Senior Staff Threat Hunter – Intelligence Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior Staff Threat Hunter at Databricks leveraging advanced threat hunting across multi-cloud environments. Defining strategy, mentoring teams, and architecting scalable security solutions.
Responsibilities:
- Define the strategic vision and roadmap for a structured, repeatable threat hunting program using hypothesis-driven methodologies aligned with industry frameworks.
- Develop Databricks-based hunting capabilities and logic to analyse security telemetry at a massive scale across our multi-cloud environment.
- Build reusable hunting notebooks and automated intelligence pipelines using Databricks workflows.
- Serve as the technical authority for threat hunting across Security, influencing detection strategy and incident response capabilities.
- Mentor and develop threat hunting capabilities across the security organization.
- Operationalize threat intelligence from multiple sources into actionable hunting hypotheses.
- Work with internal partners to develop and maintain Priority Intelligence Requirements (PIRs).
- Build automated enrichment pipelines using Databricks to correlate intelligence with internal telemetry.
- Produce intelligence assessments on threats relevant to our business.
- Represent Databricks in external security communities and industry working groups on advanced threat topics.
- Architect scalable hunting infrastructure using Databricks notebooks, Delta Lake, and Unity Catalog.
- Develop libraries of reusable detection logic and hunting queries optimized for distributed computing.
- Build automated workflows for threat intelligence ingestion, enrichment, and correlation.
- Create dashboards and visualizations for threat exposure and hunt findings.
- Integrate security tools with Databricks platform.
Requirements:
- 12+ years in cybersecurity with 6+ years focused on threat hunting, threat intelligence, or detection engineering.
- Deep expertise with nation-state and e-crime threat actors’ TTPs, trends, and historical targets.
- Experience working with large-scale security datasets and big data platforms.
- Strong Python programming experience with a background in PySpark, distributed computing frameworks, or Databricks’ platform.
- Deep understanding of cloud security across AWS, Azure, and GCP—including cloud-native logging, security controls, and container/Kubernetes security.
- Strong knowledge of OS internals across macOS, Linux, and containerized environments.
- Experience with enterprise-scale software development practices including infrastructure-as-code, code review, and large codebase management.
- Demonstrated experience conducting hypothesis-driven threat hunts with measurable outcomes.
- Experience defining and driving multi-year security program strategy.
- Thought leadership around the application of cybersecurity frameworks, such as MITRE ATT&CK and D3FEND.
- Applied CTI skills including consuming and operationalizing IOCs/TTPs, tracking campaigns, and conducting research.
- Experience influencing technical decisions beyond your immediate team.
- A track record of mentoring Staff+ engineers.
Benefits:
- Health insurance
- 401(k) matching
- Flexible work hours
- Paid time off
- Remote work options
Similar Jobs
Embedded Intelligence Analyst
Intelligence Analyst for embedded role in global transport and logistics client, handling geopolitical intelligence assessments and crisis response. Pursuing strategic insights globally.
Decision Intelligence Analyst
Decision Intelligence Analyst responsible for evaluating decision outputs and improving AI reasoning quality at Rwazi. Safeguarding the integrity of decision-making processes with structured analysis.
Brand Intelligence Analyst
Brand Intelligence Analyst at PeakMetrics translating online data into brand stories. Analyzing narratives and risks using advanced machine learning on the PeakMetrics platform.
Staff Cyber Threat Intelligence Researcher
Researcher at Bitsight focusing on threat actor intelligence data and innovative product capabilities. Collaborating with cross-functional teams and conducting data analysis in cybersecurity domain.
Artificial Intelligence Analyst – Mid-level
Analista de Inteligência Artificial Pleno at Vetta engaging in AI projects for operational efficiency and sustainability. Collaborating with teams to analyze and implement AI solutions.
Artificial Intelligence Analyst, Junior
Analista de Inteligência Artificial Junior working on AI projects with industry experts at Vetta. Collaboration for sustainable technological solutions in digital industrialization.
Lead Threat Hunter
Lead Threat Hunter responsible for establishing and driving organization's threat hunting program to detect advanced threats. Oversee proactive threat detection and automation processes to enhance cybersecurity effectiveness.
Market Intelligence Analyst
Market Intelligence Analyst specializing in data management and market intelligence reporting for Crux's clean economy mission. Collaborating with cross-functional teams to deliver insights and support stakeholders' needs.
Data Collection, Intelligence Analyst
Junior Intelligence Analyst at Searchlight Cyber conducting research and gathering data on cyber threats. Collaborating with seasoned professionals and contributing to global cybersecurity efforts.
Intelligence Analyst, Data Collection
Junior Intelligence Analyst enhancing data collection capabilities for cybersecurity. Involves data gathering from dark web and open-source intelligence improving the company's intelligence capabilities.
Threat Intelligence Specialist
Threat Intelligence Specialist handling lawful, time-sensitive requests from global law enforcement agencies. Collaborating with teams across legal, product, and operations in a dynamic environment.
Senior Intelligence Analyst – Capabilities Developer
Senior Intelligence Analyst analyzing threats and developing intelligence solutions at Zscaler. Investigate telemetry and engage with teams to enhance threat detection and response.
Digital Data Intelligence Analyst
Digital Data Intelligence Analyst managing data analysis and stakeholder information for Siigo in Bogotá. Collaborating on data classifications and automated dashboards in a remote role.
Pharmacy Data Intelligence Analyst
Pharmacy Data Intelligence Analyst role at Baptist Health focused on data analysis to improve efficiency and medication safety. This involves collaboration with various teams to enhance pharmacy services.
Senior Intelligence Analyst
Senior Intelligence Analyst on Red Canary's team investigating threats and analyzing telemetry. Utilizing innovative data modeling to improve detection and response capabilities.
Pharmaceutical Market Intelligence Analyst
Pharmaceutical Market Intelligence Analyst facilitating strategic insights for life sciences client growth. Evaluating market trends and identifying commercial opportunities in a remote role.
Senior Cyber Intelligence Analyst
Senior Cyber Intelligence Analyst responsible for identifying, tracking, and mitigating information security threats for UPS. Collaborating with management and producing detailed reports on malware and vulnerabilities.
Senior Threat Analyst – Threat Hunter
Seeking a detail-oriented Threat Hunter to defend customer environments at Sophos. Collaborate with a dedicated threat hunting team using advanced tools and techniques.
Intelligence Analyst
Intelligence Analyst for Everbridge's International Monitoring Center monitoring real-time risk events. Position requires night shifts in Budapest, Hungary.
Senior Competitive Intelligence Analyst, Cloud Security
Sr. Competitive Intelligence Analyst supporting CrowdStrike's cloud security portfolio. Driving go-to-market strategy and competitive analysis in a remote, impactful role.