As a Staff Security Engineer, you will design and implement scalable triage, prioritization, and remediation-tracking systems across application, infrastructure, and hardware domains. You will set technical standards, drive high-impact initiatives, and mentor engineers through technical leadership, while partnering with leadership on priorities and execution risks.

Key Responsibilities:

• Lead high-complexity VM technical initiatives and deliver architecture decisions for assigned program areas
• Design and build scalable triage automation, including integrations, decision logic, and production hardening
• Implement end-to-end workflow components from assessment and detection to ticket routing and remediation tracking
• Provide deep technical leadership on hardware-adjacent vulnerabilities (GPU firmware, DPU firmware/BlueField, and BMC surfaces)
• Act as senior technical responder for embargoed disclosures and zero-day events, coordinating with owner teams that deploy fixes
• Improve prioritization logic, severity models, and exception workflows through code, design reviews, and technical proposals
• Produce actionable technical metrics and risk insights for leadership consumption
• Lead root-cause analysis for high-impact vulnerability incidents and implement durable technical improvements
• Mentor IC3/IC4/IC5 engineers through design guidance, code review, and incident coaching
• Partner with security, engineering, and operational stakeholders to improve workflow reliability and accelerate remediation outcomes

Requirements:

• 9+ years of relevant experience with demonstrated strategic impact in vulnerability management, application security, platform security, or cloud security engineering
• Proven track record building and scaling security automation (SOAR workflows, AI/ML systems, detection pipelines) in production environments
• Deep subject matter expertise with vulnerability management best practices: CVSS, EPSS, CISA KEV, threat intelligence integration, and risk-based prioritization frameworks
• Excellent development background with strong coding skills in Python, Go, or similar languages for building scalable, production-grade security systems
• Significant experience with modern vulnerability management tooling (for example Wiz, Semgrep, Rapid7, Tenable, or equivalent)
• Experience with specialized infrastructure: GPU/DPU environments, firmware security, hardware vulnerabilities, or high-performance computing
• Demonstrated track record mentoring engineers across levels and driving cross-functional technical initiatives at organizational scale
• Strong business acumen and understanding of how security decisions impact engineering velocity, customer trust, and business outcomes

Preferred Qualifications:

• Practical experience building AI/ML-powered security systems (LLM integration, automated decision-making, human-in-the-loop validation) in production
• Experience managing hardware vendor security partnerships (embargoed disclosures and pre-release collaboration)
• Production experience with security automation platforms such as TINES and serverless frameworks (AWS Lambda, GCP Cloud Functions)
• Strong DevOps, DevSecOps, or SRE background with deep experience in AWS/GCP/Azure cloud services and Infrastructure as Code (Terraform, CloudFormation)
• Deep understanding of Kubernetes security (container scanning, admission controllers, supply chain security, runtime protection)
• Experience leading security programs through rapid hypergrowth (10x+ infrastructure scaling) in startup or cloud-native environments
• Practical experience managing vulnerabilities within a FedRAMP-certified environment or similar regulatory frameworks

Salary and Benefits: The base salary range for this role is $188,000 to $275,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location. We strive for both market alignment and internal equity when determining compensation. In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

Work Environment:

While we prioritize a hybrid work environment, remote work may be considered for candidates located more than 30 miles from an office, based on role requirements for specialized skill sets. New hires will be invited to attend onboarding at one of our hubs within their first month. Teams also gather quarterly to support collaboration.

XML job scraping automation by YubHub

Key responsibilities include:

• Identifying and plugging key gaps in our infrastructure and services to make Databricks safer for our customers
• Attracting top talent from across the industry
• Representing the security engineering discipline throughout the organization
• Representing Databricks at academic and industry conferences and events

Requirements include:

• 9+ years of experience in Data Security or related areas and expertise in two or more of the following: Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response
• 15+ years of experience building large-scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organizational lines
• Strong communication skills to explain and evangelize Data Security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

We offer a competitive salary range of $217,200-$288,400 USD, as well as eligibility for annual performance bonus, equity, and comprehensive benefits.

XML job scraping automation by YubHub

To be successful in this role, you will need 9+ years of experience in data security or related areas, with expertise in two or more of the following: cryptography, Kubernetes security, web security, governance, privacy, trust, safety, authentication, identity management, access control, key management, inter-service authentication, secure application frameworks, and detection and response. You will also need 15+ years of experience building large-scale distributed systems with high availability, leadership skills, strong communication skills, a bias to action, and a passion for delivering high-quality solutions.

In addition to your technical expertise, you will need to have a strong understanding of the company's goals and objectives, as well as the ability to communicate effectively with stakeholders at all levels of the organization.

