Cloud Security Engineer II

Datadog
Full_time$149k-190k/year (USD)United States

📍 Job Overview

  • Job Title: Cloud Security Engineer II
  • Company: Datadog
  • Location: New York, NY, USA
  • Job Type: Hybrid
  • Category: Cybersecurity & Information Security
  • Date Posted: June 12, 2025
  • Experience Level: Mid-level (2-5 years)

🚀 Role Summary

  • Secure cloud infrastructure by partnering with stakeholders and engineering teams to identify and mitigate security risks.
  • Design and improve security tools to strengthen Datadog's security posture and promote a secure by default model.
  • Automate security processes and develop advanced methods for analyzing and responding to security findings.
  • Collaborate cross-functionally to empathize with customers and engineers, providing effective security solutions that scale with business needs.

📝 Enhancement Note: This role requires a strong focus on collaboration and influencing others to drive security ownership and implement solutions, rather than just providing recommendations.

💻 Primary Responsibilities

  • Triage Cloud Security Management (CSM) alerts and maintain a zero-alert triage queue, supporting incident response with well-maintained runbooks.
  • Design and improve existing security tools, ensuring operational reliability, adherence to SLAs, and strengthening the organization's security posture through proactive monitoring and continuous improvement.
  • Automate security processes and develop advanced methods for analyzing and responding to security findings, driving innovation in cloud security.
  • Maintain and refine custom cloud security baselines, develop emerging CSPM signatures, and collaborate across teams to introduce new signature capabilities.
  • Build security controls that detect, prevent, and correct cloud vulnerabilities in Datadog's complex and challenging environment.
  • Leverage and influence the direction of Datadog's home-grown security products to secure infrastructure and provide internal feedback to improve the products for both Datadog and its customers.

📝 Enhancement Note: This role requires a strong focus on problem-solving, automation, and continuous improvement to address complex security challenges in a large multi-cloud environment.

🎓 Skills & Qualifications

Education: Bachelor's, Master's, or PhD in Computer Science, Engineering, or a related scientific field.

Experience: 2-5 years of experience in Development Operations, Software Engineering, Systems Engineering, Security Architecture, Cloud Security, or Offensive Security.

Required Skills:

  • Proficiency in one or more modern coding languages (Python, Go, Java, JavaScript, etc.)
  • Experience with one or more infrastructure as code tools (Terraform, Ansible, etc.)
  • Experience with AWS, GCP, Azure, and/or containers (e.g., Kubernetes)
  • Strong problem-solving skills and ability to work independently and collaboratively in a fast-paced, high-growth environment
  • Stay updated with modern security best practices, technologies, and emerging threats

Preferred Skills:

  • Experience with cloud security management tools (e.g., Prisma Cloud, Palo Alto Cortex XSOAR, etc.)
  • Familiarity with security information and event management (SIEM) systems
  • Knowledge of security orchestration, automation, and response (SOAR) platforms

📝 Enhancement Note: While not explicitly stated, familiarity with cloud security best practices and experience with relevant tools would be beneficial for this role.

📊 Web Portfolio & Project Requirements

Portfolio Essentials:

  • Cloud Security Projects: Highlight projects demonstrating your ability to secure cloud infrastructure, such as implementing security controls, automating security processes, or developing security tools.
  • Incident Response Case Studies: Showcase your experience in triaging security alerts and responding to incidents, including any runbooks or playbooks you've created.
  • Security Tool Development: Include examples of security tools you've designed or improved, emphasizing their operational reliability and adherence to SLAs.

Technical Documentation:

  • Security Documentation: Provide examples of security documentation you've created, such as security baselines, signatures, or runbooks, demonstrating your attention to detail and ability to communicate complex security concepts effectively.
  • Code Quality: Showcase your commitment to code quality, commenting, and documentation standards, with an emphasis on security best practices.

📝 Enhancement Note: As this role focuses on cloud security, your portfolio should highlight projects and case studies that demonstrate your ability to secure cloud infrastructure and drive security ownership within an organization.

💵 Compensation & Benefits

Salary Range: $149,000 - $190,000 USD per year (based on Datadog's provided range)

Benefits:

  • New hire stock equity (RSUs) and employee stock purchase plan (ESPP)
  • Continuous professional development, product training, and career pathing
  • Intradepartmental mentor and buddy program for in-house networking
  • Inclusive company culture and access to Community Guilds (employee resource groups)
  • Access to Inclusion Talks, internal panel discussions
  • Free, global mental health benefits for employees and dependents age 6+
  • Competitive global benefits

Working Hours: Full-time, with a hybrid work arrangement (on-site and remote work)

📝 Enhancement Note: The provided salary range is based on Datadog's information. However, it's essential to research regional salary standards and cost of living for a more accurate estimate.

