MLW LogoMost Loved Workplace® Certified Job

Staff Security Software Engineer, AI Security

MLW LogoMost Loved Workplace® Certified Job
92% of candidates apply because they are a Most Loved Workplace®
Remote - California
Security

About the Role

At Databricks, a Most Loved Workplace® certified employer in the Technology space, Democratizing data and AI for every organization worldwide.

<p data-pm-slice="1 1 []">RDQ426R108</p>

<p data-pm-slice="1 1 []">This role is open to candidates in the US (any location) </p>

<h4>About the Team</h4>

<p>The AI Security team at Databricks sits at the frontier of securing the AI/ML services in the Databricks platform. As we ship AI capabilities at the leading edge of the industry, including Agent Bricks, the Genie suite, AI Model Serving, MLflow, and Unity AI Gateway, the AI Security team ensures these systems are designed, built, and operated securely. Our work also extends to securing our own usage of AI: building the right guardrails that enable Databricks employees to innovate and deliver securely.</p>

<p>The team combines offensive security depth with AI/ML engineering knowledge to identify novel threats, build scalable defenses, and influence how AI products are architected from the ground up. We lead AI Red Team exercises, build security tooling for AI workloads, and partner directly with AI Product teams to embed security into the development lifecycle. </p>

<p>---</p>

<h4>The Role</h4>

<p>As a <strong>Staff Security Software Engineer</strong> on the AI Security team, you are a senior technical leader who sets the standards for how Databricks secures its AI and ML capabilities. You combine deep offensive security expertise with practical knowledge of AI/ML systems to identify and drive resolution of the most significant security risks in Databricks' AI platform.</p>

<p>You lead AI red team engagements against production AI systems, conduct security architecture reviews for complex, multi-system AI features, and build the tooling and frameworks that scale the team's impact. You are a subject matter expert in at least two AI security domains and you operate with significant autonomy- driving cross-team remediation, setting technical standards, and mentoring teammates in both offensive techniques and secure AI design.</p>

<p>---</p>

<h4>The Impact You Will Have</h4>

<h4>AI Red Team & Adversarial Testing</h4>

<ul>

<li>Lead AI red team engagements against Databricks' production AI systems, including Foundation Model APIs, Genie and natural language query systems, Model Serving infrastructure, MCP-connected agents, and RAG pipelines</li>

<li>Design and execute adversarial attack scenarios: prompt injection, jailbreaking, memory poisoning, cross-tenant data leakage in multi-tenant serving, and sandbox bypasses</li>

<li>Develop proof-of-concept exploits for AI-specific vulnerability classes and perform variant analysis to identify the full scope of exposure across the AI platform</li>

<li>Contribute to the evolution of the Databricks AI Security Framework (DASF), maintaining and extending the risk taxonomy, control library, and testing methodology as AI capabilities evolve</li>

</ul>

<h4>AI Product Security & Architecture Reviews</h4>

<ul>

<li>Lead comprehensive security architecture reviews for complex AI features: threat modeling agentic workflows, RAG pipelines, multi-model serving chains, and MCP-based tool integrations</li>

<li>Partner directly with AI and ML engineering teams to identify security risks early in the design process and define practical, scalable controls</li>

<li>Assess and drive resolution of cross-cutting AI security risks: Unity Catalog permission enforcement in AI contexts, inference data isolation, model artifact integrity, fine-tuning pipeline security, and external model API governance via AI Gateway</li>

<li>Identify recurring security patterns across AI features; advocate for class-level architectural fixes rather than feature-by-feature point solutions</li>

</ul>

<h4>AI Security Tooling & Automation</h4>

<ul>

<li>Design and build automated AI security testing tooling, including adversarial prompt libraries, agent behavior analysis frameworks, and continuous testing harnesses</li>

<li>Build AI-assisted automation that scales security reviews, threat modeling, and vulnerability triage for AI features</li>

<li>Develop and maintain security guardrails and enforcement mechanisms: LLM-as-judge review, prompt delimiting, output validation, rate limiting, and audit logging</li>

</ul>

<h4>Cross-Team Remediation & Standards</h4>

<ul>

<li>Set technical standards for how AI security risks are assessed, prioritized, and remediated across the engineering organization</li>

<li>Drive cross-team remediation for significant AI security findings, defining fix requirements, validating patches, and ensuring regression coverage in CI/CD pipelines</li>

<li>Produce high-quality threat models, security advisories, and post-mortems that inform organizational risk decisions for AI products</li>

</ul>

<h4>Mentorship & Community</h4>

<ul>

<li>Mentor engineers on the AI Security team in adversarial ML techniques, AI threat modeling, and security tooling development</li>

<li>Contribute to internal knowledge assets, including training materials, design patterns, and threat model templates, that raise AI security fluency across the engineering organization</li>

<li>Represent Databricks in the external AI security community through publications, conference talks, or open-source contributions</li>

