Databricks22.04.2026

Staff Production Engineer- Public Sector

Virginia

Обязанности

  • 01Design, automate, and operate the IAM, account/subscription, and project lifecycle across AWS, Azure, and GCP, enforcing least-privilege and standardized access patterns at scale
  • 02Review, implement, and continuously improve cloud identity and access policies (IAM, Okta, Opal) to align with Databricks security standards and audit requirements
  • 03Build and maintain reliable, observable automation and tooling to apply cloud changes (roles, policies, accounts, networking) safely and repeatedly
  • 04Treat operational and security issues as software problems: eliminate toil, drive root-cause analysis, and codify fixes into infrastructure and tooling
  • 05Own and improve security and audit logging data pipelines from cloud providers into our internal systems, ensuring timely, accurate data for detection, investigations, and audits
  • 06Partner with Security, Compliance, and Audit teams to provide evidence, clarifications, and policy updates that keep our environments aligned with evolving standards
  • 07Operate and improve specialized, highly regulated environments (e.g., FedRAMP / GovCloud) including release management, patching cadences, and supporting secure access workflows (e.g., SAW)
  • 08Ensure high availability and resiliency for critical security and access infrastructure across these environments
  • 09Participate in a 24x7 on-call rotation for high-severity incidents impacting cloud accounts, IAM, or security data pipelines
  • 10Act as a key partner to product engineering, security engineering, and field teams during incidents to restore service and harden systems for the future

Требования

  • 01Candidates must hold a current TS/SCI clearance (either active or currently held in an editable/re-activatable status within the 2-year window)
  • 02Possession of a current polygraph (Counterintelligence or Full Scope) is highly desired and considered a significant plus
  • 03Education- BS, MS, or PhD in Computer Science, Engineering, or a related technical field, or equivalent practical experience
  • 04Staff: 8+ years of experience operating and automating large-scale cloud environments, with a track record of driving cross-team infrastructure improvement
  • 05Deep hands-on experience with at least one major cloud provider (AWS, Azure, or GCP) in areas such as IAM, networking, accounts/subscriptions/projects, and audit logging
  • 06Strong background in Infrastructure-as-Code and automation (e.g., Terraform, CloudFormation, or similar) and CI/CD for infrastructure changes
  • 07Proven experience working in or with security-sensitive or regulated environments (e.g., SOC2, FedRAMP, ISO 27001, financial services, public sector) and translating requirements into concrete technical controls
  • 08Familiarity with access review processes, policy baselines, and audit evidence for cloud environments
  • 09Demonstrated success running high-availability, security-critical services, including on-call responsibilities and incident management
  • 10Strong debugging and problem-solving skills across distributed systems, with the ability to navigate ambiguous issues spanning multiple teams and platforms
  • 11Bonus Experience with Okta, Opal, or similar identity/access tooling
  • 12Background operating secure admin workstations (SAW) or comparable hardened access patterns
  • 13Experience migrating cloud accounts or subscriptions during M&A or large-scale reorganizations

Условия

  • 01Pay range transparency: The pay range(s) for this role is listed below and represents the expected salary range for non-commissionable roles or on-target earnings for commissionable roles
  • 02Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to job-related skills, depth of experience, relevant certifications and training, and specific work location
  • 03Based on the factors above, Databricks anticipates utilizing the full width of the range
  • 04The total compensation package for this position may also include eligibility for annual performance bonus, equity, and th