Databricks Enterprise Lead Security Architect - Principal IT Software Engineer

DataBricks-posted 2 months ago
Mountain View, CA
5,001-10,000 employees
Professional, Scientific, and Technical Services
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

We are looking for a highly skilled, technology and business-savvy Lead Security Architect to join our team within Databricks IT. In this dynamic, fast-paced environment, you will be responsible for designing and implementing a secure and scalable architecture to protect our corporate assets. You'll focus on key areas of IT security, including Identity and Access Management, Zero Trust architecture, and endpoint security, while also working to secure critical business applications and sensitive data. Your expertise will be crucial in building proactive security strategies that align with our business goals and protect the company from an ever-evolving threat landscape. This position demands deep expertise in security principles and a comprehensive understanding of the entire infrastructure stack and IAM systems to design robust, future-ready security solutions. You will be instrumental in safeguarding our systems' resilience and integrity against ever-evolving cyber threats. You will play a critical role in shaping our security strategy for modern platforms across AWS, Azure, GCP, network infrastructure, storage, and SaaS solutions, help establish a strong least privilege (PoLP) model, providing specialized IAM expertise, and securely supporting SaaS with sensitive information (NHI). You will also be a key contributor in building our internal strategy for secure AI development. Additionally, you will support the secure integration of SaaS platforms such as Google Workspace, collaboration tools, and GTM systems, maintaining alignment with enterprise security standards. Close collaboration with cross-functional teams is essential to embed security throughout the technology stack.

  • Design and implement secure, scalable reference architectures for the Databricks IT across Cloud Infra (Compute, DBs, Network, Storage), SaaS, Custom Built Applications, Data & AI systems.
  • Establish and enforce security controls for core security areas including Databricks Workspace Management, Secure Networking, Identity and Access Management, Data Encryption, Data Exfiltration Prevention, Cluster Security, and Offensive Security.
  • Design and implement secure authentication and authorization for automated systems focusing on automation and integration with existing identity management systems.
  • Develop and document comprehensive Identity and Access Management policies, ensuring security and compliance.
  • Implement Data Loss Prevention solutions to protect sensitive data across endpoints, networks, and cloud environments.
  • Design and implement cloud-based proxies for SaaS applications to provide secure access and enforce security policies.
  • Establish and document best practices for VPC configurations, cloud networking, and infrastructure as code using Terraform.
  • Design and implement data security controls based on the principle of least privilege.
  • Guide internal IT on Databricks' security and compliance certifications and support security reviews/audits.
  • Support incident response, vulnerability management, threat modeling, and red teaming.
  • Stay current on industry trends and emerging threats to enhance security posture.
  • Advise executive leadership on security architecture, risks, and mitigation.
  • Mentor security engineers and developers on secure design and best practices.
  • Bachelor's degree in Computer Science, Information Security, Engineering, or a related field.
  • Master's degree in Computer Science specifically in Information Security or a related discipline is strongly preferred.
  • Minimum 12 years in cybersecurity, with 5+ in security architecture or senior technical roles.
  • Experience in FedRAMP High systems/ GovCloud preferred.
  • Direct experience designing and securing enterprise platforms in complex multi-cloud environments.
  • Deep knowledge of enterprise architecture and security features.
  • Hands-on experience automating security controls with Terraform and scripting.
  • Proven expertise securing data analytics pipelines, SaaS integrations, and workload isolation.
  • Experience with Enterprise Security Analysis Tools and monitoring/security policy optimization.
  • Deep experience in threat modeling, design, PoC, and implementing large-scale enterprise solutions.
  • Extensive hands-on experience in AWS cloud security, network security, with knowledge of Zero Trust, Data Protection, and Appsec.
  • Strong understanding of enterprise IAM systems and Data Protection.
  • Expert experience with SIEM platforms, XDR, and cloud-native threat detection tools.
  • Expert in web application security, OWASP, API security, and secure design and testing.
  • Hands-on experience with security automation is required.
  • Proficiency in AI-assisted development, Python, Cursor, Lambda, Terraform, or comparable scripting/IaC tools.
  • Industry certifications like CISSP, CCSP, CEH, AWS Certified Security - Specialty, AWS Certified Solutions Architect - Professional, or AWS Certified Advanced Networking - Specialty are preferred.
  • Ability to influence stakeholders and drive alignment.
  • Strategic thinker with a passion for security innovation, continuous improvement, and building scalable defenses.
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service