Search...

SecOps Expert

Castle Island Ventures logo
Castle Island Ventures

Castle Island Ventures is a venture capital firm focused exclusively on public blockchains, investing in early-stage companies at the intersection of traditional finance and public blockchains.

Distributed
About Castle Island Ventures

Castle Island Ventures is a venture capital firm focused exclusively on public blockchains. Their mission is to support entrepreneurs building the infrastructure and application companies required to help transformative blockchain protocols reach their full potential. They describe their focus as 'accelerating frictionless finance,' investing in early-stage companies operating at the intersection of traditional finance and public blockchains. The firm also produces a podcast and newsletter covering topics in this space, and maintains a portfolio of companies whose open roles are listed on their jobs board.

View jobs by Castle Island Ventures

Skills

About the Role

You'll play a crucial role in enhancing our security infrastructure, improving networking, ensuring scalability, and maintaining strong security as we continue to grow. As the primary escalation point for critical security alerts, you'll perform deep-dive DFIR investigations, analyze attacker techniques and vectors, proactively hunt threats, and direct incident response activities. You'll lead SecOps projects from inception to execution, mentor a team of SecOps experts, and research how to leverage security telemetry to improve triage and automated response. You'll work cross-functionally to refine agentic workflows, coordinate investigation and containment activities with stakeholders, perform hands-on forensic investigations and log reviews, and develop incident analysis reports for management.

Requirements

  • 5+ years experience working in an Incident Response/Cyber Security Operations Center addressing, escalating, and managing security incidents and creating incident reports
  • Extensive experience managing the lifecycle of security incidents in a global 24/7 production environment
  • Collaborating with cross-organizational stakeholders to drive incident response and remediation
  • Development of common runbooks for most frequent or critical incident types
  • Strong development fundamentals with experience delivering and maintaining production-grade code
  • Hands-on programming experience (Python, Bash, etc.) with proven ability to build automation processes
  • Proven expertise in attack and mitigation methods within Cloud and SaaS environments
  • Solid understanding of system and security controls on at least two OSs (Windows, Linux/Unix, MacOS advantage), including host-based forensics and OS artifact analysis
  • Excellent communication skills and ability to work collaboratively with other teams
  • Bachelor's degree in Computer Science, Information Technology, or related field (preferred)
  • Solid understanding of LLM concepts and architectures, with hands-on experience applying them in practice (preferred)

Responsibilities

  • Operate as the primary escalation point for critical security alerts
  • Perform deep-dive DFIR investigations and analyze attacker techniques and vectors
  • Proactively hunt threats and direct incident response activities
  • Lead SecOps projects from inception to execution
  • Mentor a team of SecOps experts
  • Research how to leverage security telemetry and existing security solutions to improve triage and automated response
  • Work cross-functionally to refine and evolve agentic workflows for automated security operations
  • Coordinate investigation, containment, and other response activities with business stakeholders
  • Perform hands-on forensic investigations, log reviews, cloud investigations, and root-cause analysis
  • Develop incident analysis and findings reports for management including gap identification and recommendations