XML job scraping automation by YubHub

Responsibilities:

• Design and implement secure infrastructure systems that protect our customers' data
• Collaborate with cross-functional teams to identify and address security risks
• Develop and maintain secure coding practices and standards
• Participate in code reviews and provide feedback to ensure high-quality code
• Stay up-to-date with the latest security threats and technologies

Requirements:

• 7+ years of experience in data security or related areas
• Expertise in two or more of the following: Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response
• 10+ years of experience building large-scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organizational lines
• Strong communication skills to explain and evangelize data security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

Pay Range Transparency:

Databricks is committed to fair and equitable compensation practices. The pay range for this role is $190,900-$253,750 USD.

Benefits:

At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region, please click here.

Our Commitment to Diversity and Inclusion:

Databricks is an equal opportunity employer and welcomes applications from diverse candidates.

XML job scraping automation by YubHub

Key responsibilities include:

• Identifying and plugging key gaps in our infrastructure and services to make Databricks safer for our customers
• Attracting top talent from across the industry to join our security engineering team
• Representing the security engineering discipline throughout the organization, having a powerful voice to make us more data-driven
• Representing Databricks at academic and industry conferences & events

To succeed in this role, you will need:

• 9+ years of experience in Data Security or related areas and expertise in two or more of the following: Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response
• 15+ years of experience building large scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organizational lines
• Strong communication skills to explain and evangelize Data Security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

In terms of compensation, Databricks is committed to fair and equitable compensation practices. The pay range for this role is $220,400-$297,400 USD, and the total compensation package may also include eligibility for annual performance bonus, equity, and benefits.

If you're passionate about data security and want to join a team that's shaping the future of data and AI, we encourage you to apply.

XML job scraping automation by YubHub

We are looking for senior software engineers to join our Security Engineering team at Databricks. As a member of this team, you will play a critical role in ensuring the security and integrity of our data and AI infrastructure platform.

Responsibilities

• Identify and plug key gaps in our infrastructure and services to make Databricks safer for our customers
• Attract top talent from across the industry to join our Security Engineering team
• Represent the security engineering discipline throughout the organisation, having a powerful voice to make us more data-driven
• Represent Databricks at academic and industry conferences & events

What We Look For

• 5+ years of experience in Data Security or related areas and expertise in two or more of the following: Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response
• 5+ years of experience building large scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organisational lines
• Strong communication skills to explain and evangelise Data Security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

Benefits

At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region, please click here.

Pay Range Transparency

Databricks is committed to fair and equitable compensation practices. The pay range for this role is $164,200-$225,700 USD per year, depending on factors such as job-related skills, depth of experience, relevant certifications and training, and specific work location.

XML job scraping automation by YubHub

About the Role: The Security Engineering team's mission is to safeguard our AI systems and maintain the trust of our users and society at large. Whether we're developing critical security infrastructure, building secure development practices, or partnering with our research and product teams, we are committed to operating as a world-class security organization and keeping the safety and trust of our users at the forefront of everything we do.

Responsibilities:

• Build security for large-scale AI clusters, implementing robust cloud security architecture including IAM, network segmentation, and encryption controls

• Design secure-by-design workflows, secure CI/CD pipelines across our services, help build secure cloud infrastructure, with expertise in various cloud environments, Kubernetes security, container orchestration and identity management

• Ship and operate secure, high-reliability services using Infrastructure-as-Code (IaC) practices and GitOps workflows

• Apply deep expertise in threat modeling and risk assessment to secure complex multi cloud environments

• Mentor engineers and contribute to hiring and growth of the Security team

Requirements:

• 5-15+ years of software engineering experience implementing and maintaining critical systems at scale

• Bachelor's degree in Computer Science/Software Engineering or equivalent industry experience

• Strong software engineering skills in Python or at least one systems language (Go, Rust, C/C++)

• Experience managing infrastructure at scale with DevOps and cloud automation best practices

• Track record of driving engineering excellence through high standards, constructive code reviews, and mentorship

• Proven ability to lead cross-functional security initiatives and navigate complex organizational dynamics

• Outstanding communication skills, translating technical concepts effectively across all organizational levels

• Demonstrated success in bringing clarity and ownership to ambiguous technical problems

• Strong systems thinking with ability to identify and mitigate risks in complex environments

• Low ego, high empathy engineer who attracts talent and supports diverse, inclusive teams

• Experience supporting fast-paced startup engineering teams

• Passionate about AI safety and alignment, with keen interest in making AI systems more interpretable and aligned with human values

Salary: The annual compensation range for this role is £240,000-£325,000 GBP.

Experience Level: senior Employment Type: full-time Workplace Type: hybrid Category: Engineering Industry: Technology Salary Range: £240,000-£325,000 GBP Required Skills:

• Cloud security architecture
• IAM
• Network segmentation
• Encryption controls
• Kubernetes security
• Container orchestration
• Identity management
• Infrastructure-as-Code (IaC)
• GitOps
• Threat modeling
• Risk assessment
• DevOps
• Cloud automation
• Python
• Go
• Rust
• C/C++

Preferred Skills:

• Secure-by-design workflows
• CI/CD pipelines
• Secure cloud infrastructure
• Cloud environments
• Containerization
• Identity and access management

XML job scraping automation by YubHub

Key responsibilities include:

• Making Databricks safer for our customers by identifying and plugging key gaps in our infrastructure and services
• Attracting top talent from across the industry
• Representing the security engineering discipline throughout the organization
• Representing Databricks at academic and industry conferences & events

Requirements include:

• 9+ years of experience in Data Security or related areas and expertise in two or more of the following: Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response
• 15+ years of experience building large scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organizational lines
• Strong communication skills to explain and evangelize Data Security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

Pay Range Transparency:

Databricks is committed to fair and equitable compensation practices. The pay range for this role is $220,400-$297,400 USD.

XML job scraping automation by YubHub

Key responsibilities include:

• Making Databricks safer for our customers by identifying and plugging key gaps in our infrastructure and services
• Attracting top talent from across the industry
• Representing the security engineering discipline throughout the organization
• Representing Databricks at academic and industry conferences & events

To succeed in this role, you will need:

• 7+ years of experience in Data Security or related areas and expertise in two or more of the following: Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response
• 10+ years of experience building large scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organizational lines
• Strong communication skills to explain and evangelize Data Security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

In addition to a competitive salary, you will also receive a comprehensive benefits package, including annual performance bonus, equity, and more.

XML job scraping automation by YubHub

Key responsibilities include:

• Making Databricks safer for our customers by identifying and plugging key gaps in our infrastructure and services
• Attracting top talent from across the industry
• Representing the security engineering discipline throughout the organization
• Representing Databricks at academic and industry conferences & events

To be successful in this role, you will need to have 7+ years of experience in Data Security or related areas and expertise in two or more of the following: Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection and Response. Experience building systems at large scale internet companies is a huge plus.

Additional requirements include:

• 10+ years of experience building large scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organizational lines
• Strong communication skills to explain and evangelize Data Security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

XML job scraping automation by YubHub

Your work will shape GitLab's enterprise security posture in the rapidly growing software supply chain security market. You'll focus on SLSA Level 3 compliance, secrets management, CI/CD security hardening, and the foundations of GitLab's global zero trust architecture.

Some examples of our projects:

• SLSA Level 3 compliance and provenance attestation across GitLab's CI/CD platform
• Integrated secrets management and runner security for container-isolated, secure pipelines

You'll lead the end-to-end software supply chain security architecture for GitLab's CI/CD platform, including SLSA Level 3 implementation and CI infrastructure hardening. You'll drive cross-team technical strategy and decisions across our Software Supply Chain Security (SSCS) stage teams, aligning engineering work to SSCS strategic plans.

You'll collaborate with infrastructure and CI/CD teams to design and land long-term initiatives for secure, scalable runner architecture, container isolation, and pipeline security at scale. You'll propose and validate technical implementations that support architectural changes to improve CI/CD scaling and performance on critical paths.

You'll teach, mentor, and coach Staff Engineers and individual contributors, raising the bar on supply chain threat modeling, secrets management, artifact signing, and SBOM lifecycle practices.

You'll partner with Engineering Managers and senior leadership to define roadmaps, break down complex initiatives, and enable Staff Engineers to lead sub-department-wide efforts.

You'll engage with customers and external stakeholders as a technical consultant and spokesperson for GitLab's software supply chain security capabilities and roadmap.

You'll collaborate with product, security, and compliance stakeholders to ensure features meet enterprise security, governance, and regulatory expectations in the software supply chain security market.

Key responsibilities include:

• Providing architectural leadership across multiple engineering teams
• Shaping GitLab's enterprise security posture in the rapidly growing software supply chain security market
• Focusing on SLSA Level 3 compliance, secrets management, CI/CD security hardening, and the foundations of GitLab's global zero trust architecture

Key requirements include:

• Deep expertise in software supply chain security, including threat modeling for supply chain attack vectors, SLSA implementation and attestation systems, and SBOM generation and lifecycle management
• Strong knowledge of artifact signing and verification using the Sigstore ecosystem, including Cosign, Fulcio, Rekor, and in-toto attestations
• Experience designing and hardening CI/CD security, such as runner isolation, pipeline security controls, and secrets management in large-scale environments

Preferred qualifications include:

• Background in distributed systems and infrastructure, including building resilient CI/CD platforms that process high pipeline volumes and optimizing performance for critical paths
• Practical experience with container security and Kubernetes security, including admission controllers, policy controllers, workload isolation, and registry hardening
• Proficiency in Go or Rust in a production environment, combined with expert-level understanding of CI/CD workflows and DevSecOps best practices
• Experience operating as a Principal or Staff Engineer across multiple development teams, providing architectural leadership and partnering with Engineering Managers and senior leaders
• Demonstrated capacity to clearly communicate complex problems and solutions

Our Software Supply Chain Security stage engineering teams are responsible for authentication and access within GitLab. We also build features that help customers manage vulnerabilities, dependencies, security policies, and compliance frameworks across their organizations.

