Staff Security Engineer

Annual salary, USD
185,000 - 340,000
Job function
Software Engineering
Job type
Full Time,
Job posted
Apply before
14 Dec 2024
Industry
Computer Software

About OpenSea

The largest decentralized marketplace for blockchain-based digital assets.

4.7 Rated

We are seeking a Staff Security Engineer who will be responsible for preventing, detecting, and responding to all manner of security incidents that impact the company, on and off chain. The Security Engineer will be deeply involved with overall detection and response strategy, development and deployment of cutting edge tools, forward-thinking policy development, and stewarding a culture of security across the company.

Responsibilities

  • Design and build a cutting-edge detection platform from the ground up, serving as the central hub for processing and analyzing vast quantities of log data. Develop mechanisms to reduce noise, increase signal, and automate the prioritization of high-value alerts.
  • Spearhead the development of infrastructure to integrate, consolidate, and contextualize existing data sources and third-party integrations to enhance detection capabilities.
  • Architect scalable, automated solutions for detecting and responding to security threats across endpoints, cloud environments, and networks.
  • Lead efforts to design and implement systems that enable comprehensive monitoring and security hardening of endpoints and cloud environments, ensuring they are resilient against emerging threats and vulnerabilities.
  • Develop and integrate advanced threat detection signals leveraging threat intelligence and behavioral analysis to identify malicious activity early and prevent incidents.
  • Automate detection workflows and repetitive security processes to improve operational efficiency and allow rapid response to potential threats.
  • Collaborate with engineering teams to embed detection capabilities across the technology stack, ensuring security measures are integrated into systems from inception through deployment.
  • Design and deploy monitoring tools for tracking activities across distributed systems, with a focus on detecting anomalies, vulnerabilities, and potential security risks in real-time.
  • Utilize expertise in programming languages such as Go, Rust, or Python to develop and maintain detection tooling, as well as build custom integrations for security systems and processes.

Desired Experience

  • 5+ years of experience working within security engineering with expertise in forensics, Malware Analysis, Intrusion Detection and incident response.
  • Expertise with AWS (preferred), GCP, or other cloud providers
  • 4-5+ years of experience in detection engineering, rules development, SIEM experience (ex, ELK, Splunk et al), EDR such as SentinelOne (what we use), CarbonBlack, etc
  • Start-up experience
  • Proficient in one or more programming languages, such as Java, Go, PowerShell, Node.js, C#, Python, and Ruby.
  • Deep knowledge and experience modeling threats aligned to the MITRE ATT&CK framework and Lockheed Killchain model
  • SANS certification (504, 508, 578) a bonus.
  • A strong interest in blockchain technology, with either prior experience or a significant curiosity and enthusiasm to learn.

The base salary for this full-time position, which spans across multiple internal levels depending on qualifications, ranges between $185,000 to $340,000 plus benefits & equity.

If you don’t think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box, and we’re looking for someone who is excited to join the team.

Apply now >

Megaphone

Personalised job alerts

Set up personalised e-mail alerts about similar remote jobs

FacebookTwitterLinkedIn

How to apply

Did you apply? Let us know, and we’ll help you track your application.

See a few more

Similar remote jobs in Software Engineering

Job Search Safety Tips

Here are some tips to help you search and apply for jobs safely:
Watch out for suspicious jobs Don't apply for jobs that offer high pay for little work or offer to hire you without an interview. Read more β€Ί
Check the employer's profile Make sure you're applying for a trustworthy job by visiting the employer's profile and learning more about them. Read more β€Ί
Protect your information Don't share personal details like your bank account or government-issued ID on suspicious websites or messengers. Read more β€Ί
Report jobs that feel unsafe If you see a job that seems misleading, inappropriate or discriminatory, report it for going against our policies and we'll review it.

Share this job

FAQ

What position is OpenSea hiring for?

OpenSea is hiring a remote Staff Security Engineer from πŸ‡ΊπŸ‡Έ USA

What type of employment does OpenSea offer?

This is a Full Time role.

Network