Sr Production Engineer- Public Sector
Menlo Ventures, Virginia, MN, United States
P-1602
The Role
At Databricks, we don’t just use the cloud; we are "cloud maximalists." We run our platform across every region of every major cloud provider (AWS, Azure, and GCP) simultaneously. This creates a massive, high‑consequence engineering surface area that requires a unique breed of Production Engineer. In this role, you won’t just run our cloud environments; you will own and evolve the secure infrastructure, access patterns, and guardrails, ensuring Databricks’ global platform is safe and compliant in production.
The Impact You’ll Have
Security-Focused Cloud Operations
IAM, account/subscription, and project lifecycle
design, automation, and operation across AWS, Azure, and GCP, enforcing least‑privilege and standardized access patterns at scale.
Cloud identity and access policies
(IAM, Okta, Opal) review, implementation, and continuous improvement to align with Databricks security standards and audit requirements.
Production Engineering & Automation
Build and maintain reliable, observable automation and tooling to apply cloud changes (roles, policies, accounts, networking) safely and repeatedly.
Treat operational and security issues as software problems: eliminate toil, drive root‑cause analysis, and codify fixes into infrastructure and tooling.
Security Data Pipelines & Compliance
Own and improve security and audit logging data pipelines from cloud providers into internal systems, ensuring timely, accurate data for detection, investigations, and audits.
Partner with Security, Compliance, and Audit teams to provide evidence, clarifications, and policy updates that keep environments aligned with evolving standards.
Regulated & Specialized Environments
Operate and improve specialized, highly regulated environments (e.g., FedRAMP / GovCloud) including release management, patching cadences, and secure access workflows (e.g., SAW).
Ensure high availability and resiliency for critical security and access infrastructure across these environments.
On-Call & Incident Response
Participate in a 24x7 on-call rotation for high‑severity incidents impacting cloud accounts, IAM, or security data pipelines.
Act as a key partner to product engineering, security engineering, and field teams during incidents to restore service and harden systems for the future.
What We Look For
Required:
Candidates must be eligible for a Top Secret / Sensitive Compartmented Information (TS/SCI) security clearance.
Nice to have:
Possession of a current polygraph (Counterintelligence or Full Scope) is highly desired and considered a significant plus.
Education:
BS, MS, or PhD in Computer Science, Engineering, or a related technical field, or equivalent practical experience.
Experience:
5+ years in production engineering, SRE, security engineering, or cloud infrastructure roles.
Cloud & Infrastructure Expertise:
Deep hands‑on experience with at least one major cloud provider (AWS, Azure, or GCP) in IAM, networking, accounts/subscriptions/projects, and audit logging; strong background in Infrastructure‑as‑Code and automation (Terraform, CloudFormation, or similar) and CI/CD for infrastructure changes.
Security & Compliance Mindset:
Proven experience in security‑sensitive or regulated environments (e.g., SOC2, FedRAMP, ISO 27001, public sector) and translating requirements into concrete technical controls; familiarity with access review processes, policy baselines, and audit evidence for cloud environments.
Operational Excellence:
Demonstrated success running high‑availability, security‑critical services, including on‑call responsibilities and incident management; strong debugging and problem‑solving skills across distributed systems, with the ability to navigate ambiguous issues spanning multiple teams and platforms.
Bonus
Experience with Okta, Opal, or similar identity/access tooling.
Background operating secure admin workstations (SAW) or comparable hardened access patterns.
Experience migrating cloud accounts or subscriptions during M&A or large‑scale reorganizations.
Pay Range Transparency
Databricks is committed to fair and equitable compensation practices. The pay range for this role is listed below and represents the expected salary range for non‑commissionable roles. Actual compensation packages depend on factors such as job‑related skills, depth of experience, certifications, training, and work location. The total compensation package may also include eligibility for performance bonus, equity, and the benefits listed above.
Local Pay Range: $135,500 – $186,350 USD
Benefits
At Databricks, we provide comprehensive benefits and perks that meet the needs of all employees. For specific details on the benefits offered in your region, please consult our benefits page.
Our Commitment to Diversity and Inclusion
Databricks is committed to fostering a diverse and inclusive culture where everyone can excel. Hiring practices are inclusive and meet equal employment opportunity standards. Employees are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical or mental ability, political affiliation, race, religion, sexual orientation, socioeconomic status, veteran status, and other protected characteristics.
Compliance
If access to export‑controlled technology or source code is required for performance of job duties, it is within Employer’s discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.