The base salary range for this role's listed level is currently for residents of the United States only. This range is intended to reflect the role's base salary rate in locations throughout the US. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, alignment with market data, and geographic location. The base salary range does not include any bonuses, equity, or benefits.

XML job scraping automation by YubHub

The ideal candidate will have 10+ years of experience in Data Security or related areas and expertise in two or more of the following: Authentication, Network, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response.

Responsibilities:

• Craft and execute a long-term north-star vision for Authentication that balances uncompromised security with a frictionless user experience.

• Recruit and mentor top-tier engineering talent to scale our security infrastructure.

• Act as the voice of Security Engineering across the organization, driving data-driven decisions at the executive level.

• Databricks' security innovations at major academic and industry conferences.

Requirements:

• 10+ years of experience in Data Security or related areas and expertise in two or more of the following: Authentication, Network, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response.

• 15+ years of experience building large scale distributed systems with high availability.

• Leadership skills and experience to lead across functional and organizational lines.

• Strong communication skills to explain and evangelize Data Security to senior leaders across the company.

• Bias to action and passion for delivering high-quality solutions.

• MS or Ph.D. in Computer Science or related fields.

This role is open to remote candidates.

XML job scraping automation by YubHub

Key responsibilities include:

• Making Databricks safer for our customers by identifying and plugging key gaps in our infrastructure and services
• Attracting top talent from across the industry
• Representing the security engineering discipline throughout the organization
• Representing Databricks at academic and industry conferences & events

Requirements include:

• 9+ years of experience in Data Security or related areas and expertise in two or more of the following: Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response
• 15+ years of experience building large scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organizational lines
• Strong communication skills to explain and evangelize Data Security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

Pay Range Transparency:

Databricks is committed to fair and equitable compensation practices. The pay range for this role is $220,400-$297,400 USD.

XML job scraping automation by YubHub

The impact you will have:

• Make Databricks safer for our customers by identifying and plugging key gaps in our infrastructure and services
• Attract top talent from across the industry
• Represent the security engineering discipline throughout the organisation, having a powerful voice to make us more data-driven
• Represent Databricks at academic and industry conferences & events

What we look for:

• 10+ years of experience in Data Security or related areas and expertise in two or more of the following - Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response
• 15+ years of experience building large scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organisational lines
• Strong communication skills to explain and evangelise Data Security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

Pay Range Transparency

Databricks is committed to fair and equitable compensation practices. The pay range(s) for this role is listed below and represents the expected salary range for non-commissionable roles or on-target earnings for commissionable roles. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to job-related skills, depth of experience, relevant certifications and training, and specific work location. Based on the factors above, Databricks anticipates utilising the full width of the range. The total compensation package for this position may also include eligibility for annual performance bonus, equity, and the benefits listed above. For more information regarding which range your location is in visit our page here.

Local Pay Range $278,200-$339,250 USD

XML job scraping automation by YubHub

Your impact will be significant, as you will be making Databricks safer for our customers by identifying and plugging key gaps in our infrastructure and services. You will also attract top talent from across the industry, represent the security engineering discipline throughout the organisation, and represent Databricks at academic and industry conferences & events.

To be successful in this role, you will need to have 9+ years of experience in Data Security or related areas and expertise in two or more of the following: Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response. You will also need to have leadership skills and experience to lead across functional and organisational lines, strong communication skills to explain and evangelise Data Security to senior leaders across the company, and a bias to action and passion for delivering high-quality solutions.

In addition, you will need to have a Master's or Ph.D. in Computer Science or a related field and be located in a region where the local pay range is applicable.

This is a senior-level role, and the salary range is $232,000-$313,000 USD per year, depending on the factors mentioned earlier.

XML job scraping automation by YubHub

The impact you will have:

• Make Databricks safer for our customers by identifying and plugging key gaps in our infrastructure and services
• Attract top talent from across the industry
• Represent the security engineering discipline throughout the organisation, having a powerful voice to make us more data-driven
• Represent Databricks at academic and industry conferences & events

What we look for:

• 9+ years of experience in Data Security or related areas and expertise in two or more of the following--Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response
• 15+ years of experience building large scale distributed systems with high availability
• Leadership skills and experience to lead across functional and organisational lines
• Strong communication skills to explain and evangelise Data Security to senior leaders across the company
• Bias to action and passion for delivering high-quality solutions
• MS or Ph.D. in Computer Science or related fields

About Databricks

Databricks is the data and AI company. More than 10,000 organisations worldwide , including Comcast, Condé Nast, Grammarly, and over 50% of the Fortune 500 , rely on the Databricks Data Intelligence Platform to unify and democratise data, analytics and AI.

