Senior Staff Threat Hunter & Intelligence Engineer - Databricks jobs in United States
cer-icon
Apply on Employer Site
company-logo

Databricks · 15 hours ago

Senior Staff Threat Hunter & Intelligence Engineer - Databricks

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$210K/yr - $293K/yr
date12+ years exp

Databricks is a leading data and AI company that provides a unified platform for data analytics. They are seeking a Senior Staff Threat Hunter & Intelligence Engineer to lead threat hunting and intelligence capabilities across various cloud platforms, build the necessary tooling and infrastructure, and serve as a technical authority in the security organization.

AnalyticsArtificial Intelligence (AI)Data StorageInformation TechnologyMachine Learning
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Define the strategic vision and roadmap for a structured, repeatable threat hunting program using hypothesis-driven methodologies aligned with industry frameworks
Develop Databricks-based hunting capabilities and logic to analyse security telemetry at a massive scale across our multi-cloud environment
Build reusable hunting notebooks and automated intelligence pipelines using Databricks workflows
Serve as the technical authority for threat hunting across Security, influencing detection strategy and incident response capabilities
Mentor and develop threat hunting capabilities across the security organization
Operationalize threat intelligence from multiple sources (commercial feeds, OSINT, industry sharing groups) into actionable hunting hypotheses
Work with internal partners to develop and maintain Priority Intelligence Requirements (PIRs)
Build automated enrichment pipelines using Databricks to correlate intelligence with internal telemetry
Produce intelligence assessments on threats relevant to our business
Represent Databricks in external security communities, industry working groups, and with strategic customers on advanced threat topics
Architect scalable hunting infrastructure using Databricks notebooks, Delta Lake, and Unity Catalog
Develop libraries of reusable detection logic and hunting queries optimized for distributed computing
Build automated workflows for threat intelligence ingestion, enrichment, and correlation
Create dashboards and visualizations for threat exposure and hunt findings
Integrate security tools with Databricks platform

Qualification

Threat huntingThreat intelligencePython programmingCloud securityDatabricks platformBig data platformsOS internalsInfrastructure-as-codeCybersecurity frameworksMentoring

Required

12+ years in cybersecurity with 6+ years focused on threat hunting, threat intelligence, or detection engineering
Deep expertise with nation-state and e-crime threat actors' TTPs, trends, and historical targets
Experience working with large-scale security datasets and big data platforms
Strong Python programming experience with a background in PySpark, distributed computing frameworks, or Databricks' platform
Deep understanding of cloud security across AWS, Azure, and GCP—including cloud-native logging, security controls, and container/Kubernetes security
Strong knowledge of OS internals across macOS, Linux, and containerized environments
Experience with enterprise-scale software development practices including infrastructure-as-code, code review, and large codebase management
Demonstrated experience conducting hypothesis-driven threat hunts with measurable outcomes
Experience defining and driving multi-year security program strategy
Thought leadership around the application of cybersecurity frameworks, such as MITRE ATT&CK and D3FEND
Applied CTI skills including consuming and operationalizing IOCs/TTPs, tracking campaigns, and conducting research
Experience influencing technical decisions beyond your immediate team
A track record of mentoring Staff+ engineers

Preferred

Experience with Databricks platform or similar (Spark, Delta Lake, MLflow)
Experience protecting multi-tenant SaaS/PaaS environments
Experience using AI, Large Language Models or machine learning to automate cybersecurity operations
Experience with purple team operations and adversary emulation
Published research at major cybersecurity conferences or in academic journals
Contributions to impactful open-source security projects or software patents in the cybersecurity domain

Benefits

Annual performance bonus
Equity

Company

Databricks

twittertwittertwitter
Glassdoor4.4
company-logo
Databricks is a data and AI platform that unifies data engineering, analytics, and machine learning on a lakehouse architecture.
dateFounded in 2013
location
San Francisco, California, USA
people-size5001-10000 employees
web-link
https://www.databricks.com

H1B Sponsorship

Databricks has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (385)
2024 (319)
2023 (227)
2022 (222)
2021 (166)
2020 (64)

Funding

Current Stage
Late Stage
Total Funding
$25.81B
Key Investors
Counterpoint GlobalFranklin TempletonAndreessen Horowitz
2025-12-16Series Unknown· $4B
2025-09-08Series Unknown· $1B
2025-01-13Debt Financing· $5.25B

Leadership Team

leader-logo
Ali Ghodsi
CEO and Co-founder
linkedin
leader-logo
David Conte
Chief Financial Officer
linkedin

Recent News

Crunchbase News
Large American VCs Topped 2025 Active Investor Ranks, Including A16Z, Accel And Sequoia
2026-01-09
Techcircle
From buzz to business value: How enterprises can build AI Agents that deliver
2026-01-08
Destination CRM
Adstra Partners with The Marketing Cloud and Databricks
2026-01-07
Company data provided by crunchbase