Security Engineer II - Vulnerability Lifecycle

Job description

Here at Datadog, we think about Vulnerability Management a little bit differently. We embrace open source software, and recognize our role in the software supply chain. We also see how attackers are weaponizing vulnerabilities faster than ever before. That’s why we’re looking for a Security Engineer who can help us scale and improve our overall vulnerability management lifecycle, and take an AI-first approach to addressing vulnerability risk.

At Datadog, we place value in our office culture - the relationships and collaboration it builds, and the creativity it brings to the table. We operate as a hybrid workplace to ensure our Datadogs can create a work-life harmony that best fits them.

What You’ll Do:

• Reduce engineering toil related to vulnerability remediation through a “PRs, not tickets” approach.

• Develop and operate automation to increase detection coverage and remediate root cause issues

• Work with critical partners like SDLC Security, Product Security, and a wide range of engineering teams to “shift left” and reduce upstream vulnerabilities entering our ecosystem.

• Improve the efficiency of our overall vulnerability management lifecycle through thoughtful use of automation and AI.

• Develop metrics and reporting to provide leadership with an accurate view of overall vulnerability risk.

• Provide evidence and subject matter expertise for vulnerability management processes and controls for multiple compliance frameworks (SOC2, HIPAA, PCI, FedRAMP, ISO)

  This is an excerpt. Read the full job description on Datadog careers →