XML job scraping automation by YubHub

The ideal candidate will have 10+ years of experience in Data Security or related areas and expertise in two or more of the following: Authentication, Network, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response.

Responsibilities:

• Craft and execute a long-term north-star vision for Authentication that balances uncompromised security with a frictionless user experience.
• Recruit and mentor top-tier engineering talent to scale our security infrastructure.
• Act as the voice of Security Engineering across the organization, driving data-driven decisions at the executive level.
• Databricks' security innovations at major academic and industry conferences.

What we look for:

• 10+ years of experience in Data Security or related areas and expertise in two or more of the following: Authentication, Network, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response.
• 15+ years of experience building large scale distributed systems with high availability.
• Leadership skills and experience to lead across functional and organizational lines.
• Strong communication skills to explain and evangelize Data Security to senior leaders across the company.
• Bias to action and passion for delivering high-quality solutions.
• MS or Ph.D. in Computer Science or related fields.

This role is open to remote candidates.

Pay Range Transparency: Databricks is committed to fair and equitable compensation practices. The pay range(s) for this role is listed below and represents the expected salary range for non-commissionable roles or on-target earnings for commissionable roles. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to job-related skills, depth of experience, relevant certifications and training, and specific work location. Based on the factors above, Databricks anticipates utilizing the full width of the range. The total compensation package for this position may also include eligibility for annual performance bonus, equity, and the benefits listed above.

For more information regarding which range your location is in visit our page here. Local Pay Range $280,000-$385,000 USD

XML job scraping automation by YubHub

Responsibilities

• Monitor and analyse security alerts and logs to identify potential threats and anomalies
• Develop, implement, and maintain detection rules and correlation logic in our SIEM platform
• Conduct thorough investigations of security incidents, performing root cause analysis and impact assessments
• Lead incident response efforts, coordinating with relevant teams to contain and mitigate threats
• Create and maintain incident response playbooks and runbooks
• Perform regular threat hunting activities to proactively identify potential security risks
• Develop and refine metrics and reporting to track the effectiveness of detection and response capabilities
• Collaborate with other security teams to improve overall security posture and incident handling processes
• Stay current with emerging threats, attack techniques, and defensive strategies in the cloud-native and AI domains

Basic Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, or a related field
• 3-5 years of experience in security operations, incident response, or a similar role
• Strong understanding of cybersecurity principles, attack techniques, and defensive strategies
• Proficiency in at least one scripting language (e.g., Python, Rust) for automation and tool development
• Experience with SIEM platforms and log analysis tools
• Familiarity with cloud environments (e.g., AWS, GCP, Azure) and their security features
• Knowledge of network protocols, system administration, and common attack vectors
• Strong analytical and problem-solving skills with attention to detail
• Excellent communication skills and ability to work effectively under pressure

Preferred Skills and Experience

• Relevant security certifications (e.g., GCIH, GCIA, SANS)
• Experience with threat intelligence platforms and their integration into detection processes
• Familiarity with AI/ML security implications, particularly those outlined in the OWASP LLM Top 10
• Knowledge of software supply chain security and SBOM analysis
• Experience with containerized environments and Kubernetes security
• Experience in building custom security tools or integrations to enhance detection and response capabilities
• Interest in leveraging AI to improve threat detection and automate response processes
• Contributions to open-source security projects or threat research
• Experience with digital forensics and malware analysis

Compensation and Benefits

$200,000 - $340,000 USD

Base salary is just one part of our total rewards package at xAI, which also includes equity, comprehensive medical, vision, and dental coverage, access to a 401(k) retirement plan, short & long-term disability insurance, life insurance, and various other discounts and perks.

XML job scraping automation by YubHub

Key Responsibilities

• Own the security architecture for Saronic's AWS environments, including multi-account strategy, network segmentation, identity architecture, and data protection across commercial AWS and AWS GovCloud

• Design and maintain secure-by-default Terraform modules and IaC standards that teams adopt as the standard path, enforcing least privilege, secure defaults, and compliance requirements

• Implement preventive controls (SCPs, permission boundaries, policy-as-code) and detective controls (Config rules, CloudTrail analysis, GuardDuty) as a unified, layered security model

• Design and enforce IAM patterns across AWS accounts, services, and workloads including least-privilege policies, permission boundaries, cross-account access, federation, and service-to-service authentication

• Implement and govern secrets management using tools such as AWS Secrets Manager or Vault, integrated into CI/CD and runtime environments

• Partner with DevOps and Platform Engineering to embed security into CI/CD pipelines, infrastructure provisioning, and deployment workflows

• Build automated compliance validation into infrastructure pipelines and replace manual security gates with automated guardrails wherever possible

• Create self-service security tooling and patterns that allow teams to operate with speed and autonomy while maintaining compliance

