Lead Security Engineer, Detection and Response

About the company:

Join Circle, a forward-thinking financial technology firm revolutionizing the way money moves in the digital era. We are spearheading the advancement of financial transactions to be as seamless and cost-effective as sharing any other digital information globally and swiftly. Our cutting-edge infrastructure, which includes USDC, a blockchain-based dollar, empowers businesses, institutions, and developers to embrace this transformative wave in money and technology evolution for enhancing global economic prosperity and fostering inclusivity.

What you'll be involved in:

At Circle, transparency and consistency are the guiding principles shaping our activities. As we elevate, we are extending our footprint to key global regions, emphasizing speed and efficiency as pillars of achievement. Our team lives by our company ethos: Multistakeholder, Mindfulness, Driven by Excellence, and High Integrity. Circlers continually adapt in a virtual realm fueling collaborative success, cultivating an environment rich in diversity and innovation supported by open communication and shared ownership.

Your responsibilities will include:

The Circle Security Team is dedicated to safeguarding Circle, its customers, associates, and the financial realms we operate in. They oversee the company's strategies for information security and cybersecurity, business continuity, and vendor risk management.

In this role, you will spearhead technical response initiatives and address various incidents, working collaboratively to uncover the root cause behind events within our cloud infrastructure (mainly AWS) and codebase. We need someone adept at analyzing logs, coordinating with peers, piecing together solutions, and exhibits a knack for the "aha" moment in problem-solving.

Additionally, you will be tasked with devising detections, ideally, with the ability to upkeep the team's technological stack and log pipelines resourcefully feeding into our security tools.

Your journey will entail a continuous learning curve in an engaging and ever-evolving setting.

Keep in mind, being part of a compact global team means you will be expected to be on call during your work hours to support security operations and provide aid during night time and weekend incidents occasionally.

Here's what you will be focusing on:

• Responding to incidents and collaborating across teams for resolutions.
• Officiating in vast multi-stakeholder incidents when required.
• Formulating and implementing detection-as-code to identify unusual activities and attacks.
• Spearheading advancements in security incident management, and orchestrating security automation.
• Cultivating and leveraging ties with peer teams in TechOps, engineering, and product realms.
• Aiding in the development and implementation of playbooks and response strategies.
• Participation in a global on-call rotation to address security alerts and incident escalations promptly.

Core values you'll embody at Circle:

• Multistakeholder: Displaying dedication and commitment to customers, shareholders, employees, local communities, and families.
• Mindful: Being respectful, attentive, and detail-oriented.
• Driven by Excellence: Fueled by a passion for customer success, relentlessly pursuing perfection and goal achievement.
• High Integrity: Prioritizing open and honest communication while holding yourself to elevated moral and ethical standards.

Qualifications we are looking for:

• Over 5 years of incident response experience within a cloud environment (experience in AWS is a plus).
• Exceptional technical and leadership proficiency in Incident Response and Threat Detection, with a proven track record as an Incident Commander.
• Strong communication skills both upward and across teams.
• Demonstrates creativity in problem-solving.
• Ability to work cooperatively under pressure with different teams.
• Proficiency in managing SIEM and SOAR solutions.
• Capable of handling SQL and preferably knowledgeable in Python or similar languages.
• Familiarity with standards like ISO 27001/27002 or the NIST Cybersecurity Framework is preferred.
• Prior experience in financial services or financial technology is desirable.
• Proficient in Google Suite, Slack, and Apple MacOS.
• Adequate in managing data from various sources.
• Ideally situated in Eastern or Central Time Zones.
• Senior engineers looking for career advancement are encouraged to apply.

Additional details:

• Initial PERM sponsorship available for eligible candidates.

• Compensation tailored based on relevant factors including expertise, qualifications, and business requirements, especially in different locations.

  • Base Pay Range: $172,500 - $227,500
  • Annual Bonus Target: 15%
  • Other benefits: Equity, Medical, Dental, Vision, 401(k), discretionary vacation policy, Paid Sick Leave, Paid Holidays.

Embrace our inclusive environment at Circle, where we champion diversity and stand against discrimination of any sort. Circle adheres to the highest ethical and professional standards, rebuffing dishonesty and intolerance in all forms, assessing potential through the lens of skills and abilities.

#LI-Remote