Consensys is hiring a

Web3 Security Analyst

ConsenSys is the leading Ethereum software company. We enable developers, enterprises, and people worldwide to build next-generation applications, launch modern financial infrastructure, and access the decentralized web. Our product suite, composed of Infura, Quorum, Codefi, MetaMask, and Diligence, serves millions of users, supports billions of blockchain-based queries for our clients, and has handled billions of dollars in digital assets. Ethereum is the largest programmable blockchain in the world, leading in business adoption, developer community, and DeFi activity. On this trusted, open source foundation, we are building the digital economy of tomorrow. To explore our products and solutions, visit http://consensys.net.

About the role:

This role will be a key position within our SOC where you will be tasked with proposing new security objectives, use cases, improvements and recommendations. As a senior member of the SOC you will set the standard for our Analyst Team, leading the development of processes, playbooks and runbooks to ensure an effective world class Security Operation.

You will also support the SOC as an advanced escalation point identifying and addressing complex security incidents, and provide on-going in depth security insights and continuous improvement.

Security is your passion — you keep up to date with the latest security trends, analyzing emerging events/vulnerabilities/exploits and getting your like minded colleagues around a table to investigate and respond to incidents that excite you.

Responsibilities will include:

• Integrating multiple data streams and feeds from networks, infrastructure services, mission/business applications into a near, real-time dashboard for use in troubleshooting and security incident response activities.
• Provide expert level analysis and investigation of security related data from a wide range of security devices and customer environments
• Interpreting and acting on results from various security technologies including SIEM, IDS/IPS, Container Security, Cloud Security systems.
• Define detailed operational processes and procedures to analyze, escalate and support the remediation of critical security issues
• Develop automation to reduce response times and increase efficiency while reducing workloads and standardizing security incident response processes
• Develop playbooks according to a standard incident response framework to respond to threats within customer environments
• Remain current on Cyber Security Trends and Intelligence with current countermeasures for Cyber Security vulnerabilities, exploits and other malicious activity in order to guide the security analysis and identification capability of the SOC Team
• Researching potential items of risk, vulnerability and opportunities in the infrastructure
• Provide mentoring to your Security Analyst team members
• Produce Technical Security Advisories of interest and benefit to internal partners
• Participating to 24/7 on-call duty service

Qualifications: 

• 6+ years working with IT Security, specifically in a SOC environment.
• A deep understanding of incident response best practices and processes
• Experience working with security tools for the purposes of detection, diagnosis, containment and remediation
• Familiar with defense methods and techniques
• Good awareness of the cyber security landscape with a competent analytical mindset, malware analysis, root cause, threat intelligence, SOAR (Security Orchestration, Automation and Response), EDR (Endpoint Detection & Response)
• In-depth knowledge and experience managing security in a cloud environment including vulnerability management, protective monitoring, incident management and threat intelligence
• Working knowledge and understanding of the concepts of security compliance, assurance, risk, business continuity and disaster recovery, data protection and the main security standards (ISO2700x, CIS, NIST, SOC2 etc)
• Highly developed, process-oriented skills for troubleshooting, problem solving, and problem resolution
• Experience with containerized environments and microservices, and in particular with container security and secrets management (Docker/Kubernetes/AKS)
• Scripting experience in Python/Bash/Go or equivalent
• Excellent verbal and written English skills

Nice to have:

• Managing security in a multi-cloud environment
• Qualifications and certifications from information security bodies such as: GIAC, ISC2, ISACA, ISA, CompTIA
• Technological degree in Computer science or equivalent