DLP and Incident Response Engineer

Job not on LinkedIn

September 16

Apply Now

Receive Emails with Similar Jobs

Binance

WebsiteLinkedInAll Job Openings

Crypto • Fintech

Binance is the world's leading cryptocurrency exchange, serving over 235 million registered users across more than 180 countries. The platform offers a wide array of services, including the trading of over 350 cryptocurrencies in Spot, Margin, and Futures markets. Users can also buy and sell crypto via Binance P2P, earn interest through Binance Earn, and engage in NFT trading on the Binance NFT marketplace. Binance provides low transaction fees and diverse payment options, making it a preferred choice for cryptocurrency enthusiasts worldwide.

1001 - 5000 employees

Founded 2017

₿ Crypto

💳 Fintech

💰 Initial Coin Offering on 2020-12

📋 Description

• Design, deploy, and optimize DLP solutions across network, endpoint, and cloud • Build and refine data classification schemes for sensitive assets (wallets, trading algorithms, customer PII) • Configure DLP policies to prevent data exfiltration while minimizing false positives • Monitor, analyze, and tune alerts and incidents for continuous improvement • Lead investigations of DLP incidents and insider threats • Conduct threat hunting and forensic analysis of data exfiltration attempts • Integrate DLP monitoring into broader SOC workflows and incident response playbooks • Build custom DLP tools and integrations (e.g., macOS Swift endpoint protection, Unix socket monitoring) • Develop automation scripts, APIs, regexes and integrations to enhance detection and response • Explore AI/LLM-driven methods for anomaly detection and response efficiency • Ensure controls align with crypto and financial regulations (AML, KYC, GDPR, CCPA) • Support audits and regulatory reviews related to data protection • Assess and mitigate data loss risks across trading platforms, onboarding systems, and blockchain infrastructure

🎯 Requirements

• 4+ years in a SOC or security operations role with incident response focus • Proven experience with DLP design, deployment, and monitoring • Strong programming skills (macOS Swift, Unix socket programming, scripting) • Hands-on threat hunting, forensic analysis, and APT detection experience • Familiarity with SIEM, EDR, and cloud security architectures • Knowledge of encryption, tokenization, and data classification methods • Experience in fintech, crypto, or high-security environments (preferred)

🏖️ Benefits

• Shape the future with the world’s leading blockchain ecosystem • Collaborate with world-class talent in a user-centric global organization with a flat structure • Tackle unique, fast-paced projects with autonomy in an innovative environment • Thrive in a results-driven workplace with opportunities for career growth and continuous learning • Competitive salary and company benefits • Work-from-home arrangement (the arrangement may vary depending on the work nature of the business team)