SecOps Expert
Fireblocks is an enterprise-grade platform delivering a secure infrastructure for moving, storing, and issuing digital assets. It enables exchanges, custodians, banks, trading desks, and hedge funds to securely scale digital asset operations through its patent-pending SGX & MPC technology.
About Fireblocks
Fireblocks is an enterprise-grade platform that provides a secure infrastructure for moving, storing, and issuing digital assets. It enables financial institutions like exchanges, custodians, banks, trading desks, and hedge funds to securely scale their digital asset operations. The company was founded by Michael Shaulov, Idan Ofrat, and Pavel Berengoltz after they investigated a major cyber breach. Fireblocks utilizes breakthrough Multi-Party Computation (MPC) and patent-pending chip isolation technology to secure private keys and API credentials. The platform supports various use cases including treasury management, wallet as a service, tokenization, payments, and DeFi, and provides a complete development platform with APIs, SDKs, and tutorials for building on the blockchain.
Skills
About the Role
You'll play a crucial role in enhancing our security infrastructure, improving networking, ensuring scalability, and maintaining strong security as we continue to grow. As the primary escalation point for critical security alerts, you'll perform deep-dive DFIR investigations, analyze attacker techniques and vectors, proactively hunt threats, and direct incident response activities. You'll lead SecOps projects from inception to execution, mentor a team of SecOps experts, and research how to leverage security telemetry to improve triage and automated response. You'll work cross-functionally to refine agentic workflows, coordinate investigation and containment activities with stakeholders, perform hands-on forensic investigations and log reviews, and develop incident analysis reports for management.
Requirements
- 5+ years experience working in an Incident Response/Cyber Security Operations Center addressing, escalating, and managing security incidents and creating incident reports
- Extensive experience managing the lifecycle of security incidents in a global 24/7 production environment
- Collaborating with cross-organizational stakeholders to drive incident response and remediation
- Development of common runbooks for most frequent or critical incident types
- Strong development fundamentals with experience delivering and maintaining production-grade code
- Hands-on programming experience (Python, Bash, etc.) with proven ability to build automation processes
- Proven expertise in attack and mitigation methods within Cloud and SaaS environments
- Solid understanding of system and security controls on at least two OSs (Windows, Linux/Unix, MacOS advantage), including host-based forensics and OS artifact analysis
- Excellent communication skills and ability to work collaboratively with other teams
- Bachelor's degree in Computer Science, Information Technology, or related field (preferred)
- Solid understanding of LLM concepts and architectures, with hands-on experience applying them in practice (preferred)
Responsibilities
- Operate as the primary escalation point for critical security alerts
- Perform deep-dive DFIR investigations and analyze attacker techniques and vectors
- Proactively hunt threats and direct incident response activities
- Lead SecOps projects from inception to execution
- Mentor a team of SecOps experts
- Research how to leverage security telemetry and existing security solutions to improve triage and automated response
- Work cross-functionally to refine and evolve agentic workflows for automated security operations
- Coordinate investigation, containment, and other response activities with business stakeholders
- Perform hands-on forensic investigations, log reviews, cloud investigations, and root-cause analysis
- Develop incident analysis and findings reports for management including gap identification and recommendations
