Cybersecurity Operations & Security Engineer

You will play a hybrid role, covering both practical security operations and security engineering.

You will be responsible for protecting digital infrastructure, detecting and responding to potential threats, and working with cross-functional teams to implement security best practices.

You will be responsible for ensuring the robustness of both the operational environment and infrastructure in the rapidly evolving Web3 and blockchain ecosystems.

Job Description

Security Operations

Incident Detection and Response:

• Monitor security tools, systems, and logs to identify, investigate, and respond to security events
• Work with internal teams to lead incident triage and resolution
• Conduct root cause analysis and create detailed reports for management

Threat Detection and Hunting:

• Analyze and track emerging threat trends in digital assets, blockchain, and Web3 technologies
• Maintain and strengthen threat intelligence pipelines and integrate them into security operations

Infrastructure Security

• Work with DevOps and engineering teams to integrate security into CI/CD pipelines and container environments (Docker, Kubernetes) 
• Regularly assess and strengthen infrastructure security, including system configurations, firewalls, and access controls
• Improve efficiency of monitoring and operations by automating security processes and workflows

Vulnerability Management and Response

• Conduct vulnerability assessments for systems, applications, and infrastructure 
• Work with IT, DevOps, and engineering teams to promote the remediation of discovered vulnerabilities 
• Keep abreast of new vulnerability information and propose patch application or mitigation measures

Security Engineering

• Formulate and implement security policies, standards, and procedures to protect corporate assets 
• Build and maintain security tools and solutions such as SIEM, EDR, IDS/IPS, and WAF 
• Conduct security reviews of systems, applications, and third-party integrations

Process Improvement and Documentation

• Develop and improve security operations playbooks and incident response procedures
• Document security architecture, processes, and standards (for internal and external use)
• Conduct training and awareness activities to ensure that each team understands and adheres to security protocols