Staff Security Engineer, Detection & Response

As the world's first and largest NFT marketplace, OpenSea is pioneering a new frontier where art, games, technology and commerce converge in fascinating and unprecedented ways.  Our platform empowers millions of creators, collectors and developers to easily showcase, discover, buy and sell unique digital items.

We’re a team of rigorous problem solvers, visionary futurists, proactive doers and effective communicators. As a remote-first company, we enable our team members to work from anywhere, while making time to come together as a team to collaborate and connect in person throughout the year.

We are seeking a Security Engineer who will be responsible for preventing, detecting, and responding to all manner of security incidents that impact the company, on and off chain. The Security Engineer will be deeply involved with overall detection and response strategy, development and deployment of cutting edge tools, forward-thinking policy development, and stewarding a culture of security across the company.

Responsibilities

• Build out a novel detection platform to be a central location for all alerts, tune and reduce noise, increase signal, prioritization of high level alerts, automation and contextualization of events.

• Lead and coordinate response efforts to security incidents, including identification, containment, eradication, and recovery.

• Gather and analyze threat intelligence data and stay informed on emerging threats and vulnerabilities.

• Integrate threat intelligence into detection and response tooling, processes and capabilities.

• Automate repetitive tasks and workflows to improve the efficiency of security operations.

• Collaborate with engineering and operations teams to embed detection and response capabilities across the stack.

• Provide training and guidance to other teams on security best practices and incident response.

• Implement monitoring tools to track activities and transactions on the blockchain, detecting anomalous or malicious behavior that could pose security threats. Analyze patterns to preemptively identify and mitigate potential vulnerabilities, ensuring the integrity and security of all blockchain transactions.

Desired Experience

• 5+ years of experience working within security engineering with expertise in forensics, Malware Analysis, Intrusion Detection and incident response.

• Expertise with AWS (preferred), GCP, or other cloud providers

• 4-5+ years of experience in detection engineering, rules development, SIEM experience (ex, ELK, Splunk et al), EDR such as SentinelOne (what we use), CarbonBlack, etc

• Start-up experience

• Proficient in one or more programming languages, such as Java, Go, PowerShell, Node.js, C#, Python, and Ruby.

• Deep knowledge and experience modeling threats aligned to the MITRE ATT&CK framework and Lockheed Killchain model

• SANS certification (504, 508, 578) a bonus.

• A strong interest in blockchain technology, with either prior experience or a significant curiosity and enthusiasm to learn.

The base salary for this full-time position, which spans across multiple internal levels depending on qualifications, ranges between $185,000 to $340,000 plus benefits & equity.

If you don't think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box, and we're looking for someone who is excited to join the team.

#LI-Remote