Back to jobsApply
Databricks

Senior Staff Threat Hunter – Intelligence Engineer

Threat Intelligence SpecialistSecurity AnalystFull TimeRemoteTeam 1,001-5,000Since 2013H1B SponsorCompany SiteLinkedIn

Location

California

Posted

87 days ago

Salary

$209.6K - $293.4K / year

12 yrs expEnglishAWSAzureCloudCyber SecurityGoogle Cloud PlatformKubernetesLinuxMac OSPy SparkPythonUnity

Job Description

• Define the strategic vision and roadmap for a structured, repeatable threat hunting program using hypothesis-driven methodologies aligned with industry frameworks. • Develop Databricks-based hunting capabilities and logic to analyse security telemetry at a massive scale across our multi-cloud environment. • Build reusable hunting notebooks and automated intelligence pipelines using Databricks workflows. • Serve as the technical authority for threat hunting across Security, influencing detection strategy and incident response capabilities. • Mentor and develop threat hunting capabilities across the security organization. • Operationalize threat intelligence from multiple sources into actionable hunting hypotheses. • Work with internal partners to develop and maintain Priority Intelligence Requirements (PIRs). • Build automated enrichment pipelines using Databricks to correlate intelligence with internal telemetry. • Produce intelligence assessments on threats relevant to our business. • Represent Databricks in external security communities and industry working groups on advanced threat topics. • Architect scalable hunting infrastructure using Databricks notebooks, Delta Lake, and Unity Catalog. • Develop libraries of reusable detection logic and hunting queries optimized for distributed computing. • Build automated workflows for threat intelligence ingestion, enrichment, and correlation. • Create dashboards and visualizations for threat exposure and hunt findings. • Integrate security tools with Databricks platform.

Job Requirements

  • 12+ years in cybersecurity with 6+ years focused on threat hunting, threat intelligence, or detection engineering.
  • Deep expertise with nation-state and e-crime threat actors’ TTPs, trends, and historical targets.
  • Experience working with large-scale security datasets and big data platforms.
  • Strong Python programming experience with a background in PySpark, distributed computing frameworks, or Databricks’ platform.
  • Deep understanding of cloud security across AWS, Azure, and GCP—including cloud-native logging, security controls, and container/Kubernetes security.
  • Strong knowledge of OS internals across macOS, Linux, and containerized environments.
  • Experience with enterprise-scale software development practices including infrastructure-as-code, code review, and large codebase management.
  • Demonstrated experience conducting hypothesis-driven threat hunts with measurable outcomes.
  • Experience defining and driving multi-year security program strategy.
  • Thought leadership around the application of cybersecurity frameworks, such as MITRE ATT&CK and D3FEND.
  • Applied CTI skills including consuming and operationalizing IOCs/TTPs, tracking campaigns, and conducting research.
  • Experience influencing technical decisions beyond your immediate team.
  • A track record of mentoring Staff+ engineers.

Benefits

  • Health insurance
  • 401(k) matching
  • Flexible work hours
  • Paid time off
  • Remote work options

Related Job Pages

Threat Intelligence Specialist Jobs in CaliforniaRemote Full-time Jobs (US)Remote Python Jobs (US)More US Remote Jobs

More Threat Intelligence Specialist Jobs

Fare Strategy & Supply Lead

Voyagu
Threat Intelligence Specialist88 days ago
Full TimeRemote

We're looking for a Fare Strategy & Supply Lead — a builder, not a bureaucrat. Someone who combines deep fare expertise with the ability to build repeatable systems that scale margin, improve pricing competitiveness, and unlock massive leverage for the sales organization. Develop...

View details: Fare Strategy & Supply Lead
United States
Apply

Departmental Analyst 9-12 - Legislative Affairs

State of Michigan

The office location is Lansing, MI. The State of Michigan is not able to offer employment to out-of-state applicants that do not plan to relocate. The Department of Technology Management and Budget currently offers a hybrid work option which requires two days working on-site at the official work location and three days of remote work per week. DTMB is proud to be a Michigan Veteran’s Affairs Agency (MVAA) Gold Level Veteran-Friendly Employer.

Threat Intelligence Specialist98 days ago
Full TimeRemote

This position functions as a legislative analyst in the Legislative Affairs Division. This position analyzes standard legislative requests pertinent to the department. Responsible for research, coordination, and drafting of legislative analysis for proposed or introduced legislat...

View details: Departmental Analyst 9-12 - Legislative Affairs
United States
Apply

Storage & COMMVAULT Engineer

BAE Systems, Inc.

BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it’s what we do at BAE Systems. Working here means using your passion and ingenuity where it counts – defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team—making a big impact on a global scale. At BAE Systems, you’ll find a rewarding career that truly makes a difference. The Platforms & Services (P&S) sector under BAE Systems, Inc does the big stuff: the armored combat vehicles, naval guns, missile launchers, and naval ship repair…just to name a few. Our employees take pride in the work they do and why they do it. They are on the front lines every day, building our products to protect the lives of those who serve. We may be biased, but we think P&S does some of the coolest work around, and we think you will too.

Threat Intelligence Specialist102 days ago
Full TimeRemoteTeam 40,000Since 1999
Company Site

Knowledge of Linux kernel; Windows Server administration; Understanding of File and Folder Permissions in Windows; Experience in synchronization concepts as related specifically to data management; Knowledge of multi-site storage methods and synchronization; Knowledge of Cloud Ob...

View details: Storage & COMMVAULT Engineer
United States
Apply

Cyber Threat Intelligence Team Lead

Control Risks

The global specialist risk consultancy - Helping organisations succeed in a volatile world

Threat Intelligence Specialist115 days ago
Full TimeRemoteTeam 1,001-5,000Since 1975H1B Sponsor
Company SiteLinkedIn

The Cyber Threat Intelligence Team Lead will play a pivotal role in building and leading a world-class Cyber Intelligence program for a major client of Control Risks. This role will be responsible for developing the strategy, building out capabilities,...

View details: Cyber Threat Intelligence Team Lead
California
Apply