RemoteLeaf Logo
Log in Sign up

SecOps Engineer

2 months ago
Serbia, Georgia, Thailand, Greece, Cyprus
Full-time
Senior
Security Engineer
DevOps and Infrastructure
Blockchain CI/CD HashiCorp Vault Helm Kubernetes Penetration Testing Secrets Management SIEM Splunk Terraform
Apply Now
Gomining

Gomining

Gomining operates the largest global network of mining hotels, providing specialized accommodations for cryptocurrency miners, with its headquarters situated in Hungary.

Construction & Engineering
11-50
Founded 2017
View All Jobs 19

Description

  • Own the configuration, maintenance, and ongoing improvement of security tooling across the organization.
  • Manage DLP, MDM, SIEM, and endpoint protection platforms to ensure coverage, policy enforcement, and current protections.
  • Triage security alerts, investigate incidents, coordinate containment and remediation, and produce post-mortem reports.
  • Build and refine incident response runbooks and playbooks to improve response time and team readiness.
  • Partner with DevOps and Engineering to embed security across cloud infrastructure, Kubernetes workloads, CI/CD pipelines, and network layers.
  • Review IAM policies, secrets management, network segmentation, and access controls to identify and close security gaps.
  • Coordinate internal and external security audits and manage relationships with pentest vendors.
  • Track remediation of audit and penetration testing findings through to closure.
  • Conduct ongoing vulnerability assessments and support compliance activities by maintaining evidence and responding to auditor requests.

Requirements

  • Hands-on experience administering DLP platforms such as Forcepoint, Symantec DLP, Teramind, Nightfall, or similar.
  • Experience administering MDM platforms such as Jamf, Kandji, or Microsoft Intune, including device enrollment, compliance policies, remote wipe, and certificate management.
  • Familiarity with PAM solutions such as CyberArk, HashiCorp Vault, or BeyondTrust, and secrets lifecycle management.
  • Experience with email security tooling, including DMARC/DKIM/SPF configuration and anti-phishing platforms such as Proofpoint or Mimecast.
  • Strong understanding of network security fundamentals, including firewall rule management, IDS/IPS configuration, zero-trust access models, VPN, and ZTNA.
  • Experience with infrastructure-as-code security scanning tools such as Checkov, tfsec, or KICS for Terraform, Helm, and Kubernetes manifests.
  • Knowledge of structured incident response frameworks such as NIST SP 800-61 or PICERL.
  • Basic digital forensics skills, including memory and disk image acquisition, log preservation, chain of custody, and timeline reconstruction.
  • Familiarity with threat intelligence platforms and feeds such as MISP, OpenCTI, VirusTotal, and Shodan for IOC enrichment and correlation.
  • Practical knowledge of the MITRE ATT&CK framework for detection mapping and adversary emulation.
  • Experience with vulnerability scanning and management tools such as Nessus, Qualys, Wiz, or Orca Security, including prioritization and SLA tracking.
  • Ability to coordinate pentests, validate findings, and support remediation tracking through closure.
  • Understanding of web application security fundamentals, including OWASP Top 10 and common API vulnerabilities.
  • Experience in fintech, crypto, or another regulated industry is preferred.
  • Relevant certifications such as OSCP, CEH, GCIA, GCIH, GWAPT, Security+, CISSP, AWS Security Specialty, or CKS are preferred.
  • Experience with compliance frameworks such as SOC 2 Type II, ISO 27001, or PCI DSS is preferred.
  • Exposure to blockchain-specific security considerations, including smart contract audit basics, wallet security, and on-chain threat monitoring, is preferred.
  • Experience operating or hardening Web3-facing infrastructure is preferred.
  • SIEM deployment and tuning experience with Splunk, Elastic SIEM, Microsoft Sentinel, or similar is preferred.
  • Bug bounty program management experience with HackerOne, Bugcrowd, or similar is preferred.

Benefits

  • Learning support including courses, English classes, and conferences with up to 100% reimbursement.
  • Unique loyalty program with corporate digital miners and passive income potential without investment.
  • International retreats and team events, including company apartments in Cyprus.
  • Recognition programs with memorable events, prizes, and an Employee of the Month award.
  • Paid leave of up to 28 vacation days, 8 company holidays, and 5 personal days per year.
  • Career growth tracks with opportunities to move into expert or top management roles.
  • Flexible hours and remote work.
  • A results-focused work culture that emphasizes work-life fit.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
2 hours, 15 minutes ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
2 hours, 30 minutes ago
Dropbox

Senior Infrastructure Security Engineer

Dropbox 1K-5K Internet Software & Services

Dropbox is hiring a Security Engineer to secure its AI and agentic infrastructure while helping protect products and users across cloud and on-prem environments.

Canada Full-time Lead Infrastructure Engineer Security Engineer
$152k-$206k
Bash CI/CD CrowdStrike Go Java Kubernetes Linux LLM Node.js OAuth OpenID Connect OWASP Python Ruby Rust SIEM
2 hours, 30 minutes ago
Fullscript

Staff, Security Engineer

Fullscript 251-1K Health Care Providers & Services

Fullscript is hiring a Staff Security Engineer to lead hands-on security engineering across its healthcare technology platform, shaping secure product development and protecting systems that support practitioners and patients.

United States Canada Full-time Lead Security Engineer
AWS GitHub GitLab GraphQL JavaScript Node.js Penetration Testing Ruby on Rails
3 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers