Federal Senior Security Assurance Engineer

Databricks is the data and AI company that helps organizations unify and democratize data, analytics, and AI. They are seeking a Senior Security Assurance Engineer to lead compliance certification efforts for the U.S. Federal Government and ensure audit readiness and security compliance across the organization.

Responsibilities:

• Develop Databricks ATO packages
• Ensure audit readiness and security compliance across the organization by working cross-functionally with other teams such as Engineering, IT, and HR
• Collect and manage evidence for audits
• Lead continuous monitoring and authorizations
• Support other Security Assurance Team certifications, reports, and activities as needed
• Support security compliance reviews of new features
• Build relationships with other Databricks teams to accomplish Security Assurance goals
• Develop and maintain strong relationships with external auditors and certification bodies to facilitate smooth audit processes

Requirements:

• Bachelor's degree in Computer Science or related field, or equivalent experience
• 5+ years of security compliance or audit related experience
• FedRAMP and/or DISA SRG auditing (3PAO) or implementation (CSP) experience
• NIST 800-53 and RMF experience
• A comprehensive understanding of security controls across all domains
• A general understanding of key technical security controls in cloud environments (AWS, Azure, GCP)
• Strong written and verbal communication skills
• Experience working effectively across the spectrum of individual contributors and senior leadership within an organization (for example, Engineering IT, Security, etc.)
• Active U.S. Government Top Secret/Secret Compartmentalized Information (TS/SCI) clearance with full scope polygraph