Head of Custody Security
Crypto.com
AWSAzureCloudGoogle Cloud PlatformWeb3
Senior Enterprise Security Engineer
Databricks
full-time
Posted on:
Location: 🇳🇱 Netherlands
Visit company websiteJob Level
Senior
Tech Stack
ApacheCloudJamfSpark
About the role
- Join a growing team that leads Databricks in enterprise security projects and report to the Director, Enterprise Security.
- Conduct security design reviews for corporate applications and systems, identifying architectural weaknesses and security gaps.
- Develop comprehensive threat models to assess attack vectors, vulnerabilities, and mitigations.
- Analyze data flows to understand how sensitive data is stored, processed, and transmitted across applications and infrastructure.
- Provide guidance on implementing Databricks security policies, standards, and frameworks (e.g., NIST, ISO 27001, OWASP).
- Perform risk assessments and recommend mitigations to reduce the attack surface.
- Continuously evaluate and improve security design review processes and tooling, introducing automation where appropriate.
Requirements
- Engineering Bachelor's Degree, or relevant experience.
- Substantial demonstrated expertise as a Security Engineer with experience in Enterprise security.
- Strong knowledge of threat modeling methodologies (e.g., STRIDE, DREAD, PASTA) and their application in real-world scenarios.
- Significant experience with NIST 800-53 or similar frameworks.
- Experience with automating security reviews is desirable.
- Expertise in offering perspective and guidance on an enterprise scale for public and internal services in a cloud-centric environment.
- Skill and experience with Identity and Access Management (IAM) solutions such as Okta; Device Management solutions such as Jamf/Intune; tuning EDR (Crowdstrike/SentinelOne/similar) with complex engineering/development workloads; and Just In Time administrative access is desirable.
- Familiarity with network access solutions (CASBs/Prisma/NAC) is advantageous.
- A passion for working in high-growth environments.
