Lead Security Engineer, Detection and Response
About the Company:
Circle operates as a cutting-edge financial technology firm that sits at the forefront of the expanding realm of digital financial transactions. They enable value to move fluidly across the globe in a way similar to other forms of digital data, greatly enhancing speed and cost-efficiency compared to traditional settlement systems. This innovative internet layer they have developed presents unparalleled opportunities for global economic growth, improved payment systems, and expanded markets, ultimately contributing to broader financial inclusion. Circle's foundational infrastructure includes USDC, a dollar supported by blockchain technology, empowering businesses, institutions, and developers to leverage these advancements and seize the significant shift unfolding in the intersection of money and technology.
What You'll Join:
Circle is dedicated to ensuring clear communication and steadfastness in all operations. While undergoing growth, the organization is expanding into some of the most robust global jurisdictions. Rapid and effective performance drives success, and employees consistently embody the company values of Multistakeholder, Mindfulness, Driven by Excellence, and High Integrity. The team at Circle is continuously adapting to a remote work environment where teamwork determines collective achievements. They have established an adaptable and diverse workspace where fresh concepts are embraced, and every individual has a say in shaping the future.
Your Responsibilities:
At Circle, the Security Team works diligently to safeguard the company, clients, partners, and the financial landscapes on which they rely. This team spearheads programs related to information security, cybersecurity, business continuity, and vendor risk management. In this role, you will lead technical responses and handle incidents of different natures. Serving as a technical consultant, you will be pivotal in uncovering the underlying causes of incidents concerning the cloud infrastructure (mainly based on AWS) and the codebase. The ideal candidate should be adept at sifting through logs, collaborating with technical peers, solving intricate puzzles, and achieving breakthrough moments when it seems all possibilities have been explored. Another key responsibility involves crafting detections, and the preferred candidate will possess skills to assist in maintaining the team's technology stack and log pipelines feeding into security tools. This dynamic environment requires a continuous drive for learning and adaptability.
Your Tasks Include:
- Responding promptly to incidents and collaborating with cross-functional teams for thorough investigations and resolutions.
- Assumption of responsibility in handling large-scale incidents involving multiple stakeholders as required.
- Developing and implementing detection methodologies to spot anomalies and potential attacks across the network.
- Propelling advancements in security incident management as well as orchestration and automation.
- Cultivating relationships with corresponding teams in TechOps, engineering, and product departments.
- Contributing to the design and execution of response plans and playbooks.
- Engaging in a global on-call rotation for prompt responses to security alerts and incident escalations.
Core Values to Aspire to:
- Multistakeholder: Demonstrate commitment to customers, shareholders, employees, families, and local communities.
- Mindful: Emphasize respect, active listening, and attentiveness to detail in all interactions.
- Driven by Excellence: Pursue excellence relentlessly, with an unwavering dedication to customer success and an intolerance for mediocrity.
- High Integrity: Uphold a culture of open and truthful communication, while maintaining high moral and ethical standards.
What You'll Bring to the Team:
The ideal candidate should possess over 5 years of experience as an incident responder in a cloud environment (preferably AWS). While a security engineering background is advantageous, experience in roles including site reliability engineer, cloudops engineer, or systems engineer with substantial exposure to cybersecurity is considered. Strong technical and leadership competencies in Incident Response and Threat Detection are essential, with proven skills in Incident Command. Other important traits include effective communication upwards, problem-solving abilities, collaborative skills under stress, experience with SIEM and SOAR solutions, familiarity with SQL, Python exposure, and a preference for proficiency in Google Suite, Slack, and Apple MacOS. Additional capabilities in managing data from various sources and knowledge of standards such as ISO 27001/27002 or the NIST Cybersecurity Framework are desirable. Candidates from the Eastern or Central Time Zones are preferred, and the position offers potential for further career growth for senior-level engineers.
Additional Details:
The role potentially includes immediate sponsorship for PERM, contingent on candidate qualification. Compensation structures are considered based on various factors, and compensation packages may vary depending on candidate location.
- Base Pay Range: $172,500 - $227,500
- Annual Bonus Target: 15%
- Additional Benefits: Equity, Medical/Dental/Vision benefits, 401(k) retirement plan, discretionary vacation policy, 10 days paid sick leave annually, and 11 paid holidays in the U.S.
Circle is an equal opportunity employer, dedicated to fostering diversity without discrimination based on race, religion, nationality, gender, sexual orientation, age, marital status, veteran status, or disability. The company also participates in the E-Verify Program as required by certain locations.
#LI-Remote