Paxos logo
Paxos

Paxos is a regulated blockchain infrastructure company building transparent and transformative financial solutions.

Security Operations Engineer

Security OperationsSecurity OperationsFull TimeRemoteSeniorTeam 201-500Since 2012H1B SponsorCompany SiteLinkedIn

Location

United States

Posted

1 day ago

Salary

$169K - $194.0K / year

Seniority

Senior

Bachelor Degree3 yrs expEnglishCloud

Job Description

Security Operations Engineer

Paxos

• Triage, investigate, and respond to security alerts across endpoints, cloud infrastructure, and network telemetry. • Take a builder’s mindset to the role by automating repetitive workflows and using AI to increase speed, scale, and effectiveness. • Execute containment and remediation actions for confirmed incidents, while following and continuously improving established runbooks. • Tune and maintain SIEM and EDR detections to reduce false positives, strengthen signal quality, and close coverage gaps. • Apply threat intelligence, including IOCs and TTPs, to active investigations and ongoing monitoring. • Participate in the on-call rotation and contribute clear, actionable post-incident documentation.

Job Requirements

  • 3+ years of experience in security operations, detection and response, or a related security engineering role.
  • Experience investigating and responding to security threats across endpoints, cloud environments, and network telemetry.
  • Strong analytical judgment and a calm, methodical approach to triaging alerts and driving incidents through resolution.
  • Hands-on experience with SIEM and EDR platforms, including tuning detections to improve signal quality and reduce false positives.
  • Think like a builder and look for opportunities to automate repetitive work, including using AI to improve speed and scale.
  • Comfortable applying threat intelligence, including IOCs and TTPs, to investigations and proactive monitoring.
  • Prepared to participate in an on-call rotation and can document incidents clearly and effectively to support continuous improvement.

Benefits

  • Paxos offers a competitive total compensation and benefits package, including equity and bonuses based on both your individual performance and company performance. Eligibility for bonuses is dependent on job level and actual salary within the range depends on your skills, experience, and qualifications.

Related Categories

Related Job Pages

More Security Operations Jobs

Incident Response Team Leader

Check Point Software Technologies

As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative, and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers’ real-time needs and providing our cutting-edge technologies and services to an ever-growing customer base. Check Point Software Technologies has been honored by Time Magazine as one of the World’s Best Companies and Newsweek’s list of Americas Best Cybersecurity Companies. We've also earned a spot on the Forbes list of the World’s Best Places to Work for five consecutive years and recognized as one of the World’s Top Female-Friendly Companies. If you're passionate about making the world a safer place and want to be part of an award-winning company culture, we invite you to join us.

Role Description - Lead and mentor a team of Incident Response analysts during active security incidents - Serve as the primary customer-facing lead during investigations and crisis situations - Coordinate incident triage, containment, eradication, and recovery efforts - Deliver executive-level communications, incident briefings, and post-incident reporting - Drive operational readiness, process improvement, and collaboration across security teams Qualifications - 5+ years of experience in Incident Response, or DFIR - Strong knowledge of ransomware, cloud, identity, and enterprise attack investigations - Excellent customer-facing communication and stakeholder management skills - Experience leading remote teams in high-pressure environments - Proficient with EDR, SIEM, threat intelligence, and forensic investigation tools - GIAC, GCFA, GCIH, CISSP, or similar certifications Requirements - Fluent in English - Experience in consulting or managed security services environments - Must be eligible to work in the US without sponsorship from an employer now or in the future Benefits - EOE M/F/Veterans/Disabled Company Description As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative, and innovative people. At Check Point, our employees are redefining the security landscape by meeting our customers’ real-time needs and providing our cutting-edge technologies and services to an ever-growing customer base. Check Point Software Technologies has been honored by Time Magazine as one of the World’s Best Companies and Newsweek’s list of Americas Best Cybersecurity Companies. We've also earned a spot on the Forbes list of the World’s Best Places to Work for five consecutive years and recognized as one of the World’s Top Female-Friendly Companies. If you're passionate about making the world a safer place and want to be part of an award-winning company culture, we invite you to join us.

United States
GuidePoint Security logo

Presales Security Architect – SecOps

GuidePoint Security

We help organizations make smarter cybersecurity decisions that minimize risk.

Full TimeRemoteTeam 201-500H1B Sponsor

• Lead technical discovery calls and translate customer requirements into high-level solution designs • Speak credibly about product capabilities, integrations, and architectural trade-offs (e.g., Splunk, Sentinel, CrowdStrike Next-Gen SIEM, Tines, Torque, Snowflake) • Draw integration diagrams, validate technical feasibility, and position GuidePoint's differentiated capabilities • Support account executives in pre-sales engagements, ensuring technical alignment before formal scoping • Stay current on security operations trends, emerging platforms, and competitive positioning • Collaborate with delivery architects to ensure smooth transitions from sales to implementation • Embraces emerging technologies, including AI tools, to work smarter, solve problems, and drive better business outcomes

Maine + 1 moreAll locations: Maine | New Jersey
Twilio logo

Security Engineer, Incident Response

Twilio

Twilio is a Platform-as-a-Service (PaaS) company established in 2007. In support of a flexible workplace, Twilio has previously posted freelance, flexible sched

• Lead and support the response to all security events and incidents across Twilio’s complex global infrastructure, services and applications. • Be responsible for documentation of incidents and projects you work on and craft best practices as runbooks and standard operating procedures to share knowledge across teams. • Work cross-collaboratively to understand and help solve challenges related to a broad spectrum of threat actors and activity. • Work to improve Twilio’s security and reliability posture by driving identified betterments from security events and incidents. • Rapidly acquire new technical skills and knowledge in a fast-paced, highly disruptive industry environment. • Own the security incident lifecycle, respond to incidents and participate in on-call rotation and participate in RCAs for security incidents. • Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team’s work. • Provide mentorship, support, and care for the team in a way that enables long-term career development, happiness, and success at scale.

United Kingdom
GitLab logo

Senior Security Engineer, Security Incident Response Team

GitLab

Build software faster. The One DevOps Platform enables your entire org to collaborate around your code. We're hiring.

Full TimeRemoteTeam 1,001-5,000Since 2014H1B No Sponsor

• Lead and coordinate end-to-end incident response for high-severity security events within a 24/7 global on-call model, with this role operating during EMEA business hours • Prepare clear executive communications that keep stakeholders informed during incidents • Investigate complex security incidents across cloud environments, applying strong Digital Forensics and Incident Response (DFIR) methodologies • Partnering with Signals Engineering to design and implement detection capabilities, including SIEM use cases, alerting strategies, and telemetry pipelines • Build and enhance automation and AI-assisted workflows to improve triage, investigation speed, and response consistency • Partner with Threat Intelligence to contextualize threats and improve detection coverage • Conduct root cause analysis (RCA) and lead post-incident reviews to drive continuous improvement and risk reduction • Develop and maintain runbooks, playbooks, and operational documentation • Collaborate cross-functionally (Engineering, Infrastructure, Legal, Product, Communications, etc) during incidents and lead proactive initiatives (e.g. tabletops) • Mentor other engineers and help elevate the team’s overall incident response maturity

Europe