Job Description
Senior Security Engineer
Working location: Hong Kong
Position type: Full-time / Safety and protection direction
Report to: CSO / Safety Officer
[Job Description]
We are seeking a senior security engineer with independent technical capabilities and systemic thinking, responsible for building a security defense system, detecting encrypted traffic, responding to emergencies, and conducting security operations in our company's Web3 payment and cloud-native environment.
This position requires excellent proactive, responsibility, and execution skills, and the ability to independently complete solution design, technical implementation, and cross-departmental collaboration in a rapidly changing technical and business environment.
[Main Responsibilities]
•
Security System Construction: Responsible for building and continuously optimizing production network and cloud environment security detection capabilities, including log collection, threat detection, alarm strategy, visualization analysis and automated response.
•
•
•
Cloud security defense: Build and maintain AWS cloud security policies (VPC security group, GuardDuty, CloudTrail, Security Hub, KMS, etc.), implement access control, log auditing and encryption policies.
•
Security operations and optimization: Maintain security systems (IDS/IPS, NDR, SIEM, EDR, WAF, etc.), and promote detection capabilities and response mechanisms automation.
•
Threat analysis and intelligence fusion: Track the ATT&CK attack matrix, APT activities and vulnerability intelligence, and translate threat indicators into detection rules and countermeasures.
•
Cross-team collaboration: Work closely with R&D, operations, etc. to promote security capabilities in CI/CD and business processes.
•
Documents and reports: Write a safety operations manual, emergency response plan, and regular safety status report, and establish a measurement and evaluation system (MTTR, detection coverage, false positive rate, etc.).
[Job Requirements]
•
Computer science, information security or related professional bachelor's degree or above, with at least 5 years of relevant security technology experience; those with financial technology, payment or Web3 industry experience are preferred.
•
Familiar with at least one programming language (Python, Java, Go, Shell, etc.), you can write detection scripts and automation tools.
•
Proficient in the MITRE ATT&CK framework and mainstream attack methods, with defense and detection thinking.
•
Have solid network security foundation, in-depth understanding of TCP/IP, TLS, proxy forwarding, mirroring traffic, SSL decryption.
•
•
Familiar with AWS cloud platform security architecture and mainstream security products, understand cloud security compliance requirements (PCI-DSS, ISO27001, SOC2, etc.).
•
Have good logical thinking and problem-solving skills, and be able to independently design, verify and implement a safety system in the absence of ready-made solutions.
•
Excellent sense of responsibility and execution ability, able to remain calm and respond quickly under high pressure or sudden circumstances.
•
Have excellent communication and documentation skills, be able to clearly express safety risks and solutions.
•
Have the ability to analyze, reverse or dynamically analyze malicious software samples in Windows/macOS/Linux environments;
•
•
Familiar with Web3 technology stack (wallets, on-chain attack techniques, not involving smart contracts) and blockchain security event response experience;
•
•
Holding CISSP, CISM, OSCP, AWS Security Specialty, etc. professional certifications.
[Personal traits]
•
•
•
Good at learning and self-updating, able to quickly adapt to new technologies (AI detection, traffic analysis, Web3 attack and defense, etc.);
•
Emphasize team collaboration, and be willing to share knowledge and train others.
View more
