Datadog is seeking an outstanding Security Engineer to support the Vulnerability Governance program in our growing multi-provider ecosystem. You will identify and drive remediation for vulnerabilities discovered across Datadog's infrastructure, building on platforms to automate the processes in order to triage and prioritize security deviations to closure, and provide insight to the state of security of Datadog. You will collaborate with various security, engineering, and compliance teams to understand technical constraints and compliance requirements, deep-dive into open vulnerabilities to understand and document true risks to our environment, identify solutions that reduce risk, and automate reporting for multiple compliance frameworks.

At Datadog, we place value in our office culture - the relationships and collaboration it builds and the creativity it brings to the table. We operate as a hybrid workplace to ensure our Datadogs can create a work-life harmony that best fits them.

What You'll Do:

• Work across multiple technologies to perform vulnerability impact assessment, root causes analysis, risk adjustments, and drive  remediation within SLAs. Define vulnerability scanning configurations that satisfy various compliance frameworks
• Develop, deploy, and maintain services that automate triage analysis and reporting of vulnerabilities for internal and external stakeholders
• Use custom and third party tools, as well as the Datadog platform, to report, and remediate vulnerabilities
• Partner with internal and external customers to analyze security reports, identify false positives, and plan fixes required
• Provide evidence and subject matter expertise for vulnerability management processes and controls for multiple compliance frameworks (such as SOC2, HIPAA, PCI, FedRAMP, ISO etc.)

Who You Are:

• You have a track record of managing identification, assessment and remediation of vulnerabilities within large software systems
• You are experienced in one or more programming languages (Golang, Python, Java etc)
• You have familiarity with vulnerability scanning requirements associated with multiple compliance frameworks (such as CIS, NIST, STIG, PCI etc.)
• You are experienced with usage of orchestration platforms and container runtimes, infrastructure as code and cloud-native or multi-cloud environment (we use AWS, GCP and Azure)
• You have experience in driving efficiencies through automation, orchestration and partnerships with external teams
• You have good knowledge of integrating, analyzing, and communicating relevant metrics for very large data sets
• You are able to work independently and collaboratively, and communicate effectively in a fast-paced, high growth, distributed organization
• You have experience presenting the state of vulnerabilities to auditors and customers
• You have a BS/MS/PhD in a Computer Science, Engineering or related scientific field or equivalent experience
• To conform to US export control regulations, candidates should be eligible for any required authorizations from the US government

Datadog values people from all walks of life. We understand not everyone will meet all the above qualifications on day one. That's okay. If you’re passionate about technology and want to grow your skills, we encourage you to apply.