MoonPay

Principal SecOps Engineer

MoonPay

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇰🇷 South Korea

Visit company website
AI Apply
Apply

Job Level

Lead

Tech Stack

CloudCyber Security

About the role

  • Serve as the primary incident commander, overseeing the full lifecycle of security incidents — from detection and triage through containment, eradication, and recovery. Lead cross-functional response teams, perform root cause analyses, and implement long-term corrective actions to enhance organizational resilience.
  • Architect, manage, and continually refine the Google SecOps platform to enable scalable, automated detection and response. Develop and maintain advanced detection logic (e.g., YARA rules), custom parsers, and data ingestion pipelines across diverse log sources. Continuously tune detections to reduce false positives and improve signal fidelity.
  • Provide ownership for the operational excellence of the company’s core security stack, including CrowdStrike, Google SecOps, Area1, Cloudflare WARP, and Code42. Drive platform integrations, optimize configurations, and ensure these technologies operate cohesively to defend against emerging threats and align with security strategy.
  • Champion a culture of security across the organization by delivering engaging awareness programs, tabletop exercises, and executive briefings. Empower employees to recognize and respond to threats effectively, reinforcing security as a shared responsibility.
  • Lead the identification, prioritization, and remediation of vulnerabilities across endpoints, cloud, and SaaS environments. Partner with engineering and IT teams to ensure timely patching, configuration hardening, and validation of remediation effectiveness.
  • Oversee the evaluation of vendor and partner security posture throughout the procurement lifecycle. Define and enforce third-party risk management standards, ensuring external entities meet the company’s security and compliance expectations.
  • Act as a key contributor and technical advisor in enterprise-level security projects. Provide expert input on the design and deployment of new tools, architectures, and workflows that enhance the organization’s detection and response capabilities.
  • Develop, maintain, and continuously improve operational documentation, including playbooks, runbooks, escalation paths, and policy frameworks. Ensure processes are standardized, auditable, and aligned with industry best practices and compliance requirements.

Requirements

  • Minimum of 5-7 years in security operations.
  • Focus on incident management, SIEM, DLP, threat intelligence, VPN, and email security.
  • Previous interaction with in country regulators
  • Security Frameworks:
  • Experience with frameworks such as ISO 27001, SOC 2, and PCI-DSS.
  • Responsible for defining and implementing key security controls.
  • Cybersecurity Principles
  • Strong understanding of cybersecurity principles and best practices
  • Analytical Skills:
  • Excellent analytical and problem-solving abilities.
  • Crisis Management:
  • Ability to work effectively under pressure.
  • Capable of handling multiple incidents simultaneously.
  • Communication:
  • Strong communication and interpersonal skills to collaborate with various teams
  • Multi-lingual is required for speaking with regulators in country as well as collaborating with the internal team
  • Bonus Qualifications
  • Certifications:
  • CISSP, CISM, or equivalent certifications are a plus.
  • Technical Proficiency
  • Proven experience with tools such as:
  • Google SecOps
  • Crowdstrike
  • Cloudflare
  • Code42
  • ZeroFox
  • Okta
  • Google Workspace
  • Jira
Benefits
  • 💰Competitive salary package
  • 🤝 Equity package: We believe financial freedom starts with our employees, so all employees have ownership at MoonPay
  • 📈 Pay for performance equity bonus: Those who drive outsized outcomes receive outsized rewards
  • 🏝 Generous holidays: We give you the autonomy to choose when to work (and when to switch off)
  • 🌍 Hybrid working schedule: Work fully remotely or your nearest Moonbase, the choice is yours
  • ✈️ Regular remote company offsites: Meet your colleagues regularly for high impact in person sessions and hackathons
  • 🚀 Working in a disruptive and fast-growing company where excellence is rewarded

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
incident managementSIEMDLPthreat intelligenceVPNemail securitycybersecurity principlesanalytical skillscrisis managementsecurity controls
Soft skills
problem-solvingcommunicationinterpersonal skillscollaborationability to work under pressuremulti-lingual
Certifications
CISSPCISM