Endpoint Security & Threat Hunting Specialist
Job details
The Cybersecurity and Data Privacy team reports directly under the office of the CISO headed by Chief Information Security Officer (CISO) Jason Lau ( ) who has over 23+ years of experience in the cybersecurity space, awarded Global Top 100 CISO, and also serves on the World Economic Forum, International Association of Privacy Professionals and more. The team comprises of multiple functions from Blockchain Security, Operational Security, Security Governance and Compliance and more. We drive a culture of having a growth mindset and being humble to help everyone achieve their potential. Security and Data Privacy Compliance first strategy which has been at the core of our company. The security team helped to drive us to be the first Crypto company worldwide to achieve ISO27001, ISO27701, ISO22301 and PCI:DSS 3.2.1 (Level 1) certifications. Extremely detailed third party attested by international audit firm SGS and achieved "Adaptive (Tier 4)" - the highest level possible for the US National Institute of Standards and Technology (NIST) Cybersecurity Framework and the latest NIST Privacy Framework as well as SOC2 and many other regional certifications like the Data Protection Trust Mark. We are looking for an intermediate level security specialist to join our Global Cyber Fusion Center. The role will support our continuous threat monitoring, hunting & response capabilities; and be a key contributor to key endpoint security projects & initiatives. Responsibilities
- Threat Monitoring Investigations - deep dive into Tier 1 & Tier 2 security operations escalations, performing incident triage and root cause analysis.
- Proficient in performing investigations using open source and proprietary tools, including but not limited to - EPP/EDR/XDR software, Digital Forensics tools/software, SIEM platforms, etc.
- Threat Hunting - Proficient in Threat Hunting methodologies. Able to plan and execute Threat Hunts using available data sources and security tools.
- Incident Response - Proficient in end-to-end Incident Response. Able to take the lead and provide guidance during investigations and incidents to pivot the investigation, drive containment, mitigation and other security outcomes.
- Security Projects - Lead projects and initiatives that may involve - Endpoint Security enhancements, Threat Hunting, Compromise Assessments, Network/Endpoint security reviews, etc. Endpoint Security - support the deployment, configuration and maintenance of Endpoint Security Software/Tools - including but not limited to - EPP/EDR/XDR software, Digital Forensics tools/software, SIEM/log collection agents, etc.
- Leadership - Be comfortable with cross-functional leadership and stakeholder management. Be willing to lead and nurture a small team of junior security specialists.
- 5-7 years of experience in Information Security, with technical hands-on experience in Security Operations, Digital Forensics, Incident Response, Endpoint Security or Cloud Security.
- Working Experience with SIEM, EPP/EDR/XDR, SOAR, Cloud Security (CSPM, Container Security, etc), Digital Forensics software & tools.
- Working experience with Cloud environments like AWS and Azure.
- Experience in using scripting languages to automate tasks and manipulate data or programming experience is a bonus.
- Management experience is a bonus.
- Highly self-motivated, attention to detail and outcome driven.
- Proficiency in verbal and written English.
- On-call is required.
Apply safely
To stay safe in your job search, information on common scams and to get free expert advice, we recommend that you visit SAFERjobs, a non-profit, joint industry and law enforcement organization working to combat job scams.