• Integrate logging, monitoring, and alerting across cloud infrastructure to validate control effectiveness and detect misconfigurations or threats

• Build and tune cloud-native detections using CloudTrail, GuardDuty, Config, and SIEM integrations

• Support incident response for cloud security events, drive root-cause analysis, and translate findings into improved guardrails and controls

Required Qualifications:

• 6+ years of hands-on experience in cloud security engineering, infrastructure security, DevSecOps, or a closely related security engineering role

• Expert-level proficiency with Terraform, including module design, state management, policy-as-code, and managing complex multi-environment configurations

• Deep expertise in AWS security services and architecture, including IAM, Organizations, SCPs, Control Tower, CloudTrail, Config, GuardDuty, Security Hub, KMS, and VPC security

• Demonstrated experience building security guardrails and reusable infrastructure patterns that engineering teams adopt without friction

• Strong experience with CI/CD pipeline security, IaC review processes, and automated compliance validation

• Experience operating in AWS GovCloud or FedRAMP-regulated cloud environments

• Strong proficiency in Python, Go, Rust, or equivalent languages for building security automation and tooling

• Ability to obtain and maintain a security clearance

Preferred Qualifications:

• Experience in defence, aerospace, robotics, autonomy, or other high-assurance environments

• Experience designing multi-account AWS landing zones and organisational security architectures from the ground up

• Hands-on experience with Kubernetes security, container security, and service mesh security in cloud-native environments

• Familiarity with NIST SP 800-171, NIST SP 800-53, FedRAMP, or Cloud Computing SRG Impact Levels

• Experience with infrastructure drift detection, automated remediation, and continuous compliance monitoring

• Relevant certifications such as AWS Security Specialty, AWS Solutions Architect Professional, HashiCorp Terraform Associate/Engineer, CCSP, or CISSP

Additional Information

Benefits: Medical Insurance: Comprehensive health insurance plans covering a range of services. Saronic pays 100% of the premium for employees and 80% for dependents. Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care. Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents. Time Off: Generous PTO and Holidays. Parental Leave: Paid maternity and paternity leave to support new parents. Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses. Retirement Plan: 401(k) plan. Stock Options: Equity options to give employees a stake in the company’s success. Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage. Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline. Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office

This role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3).

XML job scraping automation by YubHub

Fridtjof Nansen crossed the Arctic, going places no human had ever been. Together with our users, we're doing the same onchain , and someone needs to make sure we don't get killed on the way there.

We're building the single best platform for onchain investing , agentic trading, staking infrastructure, AI-powered analytics , and we're scaling fast. Fast enough that security can't be an afterthought bolted on later. It has to be built in, from the start, by someone who knows what they're doing.

Our mission:

Surface the signal and create winners.

What you'll do at Nansen

You'll be the person who makes sure we can move fast without breaking things that matter. That means embedding security into everything we build , cloud infrastructure, applications, CI/CD pipelines, AI systems, staking operations , across a generalist role that spans the full surface area.

• Run security assessments across systems, architectures, and code , find the vulnerabilities before someone else does
• Advise engineering teams on secure design decisions. You're a partner, not a blocker
• Deploy and maintain security infrastructure: SIEM, vulnerability scanning, endpoint protection, logging , the things that let us sleep at night
• Secure our CI/CD pipelines and deployment workflows end-to-end
• Own secrets management, key management, and access controls. No shortcuts
• Address LLM security head-on: API key management, prompt injection prevention, and the risks that come with shipping AI-powered products at speed
• Coordinate penetration tests and security audits with external vendors
• Create and maintain secure coding guidelines and code review processes that engineers actually follow
• Represent the Security Team in the incident response process
• Drive compliance readiness , SOC 2, ISO 27001 , pragmatically, not bureaucratically

What we're looking for

• You've built and hardened production security at scale , you know the difference between a policy document and an actually secure system
• Strong cloud security knowledge (AWS, GCP or equivalent). Container security and network security fundamentals
• Hands-on experience implementing security tooling, not just evaluating it
• Secrets and key management expertise , you've managed this at a company where it actually mattered
• You understand the security implications of AI/LLM and agent-based systems. This is new territory and we need someone thinking about it seriously
• CI/CD pipeline security is second nature
• Pragmatic about compliance , you can get us to SOC 2 without drowning the engineering team in process
• You don't just use AI as a tool. You think with it. AI-first isn't a checkbox , it's how you work
• Strong async communication skills , we're remote-first, Slack-and-docs-heavy, and EMEA hours are preferred for team overlap
• Bonus: blockchain, smart contract, or staking infrastructure security experience. Kubernetes and Terraform security. Incident response or security operations background