#J-18808-Ljbffr
The Role
At Databricks, we don’t just use the cloud; we are "cloud maximalists." We run our platform across every region of every major cloud provider (AWS, Azure, and GCP) simultaneously. This creates a massive, high‑consequence engineering surface area that requires a unique breed of Production Engineer. In this role, you won’t just run our cloud environments; you will own and evolve the secure infrastructure, access patterns, and guardrails, ensuring Databricks’ global platform is safe and compliant in production.
The Impact You’ll Have
Security-Focused Cloud Operations
IAM, account/subscription, and project lifecycle
design, automation, and operation across AWS, Azure, and GCP, enforcing least‑privilege and standardized access patterns at scale.
Cloud identity and access policies
(IAM, Okta, Opal) review, implementation, and continuous improvement to align with Databricks security standards and audit requirements.
Production Engineering & Automation
Build and maintain reliable, observable automation and tooling to apply cloud changes (roles, policies, accounts, networking) safely and repeatedly.
Treat operational and security issues as software problems: eliminate toil, drive root‑cause analysis, and codify fixes into infrastructure and tooling.
Security Data Pipelines & Compliance
Own and improve security and audit logging data pipelines from cloud providers into internal systems, ensuring timely, accurate data for detection, investigations, and audits.
Partner with Security, Compliance, and Audit teams to provide evidence, clarifications, and policy updates that keep environments aligned with evolving standards.
Regulated & Specialized Environments
Operate and improve specialized, highly regulated environments (e.g., FedRAMP / GovCloud) including release management, patching cadences, and secure access workflows (e.g., SAW).
Ensure high availability and resiliency for critical security and access infrastructure across these environments.
On-Call & Incident Response
Participate in a 24x7 on-call rotation for high‑severity incidents impacting cloud accounts, IAM, or security data pipelines.
Act as a key partner to product engineering, security engineering, and field teams during incidents to restore service and harden systems for the future.
What We Look For
Required:
Candidates must be eligible for a Top Secret / Sensitive Compartmented Information (TS/SCI) security clearance.
Nice to have:
Possession of a current polygraph (Counterintelligence or Full Scope) is highly desired and considered a significant plus.
Education:
BS, MS, or PhD in Computer Science, Engineering, or a related technical field, or equivalent practical experience.
Experience:
5+ years in production engineering, SRE, security engineering, or cloud infrastructure roles.
Cloud & Infrastructure Expertise:
Deep hands‑on experience with at least one major cloud provider (AWS, Azure, or GCP) in IAM, networking, accounts/subscriptions/projects, and audit logging; strong background in Infrastructure‑as‑Code and automation (Terraform, CloudFormation, or similar) and CI/CD for infrastructure changes.
Security & Compliance Mindset:
Proven experience in security‑sensitive or regulated environments (e.g., SOC2, FedRAMP, ISO 27001, public sector) and translating requirements into concrete technical controls; familiarity with access review processes, policy baselines, and audit evidence for cloud environments.
Operational Excellence:
Demonstrated success running high‑availability, security‑critical services, including on‑call responsibilities and incident management; strong debugging and problem‑solving skills across distributed systems, with the ability to navigate ambiguous issues spanning multiple teams and platforms.
Bonus
Experience with Okta, Opal, or similar identity/access tooling.
Background operating secure admin workstations (SAW) or comparable hardened access patterns.
Experience migrating cloud accounts or subscriptions during M&A or large‑scale reorganizations.
Pay Range Transparency
Databricks is committed to fair and equitable compensation practices. The pay range for this role is listed below and represents the expected salary range for non‑commissionable roles. Actual compensation packages depend on factors such as job‑related skills, depth of experience, certifications, training, and work location. The total compensation package may also include eligibility for performance bonus, equity, and the benefits listed above.
Local Pay Range: $135,500 – $186,350 USD
Benefits
At Databricks, we provide comprehensive benefits and perks that meet the needs of all employees. For specific details on the benefits offered in your region, please consult our benefits page.
Our Commitment to Diversity and Inclusion
Databricks is committed to fostering a diverse and inclusive culture where everyone can excel. Hiring practices are inclusive and meet equal employment opportunity standards. Employees are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical or mental ability, political affiliation, race, religion, sexual orientation, socioeconomic status, veteran status, and other protected characteristics.
Compliance
If access to export‑controlled technology or source code is required for performance of job duties, it is within Employer’s discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.
#J-18808-Ljbffr