</ul>

<p>---</p>

<h4>What We Look For</h4>

<ul>

<li>7–10 years of combined experience in offensive security, AI/ML security research, or product security engineering, with demonstrated leadership in securing complex systems</li>

<li>Subject matter expert in at least two of the following AI security domains:</li>

</ul>

<p>  - LLM and generative AI security (prompt injection, jailbreaking, training data extraction)</p>

<p>  - AI agent and orchestration security (MCP, memory sharing, multi-agent systems)</p>

<p>  - ML infrastructure and serving security (model serving multi-tenancy risks, training infrastructure security)</p>

<p>  - AI data governance and privacy (fine-grained access control, data residency, inference data isolation)</p>

<ul>

<li>Demonstrated ability to design and execute adversarial attacks against production AI systems</li>

<li>Deep understanding of AI/ML platform architecture- how models are trained, served, and integrated, and where the trust boundaries between components lie</li>

<li>Expert in at least one major cloud platform (AWS, Azure, GCP) and its AI/ML security model</li>

<li>Proficient in Python; able to read and analyze ML model code, training scripts, and API serving code; working knowledge of at least one additional language (Go, Java, Scala, Rust)</li>

<li>Track record of driving cross-team AI security improvements and influencing product architecture decisions</li>

<li>Experience building automated security tooling for AI systems</li>

<li>Strong communicator- translates AI security risks into actionable guidance for engineers, product managers, and leadership</li>

<li>Pragmatic approach to risk- distinguishes real-world exploitable AI risk from theoretical concerns</li>

</ul>

<h4>Nice to Have</h4>

<ul>

<li>Published research on AI/ML security topics or experience presenting at AI security venues (DEF CON AI Village, NeurIPS workshops, Black Hat)</li>

<li>Experience with OWASP Top 10 for LLMs, MITRE ATLAS, or similar AI security frameworks</li>

<li>Familiarity with MLflow, Unity Catalog, Delta Lake, or Databricks platform internals</li>

<li>OSCP or equivalent offensive security certification</li>

<li>Academic or research background in machine learning, adversarial ML, or AI safety</li>

</ul>

<p>---</p>

<h4>Why Databricks</h4>

<p>On the AI Security team, you'll work on a class of security problem that didn't exist five years ago, and that the industry is still figuring out. You'll run red team engagements against a live AI platform used by over 12,000 organizations, build tooling that has no precedent to copy, and drive security decisions that shape how AI products are built across Databricks. The problems are novel, the stakes are real, and the team working on them is exceptional.</p><div class="content-conclusion"><p><strong>About Databricks</strong></p>

<p><span style="font-family: arial, sans-serif;">Databricks is the data and AI company. More than 10,000 organizations worldwide — including Comcast, Condé Nast, Grammarly, and over 50% of the Fortune 500 — rely on the Databricks Data Intelligence Platform to unify and democratize data, analytics and AI. Databricks is headquartered in San Francisco, with offices around the globe and was founded by the original creators of Lakehouse, Apache Spark™, Delta Lake and MLflow. To learn more, follow Databricks on <span style="color: rgb(255, 54, 33);"><a style="color: rgb(255, 54, 33);" href="https://twitter.com/Databricks" target="_blank" data-saferedirecturl="https://www.google.com/url?q=https://twitter.com/Databricks&source=gmail&ust=1700237575733000&usg=AOvVaw03FL8fJvOD97ytN02f5G2C">Twitter</a>, <a style="color: rgb(255, 54, 33);" href="https://www.linkedin.com/company/Databricks" target="_blank" data-saferedirecturl="https://www.google.com/url?q=https://www.linkedin.com/company/Databricks&source=gmail&ust=1700237575733000&usg=AOvVaw15dLk3q8VxTfHEgCUg7NSt">LinkedIn</a> <span style="color: rgb(0, 0, 0);">and</span> <a style="color: rgb(255, 54, 33);" href="https://www.facebook.com/databricksinc" target="_blank" data-saferedirecturl="https://www.google.com/url?q=https://www.facebook.com/databricksinc&source=gmail&ust=1700237575733000&usg=AOvVaw39EcncitnlqV72EG2-RqXJ">Facebook</a></span>.<br><br><strong>Benefits<br><br></strong></span>At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region click <a href="https://docs.google.com/document/d/154un3e8Xav4BceOSlcYFZRGEuQI54xMxVydRwQn54eQ/edit?usp=sharing">here</a>.<br><br></p>

<p><strong>Our Commitment to Diversity and Inclusion</strong></p>

<p>At Databricks, we are committed to fostering a diverse and inclusive culture where everyone can excel. We take great care to ensure that our hiring practices are inclusive and meet equal employment opportunity standards. Individuals looking for employment at Databricks are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political affiliation, race, religion, sexual orientation, socio-economic status, veteran status, and other protected characteristics.</p>

<p><strong>Compliance</strong></p>

<p><strong><span style="font-weight: 400;">If access to export-controlled technology or source code is required for performance of job duties, it is within Employer's discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.</span></strong></p></div>

Want to learn more about what it's like to work at Databricks? View our full profile.