🎯 Team & Company Context

Company Culture:

  • Industry: Datadog is a global SaaS business focused on delivering growth and profitability by enabling digital transformation, cloud migration, and infrastructure monitoring for its customers.
  • Company Size: Datadog has a significant employee base, with a strong focus on growth and empowering engineers to have strong security ownership of their products and services.
  • Founded: Datadog was founded in 2010 and has since grown to become a publicly-traded company (NASDAQ: DDOG).

Team Structure:

  • The cloud security team works closely with various engineering domains across the Datadog infrastructure stack, driving a culture of empowering engineers to have strong security ownership of their products and services.
  • The team collaborates with engineers to identify security risks, develop security resources and tools, and promote a secure by default model.

Development Methodology:

  • Datadog follows Agile methodologies, with a focus on continuous improvement, automation, and driving innovation in cloud security.
  • The company encourages engineers to stay updated with modern security best practices, technologies, and emerging threats.

Company Website: Datadog

📝 Enhancement Note: Datadog's company culture emphasizes collaboration, innovation, and empowering engineers to have strong security ownership of their products and services. This culture is reflected in the cloud security team's focus on driving a secure by default model and working closely with various engineering domains.

📈 Career & Growth Analysis

Cloud Security Career Level: Mid-level (2-5 years of experience) cloud security engineer, focusing on securing cloud infrastructure, designing and improving security tools, and driving security ownership within an organization.

Reporting Structure: This role reports to the Manager, Cloud Security Engineering, and collaborates with various engineering domains across the Datadog infrastructure stack.

Technical Impact: Cloud security engineers at Datadog have a significant impact on the company's overall security posture, working closely with engineering teams to identify and mitigate security risks, and driving a secure by default model.

Growth Opportunities:

  • Technical Growth: Expand your expertise in cloud security, emerging technologies, and security best practices, with opportunities to specialize in specific domains or take on more complex projects.
  • Leadership Development: Develop your leadership skills by mentoring junior team members, driving team initiatives, and influencing the direction of Datadog's security products and services.
  • Architecture Decisions: Contribute to strategic architecture decisions that shape Datadog's security posture and drive innovation in cloud security.

📝 Enhancement Note: As a mid-level cloud security engineer at Datadog, you'll have ample opportunities to grow your technical skills, take on more complex projects, and develop your leadership potential within the organization's collaborative and innovative culture.

🌐 Work Environment

Office Type: Hybrid work environment, with both on-site and remote work options to ensure a work-life harmony that best fits employees' needs.

Office Location(s): Datadog's headquarters is in New York, NY, USA, with additional offices worldwide. However, this role can be performed remotely from any location within the United States.

Workspace Context:

  • Collaborative Workspace: Datadog's hybrid work environment encourages collaboration and interaction between team members, fostering a culture of knowledge sharing and continuous learning.
  • Development Tools: Employees have access to various development tools, multiple monitors, and testing devices to ensure optimal productivity and performance.
  • Cross-Functional Collaboration: Datadog's cloud security team works closely with various engineering domains, promoting a culture of empathy, understanding, and effective communication between developers, designers, and stakeholders.

Work Schedule: Full-time, with a hybrid work arrangement (on-site and remote work), allowing for flexibility in deployment windows, maintenance, and project deadlines.

📝 Enhancement Note: Datadog's hybrid work environment encourages collaboration, knowledge sharing, and continuous learning, with a focus on empowering employees to maintain a healthy work-life balance.

📄 Application & Technical Interview Process

Interview Process:

  1. Technical Phone Screen: Discuss your cloud security experience, problem-solving approach, and familiarity with relevant tools and technologies. Be prepared to answer questions about your portfolio and case studies.
  2. On-Site Technical Deep Dive: Delve into your technical skills, with a focus on cloud security, incident response, and security tool development. Expect to work through hands-on exercises and case studies, demonstrating your ability to analyze and respond to security findings.
  3. Behavioral and Cultural Fit Interview: Assess your cultural fit with Datadog's collaborative and innovative company culture. Expect to discuss your problem-solving approach, communication skills, and ability to work effectively within a team.
  4. Final Decision: Based on your performance throughout the interview process, Datadog will make a final decision regarding your candidacy for the cloud security engineer role.

