Principal Detection & Response Engineer

The job overview for the Principal Detection & Response Engineer role at BitMEX is to protect the company from both external and internal threats. The engineer will be responsible for responding to security incidents, such as intrusions, insider threats, and abuse, in an orderly, rapid, and effective manner. They will also design, build, and implement tools to aid in these functions. Additionally, the engineer will proactively identify and respond to emerging security threats, develop and maintain security detection and response tools, and collaborate with internal and external partners to obtain actionable intelligence to protect the firm.

• Proactively identify and respond to emerging security threats
• Support a global, multi-timezone, on-call rotation for incident triage & response
• Develop, maintain and tuning tools that aid in the detection, mitigation or response to security threats
• Define and refine security detection and response’s policies and processes
• Work with internal and external partners to obtain actionable intelligence to protect the firm
• Identify security gaps and implement constant improvements to our security stack
• Communicate effectively with lines of business and clients to address complex information security issues
• Mentor and provide security guidance to various organizations throughout the company

• 10+ years experience in Information Security or related fields
• Experience in creating detection use cases in Security information and event

• Mentorship and security guidance provided to various organizations throughout the company
• 10+ years of experience in Information Security or related fields
• Experience in creating detection use cases in Security information and event management (SIEM) tools
• Experience in supporting and configuring Endpoint detection and response (EDR) tools
• Experience in digital forensics analysis and incident response
• Experience in cloud environment and cloud security
• Knowledge of HIDS/NIDS tools such as osquery or zeek (formally bro)
• Understanding of emerging adversary tactics, techniques, and procedures
• Software development skills in languages such as Python, Golang, Ruby, C, C++, or similar
• Knowledge of malware analysis & reverse engineering
• Strong written and oral communication skills
• Opportunity for candidates with less experience to be considered for the Senior Detection & Response Engineer position