Datadog’s Implementation Services team helps customers implement and deploy Datadog quickly and successfully. Our team of architects leads the discovery, design, build, and launch of the Datadog platform to help customers accelerate time to value and get the most out of their investment.
As a Senior Services Architect focused on Security and Cloud SIEM, you will help customers design, implement, and operationalize Datadog’s security capabilities across cloud, infrastructure, application, and log data sources. You will lead structured, outcome-driven professional services engagements delivered through a day-based professional services delivery model, partnering directly with customers through co-development working sessions, architecture workshops, implementation planning, and operational handoff.
This role is ideal for someone who combines customer-facing consulting experience with strong cybersecurity knowledge, hands-on Cloud SIEM implementation skills, and an understanding of security control frameworks such as NIST 800-53, the NIST Cybersecurity Framework, CIS Controls, MITRE ATT&CK, SOC 2, PCI, HIPAA, ISO 27001, or similar standards.
At Datadog, we place value in our office culture — the relationships and collaboration it builds and the creativity it brings to the table. We operate as a hybrid workplace to ensure our Datadogs can create a work-life harmony that best fits them.
What You’ll Do:
- Design and guide execution of Datadog implementations, focusing on Security and Cloud SIEM deployment, including discovery, requirements gathering, technical architecture, deployment planning, and launch.
- Partner with customers to map security requirements, controls, and monitoring objectives to Datadog capabilities, including frameworks such as NIST 800-53, NIST Cybersecurity Framework, CIS Controls, MITRE ATT&CK, SOC 2, PCI, HIPAA, ISO 27001, or similar standards.
- Advise customers on security data strategy, including log source prioritization, parsing, normalization, enrichment, retention, indexing, sensitive data handling, and detection readiness.
- Build, tune, and document security detections, monitors, dashboards, workflows, and runbooks that support incident response, threat investigation, compliance reporting, and operational handoff.
- Translate customer security and compliance objectives into practical implementation plans with clear milestones, dependencies, risks, and measurable outcomes.
- Write automation and design architecture for repeatable deployment templates, security content, and onboarding patterns.
- Manage the technical execution of implementation projects, including scope alignment, delivery planning, session preparation, follow-up actions, and customer communication.
- Collaborate with Customer Success, Technical Account Management, Sales Engineering, Product, and Support teams to deliver an exceptional onboarding experience.
- Act as a trusted advisor to customer security, platform, DevOps, and observability teams by helping them mature their security monitoring, alerting, incident response, and operational processes.
Who You Are:
- Experienced designing and delivering technical solutions for Cloud SIEM, security monitoring, security operations, DevOps, observability, cloud architecture, or related systems.
- Hands-on experience with security logging and telemetry sources such as cloud audit logs, identity provider logs, firewall and network logs, endpoint/security tool logs, application logs, Kubernetes audit logs, infrastructure logs, and SaaS audit logs.
- Familiar with cybersecurity practices such as detection engineering, alert triage, incident response, threat investigation, vulnerability management, cloud security, access control, and security operations workflows.
- Comfortable mapping technical