What we offer our crew

• Competitive salary. Meaningful equity. Real ownership in what you build
• Fully remote with two no-meeting days a week , because deep work doesn't happen in a Google Meet
• Annual company retreat and team off-sites in one of our offices: Singapore, Bangkok, London, and Oslo , flights and accommodation covered
• Unlimited AI tokens , Claude, OpenAI, whatever helps you move fast
• Your own OpenClaw for work
• Nansen Pro account: giving you full access to the most detailed onchain data in the market
• A team that started as data engineers and data scientists that has grown to over 80 builders. Your craft is respected here.
• Speed, ownership, curiosity, courage. These aren't values on a wall , they're how we run.
• A front-row seat (and a hand in building) the next chapter of finance

XML job scraping automation by YubHub

Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

About the role

The Security Engineering team's mission is to safeguard our AI systems and maintain the trust of our users and society at large. Whether we're developing critical security infrastructure, building secure development practices, or partnering with our research and product teams, we are committed to operating as a world-class security organisation and keeping the safety and trust of our users at the forefront of everything we do.

Responsibilities:

• Build security for large-scale AI clusters, implementing robust cloud security architecture including IAM, network segmentation, and encryption controls
• Design secure-by-design workflows, secure CI/CD pipelines across our services, help build secure cloud infrastructure, with expertise in various cloud environments, Kubernetes security, container orchestration and identity management
• Ship and operate secure, high-reliability services using Infrastructure-as-Code (IaC) practices and GitOps workflows
• Apply deep expertise in threat modeling and risk assessment to secure complex multi cloud environments
• Mentor engineers and contribute to hiring and growth of the Security team

You may be a good fit if you:

• 5-15+ years of software engineering experience implementing and maintaining critical systems at scale
• Bachelor's degree in Computer Science/Software Engineering or equivalent industry experience
• Strong software engineering skills in Python or at least one systems language (Go, Rust, C/C++)
• Experience managing infrastructure at scale with DevOps and cloud automation best practices
• Track record of driving engineering excellence through high standards, constructive code reviews, and mentorship
• Proven ability to lead cross-functional security initiatives and navigate complex organisational dynamics
• Outstanding communication skills, translating technical concepts effectively across all organisational levels
• Demonstrated success in bringing clarity and ownership to ambiguous technical problems
• Strong systems thinking with ability to identify and mitigate risks in complex environments
• Low ego, high empathy engineer who attracts talent and supports diverse, inclusive teams
• Experience supporting fast-paced startup engineering teams
• Passionate about AI safety and alignment, with keen interest in making AI systems more interpretable and aligned with human values

Strong candidates may also have experience with:

• Designing and hardening CI/CD pipelines against supply chain attacks through isolated environments, signed attestations, dependency verification, and automated policy enforcement
• Building secure development workflows through hardened remote environments
• Implementing network segmentation and access controls in cloud environments
• Managing infrastructure through automated configuration and policy enforcement
• Hardening containerized applications and enforcing security policies

Logistics

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience. Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Salary

The annual compensation range for this role is £240,000 - £325,000GBP.

XML job scraping automation by YubHub

Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

About the Team

The Security Engineering team protects Anthropic's AI systems and maintains the trust of our users and society. We define the authentication architecture for our training infrastructure, design the cryptographic foundations that protect model weights and training data, and drive the developer security program that shapes how engineers build and ship software.

The team works across several areas that collaborate closely: identity and secrets management, developer security and supply chain, infrastructure security, and secure frameworks. You will support one of these areas while contributing across others, with your focus shaped by your strengths and the team's priorities.

Responsibilities:

• Build and maintain identity and secrets management systems, including credential issuance, rotation, and workload authentication across our multi-cloud environments
• Contribute to cluster security controls including RBAC policies, namespace isolation, workload identity, and pod security
• Implement and maintain cloud security controls including IAM, network segmentation, VPC architecture, and encryption across our multi-cloud and on-prem environments
• Design and implement secure development frameworks and libraries that make secure coding the path of least resistance for our engineering teams, including service to service authentication, serialization libraries, and tool proxies.
• Harden CI/CD pipelines against supply chain attacks through isolated build environments, signed attestations, dependency verification, and automated policy enforcement
• Identify and remediate security gaps through code review, threat modeling, and hands-on debugging
• Contribute to continuous cloud security posture management using infrastructure-as-code scanning, misconfiguration detection, and automated remediation

You may be a good fit if you have:

• At least 5 years of software engineering experience implementing and maintaining security-relevant systems in production
• Bachelor's degree in Computer Science or equivalent industry experience
• Strong programming skills in Python or at least one systems language such as Go or Rust
• Experience contributing to cloud security controls
• A track record of taking ownership of problems end to end, from identifying the issue to shipping and monitoring the fix
• Clear communication skills and the ability to work collaboratively across engineering teams
• Low ego and high empathy, with a genuine interest in helping teammates succeed
• Passion for AI safety and the role security engineering plays in building trustworthy AI systems

Strong candidates may also have:

