Staff Threat Detection Engineer

🕒 Abril 28

Candidatar-se

Encontrar Vagas Remotas Similares

Receber Emails de Vagas Remotas

📊 Verifique sua pontuação de currículo para esta vaga

Melhore suas chances de conseguir uma entrevista verificando sua pontuação de currículo antes de se candidatar.

Enviar Currículo

Chainalysis Inc.

SiteLinkedInTodas as Vagas

501 - 1000 funcionários

🔌 API

💳 Fintech

🔒 Cibersegurança

💰 $170.000.000 Series F em 2022-05

API • Fintech • Cybersecurity

Chainalysis é a principal plataforma de dados de blockchain que oferece soluções de inteligência de blockchain para diversos setores, incluindo agências de aplicação da lei, órgãos reguladores, instituições financeiras e exchanges centralizadas. A empresa ajuda organizações a enfrentar os desafios de cripto, assegurar compliance com as regulamentações e mitigar riscos associados a transações com criptomoedas por meio de suas soluções e insights inovadores. Com um hub de P&D, o Chainalysis Labs, a empresa é dedicada a avançar a inteligência de blockchain e apoiar uma economia digital mais segura.

Descrição

• Lead Detection Strategy: Own the end-to-end roadmap for corporate threat detection, mapping coverage against frameworks like MITRE ATT&CK. • Engineer High-Fidelity Detections: Design and maintain scalable detection logic across SIEM, EDR, and cloud logging platforms (AWS/GCP). • Conduct Threat Hunting: Plan and execute hypothesis-driven hunting campaigns to uncover novel TTPs and turn findings into durable controls. • Perform Risk Modeling: Lead threat assessments and design reviews for new technology on-boarding and product design changes. • Optimize Response: Partner with Incident Response to refine alert quality, automate triage playbooks, and reduce time-to-containment. • Mentor & Influence: Provide technical leadership and mentorship to the DaRE team while influencing product teams to improve visibility and remediate gaps.

🎯 Requisitos

• 8+ years of experience in detection engineering, SOC, or incident response at scale. • Deep expertise in building and tuning detections within SIEM, EDR, and log analytics platforms. • Advanced proficiency in writing complex detection queries (e.g., KQL, SPL, SQL). • Demonstrated experience detecting modern attacker TTPs across endpoint, identity, and cloud environments. • Strong scripting skills (Python, Bash) for automation and enrichment. • Proven ability to lead cross-functional security initiatives with IT and Engineering stakeholders.

🏖️ Benefícios

• Offers Equity • Offers Bonus