Senior Security Risk Management Engineer
To see similar active jobs please follow this link: Remote Development jobs
RDQ124R75
The Databricks Security Risk Management team’s mission is to proactively identify, manage, and monitor security risks that may impede Databricks' ability to achieve its strategic objectives, while safeguarding the confidentiality, integrity, and availability of information and physical company assets. You will be an individual contributor on this dynamic and highly effective team.
This is a remote work opportunity within the following geographic regions.
Netherlands, Great Britain / United Kingdom, Spain, Costa Rica, Brazil
You will work with a global Databricks team, spread across various locations in the US and EMEA, to conduct security risk assessments, maintain the Databricks risk register, and more.
The impact your will have:
Integrate security risk management across the organization
Determine and drive risk mitigation efforts
Support recurring reporting of risk program metrics to leadership
Manage security risk acceptance and exceptions processes
Maintain risk-related policy and process documents
What we look for:
We are looking for a professional with the following skills and practical experience in:
Designing, implementing, and managing a security risk management program and risk acceptance / security exception process
Building end-to-end risk scenarios specific to a company’s environment
Completing projects with multiple dependencies / constraints and build relationships with / manage diverse stakeholders remotely
Tracking and reporting key performance and risk indicators
Ability to clearly articulate risk concepts and results to leadership and peers
Excellent verbal and written communication, documentation, collaboration, analytical, and presentation skills
Bachelor's degree from an accredited college or university in cybersecurity, computer science, or related field is preferred
Relevant security and GRC certifications, such as CISSP, CCSP, CSSLP, CGRC, CCSK, GSEC, GCIH, GCFE, GCFA, and CEH, are preferred
4+ years of security experience or advanced degree + 2 years of security experience
Working understanding of security, assessment, risk management, and compliance frameworks (e.g., NIST 800-37, NIST 800-39, NIST 800-30, MITRE ATT&CK, ISO 27001, ISO 27005, NIST 800-53, SOC 2, PCI, FedRAMP) and how they are interrelated
Benefits
Private Medical Insurance
Private Life Insurance
Equity Awards
Paid Parental Leave
Fitness Reimbursement
Annual Career Development Fund
Home Office/Work Headphones Reimbursement
Business Travel Accident Insurance
Mental Wellness Resources
About the job
Senior Security Risk Management Engineer
To see similar active jobs please follow this link: Remote Development jobs
RDQ124R75
The Databricks Security Risk Management team’s mission is to proactively identify, manage, and monitor security risks that may impede Databricks' ability to achieve its strategic objectives, while safeguarding the confidentiality, integrity, and availability of information and physical company assets. You will be an individual contributor on this dynamic and highly effective team.
This is a remote work opportunity within the following geographic regions.
Netherlands, Great Britain / United Kingdom, Spain, Costa Rica, Brazil
You will work with a global Databricks team, spread across various locations in the US and EMEA, to conduct security risk assessments, maintain the Databricks risk register, and more.
The impact your will have:
Integrate security risk management across the organization
Determine and drive risk mitigation efforts
Support recurring reporting of risk program metrics to leadership
Manage security risk acceptance and exceptions processes
Maintain risk-related policy and process documents
What we look for:
We are looking for a professional with the following skills and practical experience in:
Designing, implementing, and managing a security risk management program and risk acceptance / security exception process
Building end-to-end risk scenarios specific to a company’s environment
Completing projects with multiple dependencies / constraints and build relationships with / manage diverse stakeholders remotely
Tracking and reporting key performance and risk indicators
Ability to clearly articulate risk concepts and results to leadership and peers
Excellent verbal and written communication, documentation, collaboration, analytical, and presentation skills
Bachelor's degree from an accredited college or university in cybersecurity, computer science, or related field is preferred
Relevant security and GRC certifications, such as CISSP, CCSP, CSSLP, CGRC, CCSK, GSEC, GCIH, GCFE, GCFA, and CEH, are preferred
4+ years of security experience or advanced degree + 2 years of security experience
Working understanding of security, assessment, risk management, and compliance frameworks (e.g., NIST 800-37, NIST 800-39, NIST 800-30, MITRE ATT&CK, ISO 27001, ISO 27005, NIST 800-53, SOC 2, PCI, FedRAMP) and how they are interrelated
Benefits
Private Medical Insurance
Private Life Insurance
Equity Awards
Paid Parental Leave
Fitness Reimbursement
Annual Career Development Fund
Home Office/Work Headphones Reimbursement
Business Travel Accident Insurance
Mental Wellness Resources