Senior Security Engineer

Senior Security Engineer

About Crypto.com:

Crypto.com is a leading global cryptocurrency platform with over 80 million customers. Our mission is to bring cryptocurrency to every wallet, driven by our commitment to security, privacy, and compliance. We are dedicated to innovation and empowering the next generation of builders, creators, and entrepreneurs in the digital ecosystem.

Responsibilities:

• Enhance and implement cloud security controls, including native cloud security controls, CSPM, CNAPP, and container security controls.
• Develop and maintain rules, policies, and configurations for CSPM, CNAPP, and container security.
• Collaborate with SIEM engineering team on cloud security logging, threat detection, and response initiatives.
• Contribute to the improvement of cloud security logging, detection, and response processes.
• Manage and enhance vulnerability management lifecycle processes, including advisory, scanning, and reporting of vulnerabilities.
• Collaborate with stakeholders to drive patching and remediation efforts.
• Configure and manage vulnerability scanning tools and perform scheduled scans.
• Review and triage vulnerability alerts to generate reports and actionable steps.
• Analyze and remediate findings from vulnerability scans and penetration tests.
• Prepare security patch bundles for various endpoints.
• Oversee and enhance the company's baseline security configuration program for workstations and servers.
• Ensure compliance and regulatory reporting is accurate and timely.
• Collaborate closely with the security compliance team to fulfil their requirements.
• Meet KRIs and KCIs for vulnerability management, secure configuration management, and cloud security.

Requirements:

• Minimum 5 years of experience in information security.
• Minimum 3 years of cloud security or vulnerability management experience.
• Familiarity with common security frameworks such as CIS, NIST, and PCI DSS.
• Ability to translate vulnerabilities into actionable cyber-risks.
• Experience conducting security risk assessments.
• Proficiency in using vulnerability management tools (e.g., Tenable, Qualys, InsightVM, Tripwire CCM).
• Strong knowledge of cloud platforms, particularly AWS and Azure.
• Preferred experience with scripting languages like Python, Ruby, PowerShell, or Bash.
• Information security certifications (CISSP, SANS GIAC, Security+) are a plus.
• Strong work ethic and ownership mindset.
• Excellent communication skills in English, both spoken and written.

Benefits:

• Competitive salary.
• Comprehensive medical insurance coverage, including dependents.
• Attractive annual leave entitlement.
• Flexible work hours and hybrid or remote setup.
• Internal mobility program for career growth opportunities.
• Crypto.com visa card upon joining.
• Additional benefits packages based on regional requirements.

Life at Crypto.com:

At Crypto.com, we foster a collaborative and supportive work culture. We value diversity and inclusion, seeking candidates with various backgrounds, perspectives, and skills to strengthen our team. We provide an environment where employees are empowered to think big and find innovative solutions. Our aim is to accelerate the adoption of cryptocurrency and create a fairer digital ecosystem.

Ready to kickstart your future with us? Apply now!

Please note that only shortlisted candidates will be contacted.