Summary
We are looking for a SOC Security Engineer to help safeguard our systems and users by monitoring, detecting, and responding to security threats. In this role, you will be at the front line of defenseanalyzing alerts, investigating incidents, and working closely with cross-functional teams to strengthen our overall security posture.
What You'll Do
- Security Monitoring: Monitor and analyze security alerts and logs across systems such as SIEM, cloud infrastructure, WAF, and application logs to detect suspicious activities
- Incident Detection & Response: Investigate and triage alerts, identify potential threats, and coordinate incident response efforts to contain and mitigate risks
- Threat Investigation: Analyze suspicious activities (e.g., abnormal login patterns, API abuse, account takeover attempts) and assess their impact
- Threat Hunting: Proactively identify hidden threats and anomalies through log analysis and system telemetry
- Security Tooling & Automation: Maintain and improve detection rules, alerts, and monitoring workflows to enhance visibility and response efficiency
- Collaboration with Engineering: Partner with engineering, infrastructure, and application security teams to investigate incidents and implement preventive measures
- Security Incident Documentation: Document incidents, response actions, and lessons learned to improve playbooks and processes
- Security Improvements: Continuously enhance detection capabilities and contribute to strengthening the organization's security posture
What We're Looking For
- Minimum 2 years of experience in Security Analyst / SOC / related roles
- Hands-on experience with security tools such as SIEM, EDR, IDS/IPS, or WAF
- Strong understanding of security fundamentals (network security, web security, authentication, etc.)
- Experience in incident response and threat investigation, including handling true positive critical incidents
- Ability to analyze system logs and identify suspicious patterns or anomalies
- Familiarity with cloud environments (AWS/GCP) and modern web architectures
- Strong analytical thinking and problem-solving skills
Bonus Points
- Experience working in a SOC environment
- Familiarity with threat intelligence and threat hunting practices
- Experience with automation or scripting (Python, Bash, etc.)
- Understanding of fintech-related security risks (e.g., account takeover, fraud detection, API abuse)
