Senior SOC Engineer

Coins.ph

full-time

Posted on: 9/28/2025

Location Type: Hybrid

Location: Shenzhen • 🇨🇳 China

Visit company website

✨ AI Apply

Apply

Job Level

Senior

Tech Stack

AWSAzureCloudGoogle Cloud PlatformPythonSplunk

About the role

Lead security monitoring operations for cryptocurrency exchange infrastructure, trading platforms, and digital wallet systems
Oversee real-time analysis of security events, alerts, and anomalies across blockchain networks, trading engines, and customer-facing applications
Coordinate incident response activities for security breaches, suspicious trading activities, and potential fraud attempts
Manage and optimize SIEM platforms, security orchestration tools, and automated response systems
Develop and maintain security playbooks specific to cryptocurrency exchange operations and digital asset protection
Monitor dark web marketplaces, criminal forums, and threat actor communications for indicators targeting cryptocurrency businesses
Conduct tactical, operational, and strategic threat assessments specific to digital asset platforms
Develop threat intelligence feeds and indicators of compromise (IoCs) relevant to cryptocurrency security
Design and implement comprehensive insider threat detection programs tailored to cryptocurrency exchange environments
Lead incident response efforts for security breaches, fund theft attempts, and system compromises
Conduct digital forensics investigations on cryptocurrency-related security incidents
Coordinate with law enforcement, regulatory bodies, and external security firms during major incidents
Create post-incident reports and recommendations for security improvements

Requirements

Minimum 5+ years in SOC operations, preferably in financial services or cryptocurrency exchanges
Certifications: CISSP, GCIH, GCFA, GNFA, GCTI, CEH, or equivalent security certifications required
Advanced proficiency with SIEM platforms (Sumo Logic, Splunk, QRadar, Sentinel, etc.)
Experience with threat intelligence platforms (MISP, ThreatConnect, Anomali) and frameworks (MITRE ATT&CK, Diamond Model)
Proficiency in Python, PowerShell, or similar languages for automation and analysis
Experience securing cloud infrastructure (AWS, Azure, GCP) and container environments
Experience with insider threat analysis tools and methodologies (Securonix, Exabeam, Splunk UBA, Microsoft Sentinel UEBA)
Background in behavioral analytics, user activity monitoring, and privileged access management
Experience conducting digital forensics investigations and incident response
Experience monitoring dark web marketplaces and conducting threat actor analysis

Benefits

Meaningful Collaborations - The successful candidate will work cross-functionally with other relevant teams to carry out implementations that will improve and create an impact on customer experience.
Scalable Growth - Be part of a fast-growing organization with the vision to expand its territories outside APAC which will provide opportunities for career advancement.
A Space For Bright Ideas - Let your bright ideas be converted into meaningful changes! Coins culture welcomes new ideas backed up by data to create an impact.

ATS Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills

security monitoring operationsincident responsedigital forensicsthreat intelligenceautomationbehavioral analyticsuser activity monitoringprivileged access managementcloud infrastructure securityinsider threat analysis

Soft skills

leadershipcommunicationcoordinationanalytical thinkingproblem-solving

Certifications

CISSPGCIHGCFAGNFAGCTICEH

Senior SOC Engineer

Job Level

Tech Stack

About the role

Requirements

ATS Keywords

Hard skills

Soft skills

Certifications

Similar jobs on JobTailor

Senior Cybersecurity Engineer

Security Engineer – Detection and Response

Incident Response Engineer

Senior Security Operations Engineer

Cyber Security Analyst