Sr. Security Incident Handler

Location: United States - This role is open to U.S. candidates in any U.S. Location. Requisition: RDQ226R608 U.S. Citizenship Requirement This role will involve services that are covered by and must comply with the U.S. Government information security and federal contractor regulations, including, without limiation, Department of Defense Cloud Computing Security Requirements for Impact Level 6 Cloud Service Provider personnel, FedRAMP High baseline, and requirements of certain federal contracts. Therefore, this role is open to United States citizens on United States Soil only. Our mission is to respond to security & privacy threats, incidents and investigations to protect our customers, employees and enterprise data in a fast, efficient and standardized manner. You will report to the Head of Incident Response in the Security Org. This is a Security Incident Handler role and we are looking for capable candidates who are willing to learn how to lead Security & Privacy investigations well even under pressure, engage with various stakeholders, help conduct post mortems and continue to help the team drive various security initiatives with other teams, despite conflicting requirements. The impact you will have: You will run Security & Privacy Investigations which will require you to engage with different stakeholders and communicate investigations to Security leadership and work towards incident resolution. Respond to new incidents as part of a distributed daytime operations and on-call schedule. Handle SEV-1s and SEV-0s with support from senior members of the team. You will guide investigations with multiple teams across multiple organizations, to gain traction and tradeoff to resolve issues. You can handle incomplete incident context, and choose best solutions with limited or incomplete information. Partner and build relationships with Engineering and Security teams to contain and mitigate risks during incidents Identify, get commitment for, and follow up on projects identified in the postmortem process. What we look for: 5+ years of experience in Incident or Project Management with a Computer Science Bachelor’s Degree Program management skills, including prioritization and dealing with ambiguous requirements. Strong growth mindset and bias for action,Strong oral and written communication skills and customer centric attitude. You have experience to balance short term/ tactical follow ups and track long term improvements across multiple teams. Experience with technical concepts of cloud security, data ecosystem and the Incident Response process lifecycle. Understand industry wide security terms and models : NIST,ISO/IEC 27001, OWASP, MITRE ATT&CK for Cloud Enterprise. Proven ability to build relationships and propel momentum with clients and stakeholders. About Databricks Databricks is the data and AI company. More than 10,000 organizations worldwide — including Comcast, Condé Nast, Grammarly, and over 50% of the Fortune 500 — rely on the Databricks Data Intelligence Platform to unify and democratize data, analytics and AI. Databricks is headquartered in San Francisco, with offices around the globe and was founded by the original creators of Lakehouse, Apache Spark™, Delta Lake and MLflow. To learn more, follow Databricks on Twitter , LinkedIn and Facebook . Benefits At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region, please visit . Our Commitment to Diversity and Inclusion At Databricks, we are committed to fostering a diverse and inclusive culture where everyone can excel. We take great care to ensure that our hiring practices are inclusive and meet equal employment opportunity standards. Individuals looking for employment at Databricks are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political affiliation, race, religion, sexual orientation, socio-economic status, veteran status, and other protected characteristics. Compliance If access to export-controlled technology or source code is required for performance of job duties, it is within Employer's discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.