SOC Security Engineer

Binance is a prominent player in the global blockchain ecosystem, serving as the foundation for the world's largest cryptocurrency exchange with millions of users across multiple countries. Our reputation is built on industry-leading security measures, transparent fund management, swift trading engine, deep liquidity, and a diverse range of digital asset products. From trading and financial services to education and institutional offerings, we are committed to utilizing digital assets and blockchain technology to create a more inclusive financial landscape worldwide.

We are seeking a skilled SOC Security Development Engineer to join our Security Operations team. This role primarily involves focusing on the advancement of security platforms, automation, engineering integration with internal tools, and active participation in incident response and SOC operations.

The ideal candidate should possess strong programming capabilities, a solid grasp of SOC workflows, and hands-on experience in extending and integrating security platforms like SIEM, EDR, and cloud-based services through custom development and APIs.

Responsibilities:

• Develop, design, and maintain security automation and SOC tooling, including integrations with various security platforms and internal systems.
• Design and create services, scripts, and pipelines for automating alert enrichment, correlation, response, and investigation workflows.
• Establish and sustain API-based integrations with security tools, AWS services, and internal systems.
• Enhance and support SIEM platforms for alerting, ingestion, and investigations.
• Engage in security detection engineering, including log parsing, data normalization, and implementation of detection logic.
• Assist in security incident response tasks such as triage, investigation, containment, eradication, and post-incident analysis.
• Participate in the SOC on-call rotation to address security alerts and incidents promptly.
• Collaborate with SOC analysts to convert operational requirements into scalable engineering solutions, troubleshoot existing security automation, CI/CD pipelines, and platform components for optimization.

Requirements:

• Proficiency in programming languages like Python, Golang, or Java with a focus on writing production-quality code.
• Experience working with RESTful APIs, modern IDEs, Git-based version control, Cloud, CI/CD, Containerization, and AWS environments.
• Hands-on experience in Security Operations Centers (SOC) with a good understanding of SIEM platforms and EDR solutions.
• Solid knowledge and experience in developing or extending security platforms and internal security tools, coupled with strong fundamentals in Linux.

Why Binance:

• Help shape the future within a leading blockchain ecosystem.
• Collaborate with top-tier professionals in a global, user-centric organization.
• Engage in challenging and innovative projects with a high level of autonomy.
• Enjoy career growth opportunities and continuous learning in a results-driven workplace.
• Competitive salary and comprehensive company benefits.
• Flexible work arrangements.