Cyber Security Engineer (Remote)

�

� Description

• • Architect and continuously evolve the security posture of a fast-growing crypto-analytics platform that serves thousands of professional traders and institutional investors worldwide. You will own the full lifecycle—from strategic planning to hands-on implementation—of security controls that safeguard millions of dollars in digital assets and terabytes of proprietary market data.
• • Design, deploy, and tune next-generation firewalls, VPN concentrators, intrusion-detection/prevention systems (IDS/IPS), web-proxies, and data-loss-prevention (DLP) gateways in a 100 % cloud-native environment (AWS/GCP). You will write Infrastructure-as-Code (Terraform, CloudFormation) to make every change reproducible, peer-reviewed, and auditable.
• • Lead incident-response drills and real-time triage when alarms fire. You will build automated playbooks in Python, Go, or PowerShell that isolate compromised hosts, revoke tokens, and preserve forensic evidence without disrupting trading operations that run 24/7/365.
• • Hunt for advanced persistent threats by writing custom detection rules in Sigma and YARA, correlating logs from O365, EDR, VPC Flow, and Kubernetes audit streams inside a centralized SIEM. Your queries will reduce mean-time-to-detect from hours to minutes.
• • Conduct weekly vulnerability scans and quarterly red-team exercises against our APIs, web applications, and blockchain nodes. You will prioritize findings using CVSS and business-impact scoring, then partner with engineering squads to ship fixes within SLA.
• • Manage the change-management process end-to-end: assess risk, document rollback plans, and obtain stakeholder sign-off for every firewall policy or IAM permission change. You will maintain a living runbook that turns tribal knowledge into repeatable procedures.
• • Champion a culture of security-by-design across product, data-science, and DevOps teams. You will deliver threat-modeling workshops, secure-coding lunch-and-learns, and “bug-bash” days that reduce defect density before code ever reaches production.
• • Generate concise, board-ready metrics—MTTR, patch-compliance %, phishing-resilience score—and present them monthly to executives. Your insights will directly influence budget allocation and strategic roadmap decisions.
• • Participate in an on-call rotation that is both fair and sustainable (average 1 week in 6). You will join a global, fully remote team that collaborates via Slack, Notion, and Zoom, yet still finds time for virtual coffee chats and meme wars.
• • Stay ahead of the curve by researching zero-day exploits, DeFi hacks, and emerging MITRE techniques. You will translate this intelligence into actionable defenses that keep Token Metrics at the cutting edge of crypto-security innovation.