Cloud Architect

Senior Security Engineer - Application Security Datadog

As a Senior Application Security Engineer, you will play a crucial role in enabling developers to build secure applications at Datadog. You will work in lockstep with Datadog engineering to establish secure-by-default practices on widely adopted platforms. You will provide critical application security operational services, such as security reviews, developer security education, and product security incident response. You have an incredible opportunity to leverage Datadog’s robust product suite, including Logs, Dashboards, Service Catalog, and Application Performance Monitoring (APM), to not only build out security services but also collaborate with engineers who champion strong security and reliability ownership. This role offers a unique opportunity to significantly shape security practices across our rapidly evolving platforms.

What You’ll Do :

• Get a deep understanding of Datadog’s software development life cycle, software supply chain, build pipelines, delivery mechanisms and configuration management.
• Lead the development and implementation of secure-by-default solutions across various applications and platforms.
• Define standards, write detections for deviations from secure defaults, and improve adoption of our secure defaults.
• Conduct threat modeling on new and existing products with engineering teams using frameworks such as STRIDE, PASTA, RTMP, DREAD.
• Work with engineering teams to align new features to achieve world-class security.
• Identify top company threats across products and services and prioritize remediation efforts.
• Empathize with the full spectrum of our customers and our engineers by advocating for effective solutions that scale with the needs of our business and our customers.
• Serve as a subject matter expert for other teams regarding building, delivering, and deploying code at Datadog.
• Provide mentorship and guidance to team members and foster a positive team culture.

Who You Are :

• Background in software engineering or development in a collaborative environment. Go, Python are preferred.
• Familiar with OWASP Top 10, XSS, injection, access control, cryptography, static analysis security testing (SAST), dynamic analysis security testing (DAST), security libraries.
• You have experience implementing secure by default framework, libraries, and solutions.
• You have experience collaborating with product managers and engineers to integrate security throughout the development lifecycle.
• You aim not only to identify security issues but also recommend and implement solutions.
• You have a proven track record of driving security initiatives with leadership and engineering buy-in.
• You keep current with the latest security best practices, technologies and emerging threats.

Benefits and Growth :

• New hire stock equity (RSUs) and employee stock purchase plan (ESPP).
• Continuous professional development, product training, and career pathing.
• Intradepartmental mentor and buddy program for in-house networking.
• An inclusive company culture, ability to join our Community Guilds (Datadog employee resource groups).
• Access to Inclusion Talks, our internal panel discussions.
• Free, global mental health benefits for employees and dependents age 6+.