Portfolio Review Tips:

  • Cloud Security Projects: Highlight projects that demonstrate your ability to secure cloud infrastructure, automate security processes, and develop security tools.
  • Incident Response Case Studies: Showcase your experience in triaging security alerts and responding to incidents, including any runbooks or playbooks you've created.
  • Security Tool Development: Include examples of security tools you've designed or improved, emphasizing their operational reliability and adherence to SLAs.
  • Technical Documentation: Provide examples of security documentation you've created, such as security baselines, signatures, or runbooks, demonstrating your attention to detail and ability to communicate complex security concepts effectively.

Technical Challenge Preparation:

  • Cloud Security Fundamentals: Brush up on your knowledge of cloud security best practices, relevant tools, and emerging threats.
  • Incident Response Techniques: Familiarize yourself with incident response methodologies, such as the NIST Computer Security Incident Handling Guide, and practice responding to security incidents in a simulated environment.
  • Security Tool Development: Review your experience with relevant security tools, and prepare to discuss your approach to designing and improving security tools that meet operational reliability and SLA requirements.

ATS Keywords: [List of relevant cloud security, incident response, and security tool development keywords, organized by category]

📝 Enhancement Note: To prepare for Datadog's technical interview process, focus on demonstrating your cloud security expertise, problem-solving approach, and ability to work effectively within a team. Highlight your relevant experience, portfolio projects, and case studies to showcase your skills and qualifications for the cloud security engineer role.

🛠 Technology Stack & Web Infrastructure

Cloud Platforms:

  • AWS: Amazon Web Services, including EC2, RDS, and S3
  • GCP: Google Cloud Platform, including Compute Engine, Cloud SQL, and Cloud Storage
  • Azure: Microsoft Azure, including Virtual Machines, Azure SQL Database, and Azure Storage

Infrastructure as Code (IaC) Tools:

  • Terraform: Infrastructure as code software tool for creating, changing, and versioning infrastructure safely and efficiently
  • Ansible: Open-source software provisioning, configuration management, and application-deployment tool that helps you describe your infrastructure's desired state

Security Tools:

  • Cloud Security Management (CSM) Tools: Tools like Prisma Cloud, Palo Alto Cortex XSOAR, or Datadog's home-grown security products to secure cloud infrastructure and manage security risks
  • Security Information and Event Management (SIEM) Systems: Tools like Splunk, IBM QRadar, or Datadog's home-grown security products to collect, analyze, and report on security-related data and events
  • Security Orchestration, Automation, and Response (SOAR) Platforms: Tools like Palo Alto Cortex XSOAR, IBM Resilient, or Datadog's home-grown security products to automate and orchestrate security workflows, playbooks, and runbooks

📝 Enhancement Note: Familiarize yourself with Datadog's technology stack, including cloud platforms, infrastructure as code tools, and security tools, to ensure a strong understanding of the company's cloud security environment and requirements.

👥 Team Culture & Values

Cloud Security Values:

  • Empower Engineers: Datadog's cloud security team empowers engineers to have strong security ownership of their products and services, driving a culture of security by default.
  • Collaborate and Influence: Work closely with various engineering domains to identify security risks, develop security resources and tools, and promote a secure by default model.
  • Continuous Improvement: Stay updated with modern security best practices, technologies, and emerging threats, driving innovation in cloud security.
  • Secure by Default: Implement security solutions and standards that scale with the needs of Datadog's business and customers, promoting a secure by default model.

Collaboration Style:

  • Cross-Functional Integration: Work closely with developers, designers, and stakeholders to ensure effective communication, empathy, and understanding between teams.
  • Code Review Culture: Foster a culture of code review and peer programming, promoting knowledge sharing, continuous learning, and high-quality security tools and processes.
  • Knowledge Sharing: Encourage team members to share their expertise, mentor junior team members, and contribute to Datadog's collaborative and innovative company culture.

📝 Enhancement Note: Datadog's cloud security team values collaboration, continuous improvement, and empowering engineers to have strong security ownership of their products and services. This culture fosters a collaborative and innovative environment, driving a secure by default model and promoting high-quality security tools and processes.

