementing technical solutions around security, supporting all aspect of the Security mainframe, SOC, monitoring tools and future developments. · KEY REQUIREMENTS: · - Be familiar with N ...
-
Cyber Security Engineer
1 week ago
Gruppo SCAI United KingdomSCAI Partners, società del GRUPPO SCAI focalizzata nella Consulenza Manageriale, in ottica di potenziamento del Business Service Line Cyber Security, sta cercando una risorsa con il ruolo di Cyber Security Engineer | Identity and Access Management Specialist. · La risorsa sarà ...
-
Network Security Engineer
1 week ago
Circle Recruitment London, United Kingdom**Network Security Engineer - Central London - Hybrid** · **Paloalto - Palo alto - Fortinet - Extreme Networks - Cato - Network - Security - Engineer - Administrator - Network Engineer - Network Administrator - Network Security - Firewall - WAN - LAN - Wireless** · This role offe ...
-
Cloud Security Engineer
1 day ago
eFinancialCareers London, United KingdomJoin us as an Cloud Security Engineer · - This is an excellent opportunity for someone highly interested in security to help develop and improve Mettle's security posture · - You'll be working with multiple stakeholders, in both engineering and business capabilities, to understan ...
-
Cyber Security Engineer
1 week ago
eFinancialCareers London, United Kingdom**Cyber Security Engineer - Windows - Linux - Azure - VMware** · Cyber Security Engineer is urgently required to join a leading Financial Services business to share responsibilities across several exciting projects. This is a permanent opportunity offering hybrid working with 2-3 ...
-
Cloud Security Engineer
1 week ago
Understanding Recruitment London, United Kingdom**Cloud Security Engineer** · A new and exciting opportunity has arisen for an experienced Cloud Security Engineer to join a public sector organisation based in London with a hybrid working environment. You will have the opportunity to come into the organisation and grow and deve ...
-
Security Commissioning Engineer
1 day ago
Alecto Recruitment Ltd London, United KingdomAlecto Recruitment is currently representing a very well established Security integrator within London. They are currently looking for an experienced Security Commissioning Engineer to cover London. · This is an excellent opportunity to join a company who really cares about their ...
-
Security Systems Engineer
1 week ago
Computappoint London, United Kingdom**Job Title**:Security Systems Engineer / Vulnerability Management Analyst · **IR35 Status**:Inside IR35 · **Contract Length**:Until end of December · **Hybrid Model**: 50/50% between Central London office & remote · **About the Client and Role**: · **Key Responsibilities**: · - ...
-
Information Security Engineer
22 hours ago
Comtecs Ltd London, United KingdomInformation Security Engineer / Information Security SME (Subject Matter Expert) required by global law firm. You will act as the Technical Subject Matter Expert working between the Information Security Team and the IT Teams, specifically Networks and CloudServer Infrastructure. ...
-
Senior Security Engineer
3 days ago
Berkeley Square IT London, United KingdomSenior Security Engineer - End User Computing - My growing and successful Fintech client are seeking an experienced Cyber Security Engineer with a focus on End User Computing. · You'll join a growing Information Security Team while working closely with the global Corporate Engine ...
-
Security Engineering Lead
3 days ago
GerrardWhite London, United Kingdom**Security Engineer Lead - Global Insurance Organisation - MS/Azure Env - City/Hybrid - Perm** · Join a leading global insurance organisation as a Security Engineering Lead during a time of extensive transformation which includes the development and deployment of a new Azure Infr ...
-
Fire and Security Engineer
1 day ago
Alecto Recruitment Ltd London, United KingdomAlecto Recruitment is currently representing a very well established fire and security provider within the London area. You will be mainly be covering London and home counties. They are currently looking for fire and security engineers who are capable ofeither service or install. ...
-
Security Service Engineer
1 week ago
Search Consultancy London, United KingdomSecurity Service & Install Engineer · £40,000 (negotiable based on experience and qualifications) · London · Seeking a Service & Install Engineer to work in prestigious Government buildings within London. Join a team of Engineers who are talented, driven and are rapidly winning h ...
Sr. Product Security Engineer - United Kingdom - Nomadgao
Description
Mar 24, Databricks is hiring a remote Sr. Product Security Engineer. Location: UK.
While candidates in the listed location(s) are encouraged for this role, candidates in other locations will be considered.
The Product Security Team's mission is to Left-shift SDLC (Security Development Lifecycle) processes for ALL code written in Databricks (for Customer Use or Supporting Customer internally) to reduce the likelihood of introducing new vulnerabilities in production and minimize the count and effect of externally identified vulnerabilities on Databricks Services.
You will be an individual contributor on the product security team at Databricks, manage SDLC functions for features and products within Databricks. This would include, but is not limited to, security design reviews, threat models, manual code reviews, exploit writing and exploit chain creation. You will also support IR and VRP programs when there is a vulnerability report or a product security incident. You will work with a global team, spread across various locations in the US and EMEA.
The impact you will have:
What we look for:
Benefits
About Databricks
Databricks is the data and AI company. More than 10,000 organizations worldwide — including Comcast, Condé Nast, Grammarly, and over 50% of the Fortune 500 — rely on the Databricks Data Intelligence Platform to unify and democratize data, analytics and AI. Databricks is headquartered in San Francisco, with offices around the globe and was founded by the original creators of Lakehouse, Apache Spark, Delta Lake and MLflow. To learn more, follow Databricks on Twitter LinkedIn and Facebook .
Our Commitment to Diversity and Inclusion
At Databricks, we are committed to fostering a diverse and inclusive culture where everyone can excel. We take great care to ensure that our hiring practices are inclusive and meet equal employment opportunity standards. Individuals looking for employment at Databricks are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political affiliation, race, religion, sexual orientation, socio-economic status, veteran status, and other protected characteristics.
Compliance
If access to export-controlled technology or source code is required for performance of job duties, it is within Employer's discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.
#J-18808-Ljbffr
Sr. Product Security Engineer professionals in London
-
Freddy Ogilvie
Product
-
Viplov Patney
Senior product manager
-
Romina Paradis
Music Student
-
Nikolaos Sigalas
Senior Consultant - Data and Business Intelligence
-
Divya Srivastav
Sr. Leader - Digital Transformation & Innovation
-
elvira bognanni
Audio technician