RemoteLeaf Logo
Log in Sign up

Detection & Response Engineer

2 hours, 15 minutes ago
Anywhere
Full-time
Senior
Security Engineer
DevOps and Infrastructure
AWS Azure Blockchain Elasticsearch GCP Go Kubernetes Machine Learning Python Rust Secrets Management SIEM Splunk
Apply Now
Law360

Law360

Law360 is a premier online media company offering in-depth legal news and analysis on litigation, policy, and deals, serving as a vital resource for legal professionals globally.

Media
251-1K
Founded 2004
View All Jobs 7

Description

  • Design, build, and continuously tune detection pipelines for cloud, container, and blockchain telemetry.
  • Maintain real-time monitoring using SIEM/XDR platforms and integrate blockchain-specific monitoring tools with cloud-native telemetry.
  • Build SOAR workflows, automated containment playbooks, and on-chain transaction guardrails for suspicious smart-contract activity.
  • Lead the full incident response lifecycle, including triage, containment, eradication, recovery, and post-incident reviews.
  • Conduct blockchain forensics, smart contract incident analysis, and web2 security investigations.
  • Proactively threat hunt across multiple telemetry sources and help simulate attack scenarios through purple teaming.
  • Partner with DevOps, Backend, and Smart Contract teams to embed detection logic into deployment pipelines.
  • Perform security design reviews for new features, including application logic and blockchain protocol risks.
  • Promote secure-by-default engineering practices across both Web2 and Web3 systems.

Requirements

  • 5+ years of combined experience in Security Operations, Incident Response, or SRE with a strong DevSecOps mindset.
  • Strong understanding of cloud-native infrastructure such as AWS, GCP, or Azure, and containerized environments such as Kubernetes or ECS.
  • Proven experience managing modern detection stacks such as Elastic, Splunk, Panther, or Chronicle, including IaC-driven deployments.
  • Hands-on experience with Kubernetes and container security controls such as admission policies, runtime hardening, image scanning, and network policies.
  • Proficiency in at least one production-grade programming language such as Python, Go, or Rust, with experience building automated security tooling.
  • SOAR platform integration experience with the ability to turn log data into automated containment actions.
  • Familiarity with blockchain-specific security monitoring tools and workflows.
  • Understanding of DeFi attack vectors such as flash-loan exploits, cross-chain bridge attacks, MEV, governance exploits, and protocol-level vulnerabilities.
  • Working knowledge of Solidity, smart-contract testing frameworks such as Foundry or Hardhat, and secure development patterns.
  • Familiarity with MITRE ATT&CK, threat modeling methodologies, and purple-team collaboration frameworks.
  • Experience implementing zero-trust architectures, modern identity and access management, and secrets management best practices.
  • Preferred: experience in digital asset custody security, wallet infrastructure, and multi-sig or threshold signature systems.
  • Preferred: experience with anomaly detection or ML-based detection systems in a security context.

Benefits

  • Medical, dental, and vision coverage for employees.
  • Health coverage support for international contractors.
  • Flexible time off with no vacation tracking.
  • Remote-first, async work environment with autonomy over micromanagement.
  • Paid parental leave for new parents, including primary and secondary caregivers.
  • Learning and development stipends for courses, conferences, and other growth opportunities.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Anchorage Digital

Engineering Lead, Security Operations

Anchorage Digital 251-1K Capital Markets

Anchorage Digital is seeking an Engineering Lead for Security Operations to guide a distributed security engineering team, strengthen operational excellence, and shape the company’s security roadmap for its institutional digital asset platform.

United States Full-time Lead Security Engineer
Bash Go Network Security OWASP Python SIEM
0 minutes ago
Zimperium

Detection Researcher (Coding Focused)

Zimperium 251-1K Professional Services

Zimperium is hiring a remote Detection Researcher to research and develop advanced mobile threat detection capabilities that counter tampering, evasion, and other attacks against its enterprise mobile security products.

United Kingdom Latvia Netherlands Romania Spain Argentina Full-time Senior Research Scientist Security Engineer
C C++ Java Penetration Testing Python
15 minutes ago
CertiK

Blockchain Security Engineer - (Solidity / Rust / Golang)

CertiK

CertiK is hiring a Junior Blockchain Security Engineer to support Web3 clients by auditing smart contracts and decentralized systems, contributing to security tooling, and researching vulnerabilities in blockchain infrastructure.

United States Full-time Junior Blockchain Developer Security Engineer
$102k-$180k
Blockchain Cybersecurity Encryption Go Python Rust Solana
45 minutes ago
ghSMART

Director, Information Security and Technology.

ghSMART 51-250 Professional Services

ghSMART is seeking a Director of Information Security and Technology to lead enterprise security, IT operations, and infrastructure for a fully remote firm serving global leadership clients.

United States Full-time Executive Infrastructure Engineer Security Engineer
$180k-$190k
Azure Cybersecurity
1 hour ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers