Senior Security Risk Management Engineer

RDQ124R75

The Databricks Security Risk Management team’s mission is to proactively identify manage and monitor security risks that may impede Databricks' ability to achieve its strategic objectives while safeguarding the confidentiality integrity and availability of information and physical company assets. You will be an individual contributor on this dynamic and highly effective team.

This is a remote work opportunity within the following geographic regions.

• Netherlands Great Britain / United Kingdom Spain Costa Rica Brazil

You will work with a global Databricks team spread across various locations in the US and EMEA to conduct security risk assessments maintain the Databricks risk register and more.

The impact your will have:

• Integrate security risk management across the organization

• Determine and drive risk mitigation efforts

• Support recurring reporting of risk program metrics to leadership

• Manage security risk acceptance and exceptions processes

• Maintain risk-related policy and process documents

What we look for:

We are looking for a professional with the following skills and practical experience in:

• Designing implementing and managing a security risk management program and risk acceptance / security exception process

• Building end-to-end risk scenarios specific to a company’s environment

• Completing projects with multiple dependencies / constraints and build relationships with / manage diverse stakeholders remotely

• Tracking and reporting key performance and risk indicators

• Ability to clearly articulate risk concepts and results to leadership and peers

• Excellent verbal and written communication documentation collaboration analytical and presentation skills

• Bachelor's degree from an accredited college or university in cybersecurity computer science or related field is preferred

• Relevant security and GRC certifications such as CISSP CCSP CSSLP CGRC CCSK GSEC GCIH GCFE GCFA and CEH are preferred

• 4+ years of security experience or advanced degree + 2 years of security experience

• Working understanding of security assessment risk management and compliance frameworks (e.g. NIST 800-37 NIST 800-39 NIST 800-30 MITRE ATT&CK ISO 27001 ISO 27005 NIST 800-53 SOC 2 PCI FedRAMP) and how they are interrelated

Benefits

• Private Medical Insurance

• Private Life Insurance

• Equity Awards

• Paid Parental Leave

• Fitness Reimbursement

• Annual Career Development Fund

• Home Office/Work Headphones Reimbursement

• Business Travel Accident Insurance

• Mental Wellness Resources