Principal Detection & Response Engineer
BitMEX
·
Posted:
April 21, 2023
·
Remote
About the position
The Principal Detection & Response Engineer at BitMEX is responsible for protecting the company from external and internal threats. This includes designing, building, and implementing tools to aid in the detection, mitigation, and response to security threats. The role also involves proactively identifying and responding to emerging security threats, refining security detection and response policies and processes, and working with internal and external partners to obtain actionable intelligence to protect the firm. The ideal candidate should have 10+ years of experience in Information Security or related fields, experience in creating detection use cases in SIEM tools, and software development skills in languages such as Python, Golang, Ruby, C, C++, or similar.
Responsibilities
- Proactively identify and respond to emerging security threats
- Support a global, multi-timezone, on-call rotation for incident triage & response
- Develop, maintain and tuning tools that aid in the detection, mitigation or response to security threats
- Define and refine security detection and response’s policies and processes
- Work with internal and external partners to obtain actionable intelligence to protect the firm.
- Identify security gaps and implement constant improvements to our security stack
- Communicate effectively with lines of business and clients to address complex information security issues
- Mentor and provide security guidance to various organizations throughout the company
Requirements
- Proactively identify and respond to emerging security threats
- Support a global, multi-timezone, on-call rotation for incident triage & response
- Develop, maintain and tuning tools that aid in the detection, mitigation or response to security threats
- Define and refine security detection and response’s policies and processes
- Work with internal and external partners to obtain actionable intelligence to protect the firm.
- Identify security gaps and implement constant improvements to our security stack
- Communicate effectively with lines of business and clients to address complex information security issues
- Mentor and provide security guidance to various organizations throughout the company
- 10+ years experience in Information Security or related fields.
- Experience in creating detection use cases in Security information and event management (SIEM) tools.
- Experience in supporting and configuring Endpoint detection and response (EDR) tools.
- Experience in digital forensics analysis and incident response
- Experience in cloud environment and cloud security
- Knowledge of HIDS/NIDS tools such as osquery, or zeek (formally bro)
- Understanding of emerging adversary tactics, techniques and procedures
- Software development skills in languages such as Python, Golang, Ruby, C, C++, or similar
- Knowledge of malware analysis & reverse engineering
- Strong written and oral communication skills
- Candidates with less experience will be considered for the Senior Detection & Response Engineer position.
Benefits
- Competitive salary package
- Global exposure and opportunity to work with a multi-timezone team
- On-call rotation for incident triage & response
- Opportunity to develop, maintain and tune tools that aid in the detection, mitigation or response to security threats
- Chance to define and refine security detection and response’s policies and processes
- Collaboration with internal and external partners to obtain actionable intelligence to protect the firm
- Opportunity to identify security gaps and implement constant improvements to the security stack
- Chance to communicate effectively with lines of business and clients to address complex information security issues
- Opportunity to mentor and provide security guidance to various organizations throughout the company.