Rubrik

Senior Information Security Engineer – Data

Remote Information Security role with clear candidate location fit.

PostedRecently added

Eligible countries1 accepted country

Seniority signalSenior

Work settingRemote

Accepted candidate locations

India

AWS Azure CI/CD GCP Kubernetes Python Snowflake

Role overview

Senior Information Security Engineer – Data

Requirements and responsibilities

Readable role content extracted into sections for faster review.

About the team & role:

The Information Security organisation advances the overall state of security at Rubrik through critical initiatives and the coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect data and systems with appropriate security controls. Information Security also develops systems to monitor and respond to attacks against our systems, provides awareness education to teams on security best practices for data protection, and ensures data sharing relationships with third parties in order to securely protect Rubrik information.
We are seeking a Senior Security Engineer to bridge the gap between traditional Security Operations and modern Data Engineering. You will be responsible for the day-to-day health of our SIEM ecosystem while simultaneously contributing in transition toward a Security Data Lake architecture. This is a hands-on, high-impact role that leverages Programming, Cloud Warehouses and AI to defend a global multi-cloud footprint.

What you’ll do?

SIEM Administration: Handle day-to-day operations of market-leading SIEM platforms (e.g., Splunk, Sentinel, or Chronicle). This includes log ingestion from a variety of sources like Network devices, 3rd party vendor APIs, Cloud Services, Webhooks etc.. parsing/normalisation to a common schema, health monitoring checks, User access management and Cost Monitoring.
Security Data Lake Operationalisation: Develop and maintain the infrastructure/Platform that moves security telemetry from raw sources into Snowflake, BigQuery, or Databricks. Tune/Optimise Ingestion at Scale for cost efficiency and Enable SOC team and Threat Detection team to leverage the Security Data lake for their Search and Analytics workloads.
AI & Agentic Automation: Proactively integrate AI tools and LLMs into daily workflows; develop AI agents to automate Tier 1/2 SecOps tasks like Incident Investigation and Response.
Cross-Team Collaboration: Partner with global teams across time zones and manage Stakeholder communication.

Experience you'll need:

Experience: 7+ years in Security Ops and Engineering, focusing on Security Data management and Automation.
SIEM and SOAR Mastery:Hands-on experience with at least one market-leading SIEM (Splunk, Microsoft Sentinel, Crowdstrike NG-SIEM) and SOAR platform (Palo Alto XSOAR, Splunk SOAR).
Cloud Data Warehousing: Practical experience administering or developing within Snowflake, BigQuery, and/or Databricks. Prior experience in building/maintaining data platforms that can manage 50-100 TB/day data is a big plus.
Programming: Strong proficiency in Python and Shell scripting.
Data Engineering Knowledge: Understanding of Cloud warehouse and Lakehouse concepts, Open Table formats and Search engines for a composable Security Data stack.
Cloud Infrastructure: Solid experience in one major cloud (AWS/GCP/Azure); Multi-cloud familiarity is a major plus.
AI Fluency: Demonstrated experience or strong inclination towards utilising various AI tools to significantly enhance effectiveness (force multiplier) and solve complex business problems, particularly within SecOps and GRC domains.
Nice to have Exposure to Cloud Logging frameworks and best practices for Security Telemetry ingestion. Familiarity with container orchestration (Kubernetes/EKS/GKE). Interest/experience in building AI-driven security workflows. Knowledge of modern CI/CD patterns and DevOps security integrations. Experience with Terraform or other IaC tools.
Exposure to Cloud Logging frameworks and best practices for Security Telemetry ingestion.
Familiarity with container orchestration (Kubernetes/EKS/GKE).
Interest/experience in building AI-driven security workflows.
Knowledge of modern CI/CD patterns and DevOps security integrations.
Experience with Terraform or other IaC tools.

Details

Exposure to Cloud Logging frameworks and best practices for Security Telemetry ingestion.
Familiarity with container orchestration (Kubernetes/EKS/GKE).
Interest/experience in building AI-driven security workflows.
Knowledge of modern CI/CD patterns and DevOps security integrations.
Experience with Terraform or other IaC tools.

Our inclusion strategy focuses on three core areas of our business and culture:

Our Company: We are committed to building a merit-based organization that offers equal access to growth and success for all employees globally. Your potential is limitless here.
Our Culture: We strive to create an inclusive atmosphere where individuals from all backgrounds feel a strong sense of belonging, can thrive, and do their best work. Your contributions help us innovate and break boundaries.
Our Communities: We are dedicated to expanding our engagement with the communities we operate in, creating opportunities for underrepresented talent and driving greater innovation for our clients. Your impact extends beyond Rubrik, contributing to safer and stronger communities.

Similar roles