Job Description
Summary
We are seeking a Security Engineer who will be responsible for preventing, detecting, and responding to all manner of security incidents that impact the company, on and off chain. The Security Engineer will be deeply involved with overall detection and response strategy, development and deployment of cutting edge tools, forward-thinking policy development, and stewarding a culture of security across the company.
Responsibilities
- Build out a novel detection platform to be a central location for all alerts, tune and reduce noise, increase signal, prioritization of high level alerts, automation and contextualization of events.
- Lead and coordinate response efforts to security incidents, including identification, containment, eradication, and recovery.
- Gather and analyze threat intelligence data and stay informed on emerging threats and vulnerabilities.
- Integrate threat intelligence into detection and response tooling, processes and capabilities.
- Automate repetitive tasks and workflows to improve the efficiency of security operations.
- Collaborate with engineering and operations teams to embed detection and response capabilities across the stack.
- Provide training and guidance to other teams on security best practices and incident response.
- Implement monitoring tools to track activities and transactions on the blockchain, detecting anomalous or malicious behavior that could pose security threats. Analyze patterns to preemptively identify and mitigate potential vulnerabilities, ensuring the integrity and security of all blockchain transactions.
Desired Experience
- 5+ years of experience working within security engineering with expertise in forensics, Malware Analysis, Intrusion Detection and incident response.
- Expertise with AWS (preferred), GCP, or other cloud providers
- 4-5+ years of experience in detection engineering, rules development, SIEM experience (ex, ELK, Splunk et al), EDR such as SentinelOne (what we use), CarbonBlack, etc
- Start-up experience
- Proficient in one or more programming languages, such as Java, Go, PowerShell, Node.js, C#, Python, and Ruby.
- Deep knowledge and experience modeling threats aligned to the MITRE ATT&CK framework and Lockheed Killchain model
- SANS certification (504, 508, 578) a bonus.
- A strong interest in blockchain technology, with either prior experience or a significant curiosity and enthusiasm to learn.
The base salary for this full-time position, which spans across multiple internal levels depending on qualifications, ranges between $185,000 to $340,000 plus benefits & equity.
Skills
- AWS
- Development
- Java
- Leadership
- Python
- Team Collaboration