• Contributions to developer security tooling including SAST, dependency scanning, or secure build infrastructure
• Familiarity with Kubernetes security primitives including RBAC, namespaces, network policies, and admission controllers
• Experience with cloud security posture management tooling, infrastructure-as-code security scanning, or automated remediation
• Experience with network security and isolation techniques including east-west controls, traffic inspection, and cloud network policy
• Experience with eBPF for security monitoring and enforcement, or developing kernel security policies
• Experience building secrets management or workload authentication systems, including familiarity with protocols such as OAuth 2.0, OIDC, SAML, or SPIFFE/SPIRE
• Background building or operating security systems in environments that support research workflows and rapid iteration

Deadline to apply:

None. Applications will be reviewed on a rolling basis.

Logistics

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience. Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work. We think AI systems like the ones we're building have enormous social and ethical implications. We think this makes representation even more important, and we strive to include a range of diverse perspectives on our team.

Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of unsolicited messages or requests for sensitive information.

XML job scraping automation by YubHub

In this role, you will own cloud security across GCP (primary) and supplemental environments in AWS and Azure, as well as containerized systems, SaaS platforms, and our multi-tenant AI infrastructure. You’ll improve our security posture through strong architecture, posture management, secure-by-default development practices, and close partnership with Engineering, Compliance, Security Architecture, and Platform teams.

This is a highly impactful, hands-on leadership role—perfect for someone who wants to solve complex security challenges at scale while influencing product, engineering, and go-to-market teams.

Cloud Security Engineering

• Lead configuration hardening across GCP, with additional oversight of workloads and integrations running in AWS and Azure.
• Own and optimise CSPM platforms across multi-cloud environments—establishing configuration baselines, guardrails, and remediation workflows.
• Secure critical SaaS platforms, ensuring proper configurations, access controls, and engineering integrations.
• Lead infrastructure vulnerability management across multi-cloud systems, containers, registries, and platform services.
• Enhance security across containerised and Kubernetes (GKE/EKS/AKS) workloads, including runtime protections, network policies, and workload identity.
• Assess secure logging configurations across cloud/SaaS providers, ensuring audit logs, retention, and routing meet monitoring and architecture needs.

Secure Development & Architecture Enablement

• Partner with engineering teams to make services secure by default, embedding security into development workflows, CI/CD pipelines, and cloud-native deployments.

Cross-Functional Responsibilities

• Collaborate with Security Monitoring, Compliance/GRC, Architecture, DevOps, Platform Engineering, and ML Infrastructure.
• Participate in communicating security advisories, best practices, and updates to Replit’s customers.
• Support incident investigations as a cloud security subject-matter expert.

Required Skills & Experience:

• 7+ years of experience in cloud engineering, with 3+ years in a senior or lead role.
• Hands-on experience with CSPM tools (Wiz, Lacework, Prisma, Orca, SCC, etc.).
• Deep expertise in GCP security (IAM, VPC, KMS, GKE, Cloud Logging).
• Experience securing and governing SaaS platforms and identity integrations.
• Operational experience with infrastructure vulnerability management across cloud and container environments.
• Working knowledge of AWS and/or Azure security services and configurations.
• Experience with container and Kubernetes security across GKE, EKS, or AKS.
• Strong IaC security experience with Terraform, Pulumi, or similar tooling.
• Familiarity with compliance standards (SOC 2, ISO 27001, PCI DSS).

Preferred Qualifications:

• Experience supporting engineering teams in building secure-first, cloud-native or PaaS environments.
• Background securing AI/ML pipelines, model-serving infrastructure, or developer platform services.
• Experience in high-growth technology or cloud-native product companies.
• Experience with securing AI/agentic systems and sensitive data pipelines.
• Automation/scripting with Python.
• Relevant certifications (e.g., GCP Professional Cloud Security Engineer, AWS/Azure security certs).

What We Value:

• Problem-solving mindset — Ability to break down complex security and operational challenges into clear engineering solutions.
• Autonomy — Comfortable leading initiatives, collaborating effectively, and driving outcomes with minimal oversight.
• Communication excellence — Able to translate deep technical concepts for engineers, executives, and enterprise customers.
• Continuous learning — Passion for staying current with AI security, cloud-native advances, and emerging threats.
• Automation-first approach — Belief in reducing operational toil and building scalable, self-healing systems.

Full-Time Employee Benefits Include:

• Competitive Salary & Equity
• 401(k) Program with a 4% match
• Health, Dental, Vision and Life Insurance
• Short Term and Long Term Disability
• Paid Parental, Medical, Caregiver Leave
• Commuter Benefits
• Monthly Wellness Stipend
• Autonomous Work Environment
• In Office Set-Up Reimbursement
• Flexible Time Off (FTO) + Holidays
• Quarterly Team Gatherings
• In Office Amenities

XML job scraping automation by YubHub