Databricks is hiring a Staff Security Software Engineer, AI Security to join their Software Development team. Our work also extends to securing our own usage of AI: building the right guardrails that enable Databricks employees to innovate and deliver securely. Key skills: Python, Go, Rust, AWS, GCP.
RDQ426R108
This role is open to candidates in the US (any location)
The AI Security team at Databricks sits at the frontier of securing the AI/ML services in the Databricks platform. As we ship AI capabilities at the leading edge of the industry, including Agent Bricks, the Genie suite, AI Model Serving, MLflow, and Unity AI Gateway, the AI Security team ensures these systems are designed, built, and operated securely. Our work also extends to securing our own usage of AI: building the right guardrails that enable Databricks employees to innovate and deliver securely.
The team combines offensive security depth with AI/ML engineering knowledge to identify novel threats, build scalable defenses, and influence how AI products are architected from the ground up. We lead AI Red Team exercises, build security tooling for AI workloads, and partner directly with AI Product teams to embed security into the development lifecycle.
---
As a Staff Security Software Engineer on the AI Security team, you are a senior technical leader who sets the standards for how Databricks secures its AI and ML capabilities. You combine deep offensive security expertise with practical knowledge of AI/ML systems to identify and drive resolution of the most significant security risks in Databricks' AI platform.
You lead AI red team engagements against production AI systems, conduct security architecture reviews for complex, multi-system AI features, and build the tooling and frameworks that scale the team's impact. You are a subject matter expert in at least two AI security domains and you operate with significant autonomy- driving cross-team remediation, setting technical standards, and mentoring teammates in both offensive techniques and secure AI design.
---
---
- LLM and generative AI security (prompt injection, jailbreaking, training data extraction)
- AI agent and orchestration security (MCP, memory sharing, multi-agent systems)
- ML infrastructure and serving security (model serving multi-tenancy risks, training infrastructure security)
- AI data governance and privacy (fine-grained access control, data residency, inference data isolation)
---
On the AI Security team, you'll work on a class of security problem that didn't exist five years ago, and that the industry is still figuring out. You'll run red team engagements against a live AI platform used by over 12,000 organizations, build tooling that has no precedent to copy, and drive security decisions that shape how AI products are built across the company. The problems are novel, the stakes are real, and the team working on them is exceptional.
About Databricks
Databricks is the data and AI company. More than 10,000 organizations worldwide — including Comcast, Condé Nast, Grammarly, and over 50% of the Fortune 500 — rely on the Databricks Data Intelligence Platform to unify and democratize data, analytics and AI. Databricks is headquartered in San Francisco, with offices around the globe and was founded by the original creators of Lakehouse, Apache Spark™, Delta Lake and MLflow. To learn more, follow Databricks on Twitter, LinkedIn and Facebook.
Benefits
At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region click here.
Our Commitment to Diversity and Inclusion
At Databricks, we are committed to fostering a diverse and inclusive culture where everyone can excel. We take great care to ensure that our hiring practices are inclusive and meet equal employment opportunity standards. Individuals looking for employment at Databricks are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political affiliation, race, religion, sexual orientation, socio-economic status, veteran status, and other protected characteristics.
Compliance
If access to export-controlled technology or source code is required for performance of job duties, it is within Employer's discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.
Want to see the full job details?
Create a free account to view complete descriptions, save jobs, and apply instantly.
Vic.ai·Remote
Focused·Remote — Germany

Quicknode·Remote — United States
Nabucasa·Remote — Europe -