MLW Logo

Why This Is a Most Loved Workplace® Certified Job

S

Systemic Collaboration

As Databricks continues our rapid growth, we strive to maintain a culture as open and transparent as it was in Databricks’s early days. Making sure employees have regular access to our CEO and co-founders to hear directly about our vision and priorities helps our employees forge a connection between Databricks priorities and their daily work.

P

Positive Vision for the Future

Databricks’ culture principles are derived from an internal study of the behaviors that have led to high impact work at Databricks. These values have a direct impact on company culture and play a large part in connecting teams across the organization. We believe in being customer-obsessed, truth-seeking, operating from first principles, having a bias for action, and putting Databricks first. Our co-founders are fully involved in day-to-day operations, including business and technical reviews, working alongside our team members to ensure that we are always aligned with our values.

A

Alignment of Values

Databricks’ CEO and Co-founder, Ali Ghodsi leads by example with a focus on truth-seeking and first principles thinking, two of Databricks’ core values that stay true to Databricks’s origins in academia. He champions the importance of data and reason to question biases and inform decisions. Ali remains hands-on with research and development and hosts company-wide weekly all hands, with a CEO “ask me anytime” session at the beginning of every agenda. His transparency and accessibility are core to the open and collaborative culture of Databricks.

R

Respect

At Databricks, we cultivate an environment where all employees can bring their unique selves and are empowered to do the best work of their careers. To ensure all voices are heard and ideas are valued, we conduct annual culture and pulse surveys and host all-hands Q&As to collect feedback from all employees. We then report back to Databricks on the specific changes implemented from the feedback collected to ensure employees feel heard and that their feedback is valued. In addition, we invest in our seven Employee Resource Groups (ERGs) that offer support and employee engagement events for individuals from underrepresented backgrounds and allies.

K

Killer Outcomes

Databricks prioritizes offering an exceptional employee experience by investing in tools, workspaces, and community-building. Our collaboration-first, hybrid model offers flexibility with in-person touchpoints like our annual employee kickoff, weekly CEO all-hands with happy hours, and monthly team building budgets. We are especially focused on maintaining a culture of transparency, honesty, and trust, with leaders actively engaging across channels like Slack and all hands while also championing inclusion efforts through ERG sponsorship. These initiatives help our team feel connected, valued, and empowered to do their best work.

What It's Like to Work Here

zap Bias for Action
lightbulb First Principles Innovation
users Collaborative Excellence
target Truth-Seeking Rigor
compass Generational Mission Focus
Certified for: Global Top 100 Most Loved Workplaces®, Certified Most Loved Workplaces® 2025, Top 100 Most Loved Workplaces® 2025

Frequently Asked Questions About Working at Databricks

Common questions candidates ask about this role and Databricks's workplace

With the Data Intelligence Platform, Databricks democratizes insights to everyone in an organization. Built on an open lakehouse architecture, the Data Intelligence Platform provides a unified foundation for all data and governance, combined with AI models tuned to an organization’s unique characteristics. Now, anyone in an organization can benefit from automation and natural language to discover and use data like experts, and technical teams can easily build and deploy secure data and AI apps and products. With origins in academia and the open source community, Databricks was founded in 2013 by the original creators of the lakehouse architecture and open source projects Apache Spark™, Delta Lake, MLflow and Unity Catalog.

This position is listed as remote based on the job location.

Salary information may vary by role and location. Please check the specific job listing or discuss compensation during the interview process.

Databricks is an established organization in its industry. The company is a certified Most Loved Workplace®, highlighting a strong, positive culture and committed workforce.

Key benefit categories include: Health & Wellness, Work-Life Balance, Office & Lifestyle, Professional Development, Financial. You can view more details on their CertCheck profile.

The day-to-day environment is guided by core values such as Bias for Action and First Principles Innovation and Collaborative Excellence.

The company has committed to inclusive practices including: Customer Obsession with Integrity and Empowering Every Team Member.

They score particularly well in the area of Systemic Collaboration. They have earned Most Loved Workplace® certifications including: Global Top 100 Most Loved Workplaces® and Certified Most Loved Workplaces® 2025.

Databricks currently has 789 open positions. They are hiring across departments like Field Engineering - Other, Delivery Solutions Architects, Enterprise Sales. You can view all current openings at certcheck.mostlovedworkplace.com/companies/databricks/jobs.

The interview process typically involves an initial recruiter screen followed by team interviews. Please contact Databricks's recruiting team for specific details on this role's process.

Apply for Staff Security Software Engineer, AI Security

Submit your application directly to the Databricks team. Let them know why you'd be a great addition to their loved place to work.

Most Loved Workplace® Logo
Powered by Most Loved Workplace®

The global standard for company culture certification and employer of choice visibility.

Learn more about Most Loved Workplace®