⚡ Challenges & Growth Opportunities

Technical Challenges:

  • Cloud Security Risks: Identify and mitigate security risks in a large, multi-cloud environment, working with various engineering domains to drive a secure by default model.
  • Emerging Technologies: Stay updated with modern security best practices, technologies, and emerging threats, driving innovation in cloud security and implementing security solutions that scale with business needs.
  • Performance Optimization: Optimize security tools and processes for operational reliability, adherence to SLAs, and continuous improvement, ensuring they meet the needs of Datadog's growing business and customer base.

Learning & Development Opportunities:

  • Technical Skill Development: Expand your expertise in cloud security, emerging technologies, and security best practices, with opportunities to specialize in specific domains or take on more complex projects.
  • Conference Attendance: Attend industry conferences, such as Black Hat, DEF CON, or RSA Conference, to network with peers, learn about emerging threats, and stay updated with modern security best practices.
  • Certification and Community Involvement: Pursue relevant certifications, such as Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), or Certified Ethical Hacker (CEH), and engage with the cybersecurity community to drive continuous learning and professional development.

📝 Enhancement Note: As a cloud security engineer at Datadog, you'll face technical challenges in identifying and mitigating security risks, staying updated with emerging technologies, and optimizing security tools and processes. However, these challenges present ample opportunities for learning, growth, and driving innovation in cloud security.

💡 Interview Preparation

Technical Questions:

  • Cloud Security Fundamentals: Discuss your understanding of cloud security best practices, relevant tools, and emerging threats, demonstrating your ability to secure cloud infrastructure and drive a secure by default model.
  • Incident Response Techniques: Explain your approach to incident response, including your experience with incident response methodologies, such as the NIST Computer Security Incident Handling Guide, and your ability to respond to security incidents in a simulated environment.
  • Security Tool Development: Describe your experience with relevant security tools, and discuss your approach to designing and improving security tools that meet operational reliability and SLA requirements.

Company & Culture Questions:

  • Company Culture: Discuss your understanding of Datadog's collaborative and innovative company culture, and how you would contribute to the team's mission of empowering engineers to have strong security ownership of their products and services.
  • Security Methodologies: Explain your approach to security methodologies, such as Agile, DevSecOps, or the Secure Software Development Lifecycle (SSDLC), and how you would apply them to drive a secure by default model within Datadog's engineering teams.
  • User Experience Impact: Describe your approach to considering user experience in security tool development, and how you would ensure that Datadog's security tools and processes meet the needs of both engineers and customers.

Portfolio Presentation Strategy:

  • Cloud Security Projects: Highlight projects that demonstrate your ability to secure cloud infrastructure, automate security processes, and develop security tools, emphasizing their operational reliability and adherence to SLAs.
  • Incident Response Case Studies: Showcase your experience in triaging security alerts and responding to incidents, including any runbooks or playbooks you've created, and discuss your approach to incident response methodologies and continuous improvement.
  • Security Tool Development: Include examples of security tools you've designed or improved, and discuss your approach to designing and improving security tools that meet operational reliability and SLA requirements, as well as your experience with relevant security tools and technologies.

📝 Enhancement Note: To prepare for Datadog's technical interview process, focus on demonstrating your cloud security expertise, problem-solving approach, and ability to work effectively within a team. Highlight your relevant experience, portfolio projects, and case studies to showcase your skills and qualifications for the cloud security engineer role.

📌 Application Steps

To apply for this cloud security engineer position at Datadog, follow these steps:

  1. Tailor Your Resume: Highlight your relevant cloud security experience, technical skills, and problem-solving approach, emphasizing your ability to work effectively within a team and drive a secure by default model.
  2. Prepare Your Portfolio: Include projects that demonstrate your ability to secure cloud infrastructure, automate security processes, and develop security tools, as well as incident response case studies and examples of security documentation.
  3. Practice Technical Challenges: Brush up on your cloud security fundamentals, incident response techniques, and security tool development experience, and prepare for hands-on exercises and case studies during the technical interview process.
  4. Research Datadog: Familiarize yourself with Datadog's company culture, technology stack, and cloud security approach, and prepare to discuss how you would contribute to the team's mission and drive innovation in cloud security.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and cloud security industry-standard assumptions. All details should be verified directly with Datadog before making application decisions.

Application Requirements

Candidates should have a BS/MS/PhD in a related field or equivalent experience, with a passion for implementing security solutions in a multi-cloud environment. Prior experience in relevant fields and fluency in modern coding languages is required.