Information Security Engineer - Cryptocurrency Trading - Singapore
Singapore
GSR
GSR is the global leader in crypto trading and market-making. We specialize in providing liquidity, trading and risk management solutions.We are looking for an experienced Security Engineer to join our global and highly specialist Information Technology team. You will be instrumental in maintaining a corporate-wide information security program and controls to ensure that information assets are adequately protected. You will also act as an advisor to the various business units.
This position requires strong knowledge of security concepts, tools (anti-virus, IPS) and programs (vulnerability management, incident management, identity & access management, data loss prevention). Your contribution will be fundamental to shape the firm's IT security ecosystem.
Responsibilities:
- Work with IT leadership and business stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security program.
- Manages the process of gathering, and analyzing the current and future threat landscape.
- Performs control and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls, and recommends remedial action.
- Coordinate the Security Event Information Management, log analysis (i.e. Splunk, or similar), application whitelisting and malware analysis, quarantine and eradications.
- Manage and coordinate operational components of incident management, including detection, response and reporting.
- Collaborate with our engineering, DevOps, IT teams and also help design, build, test, and implement information security technologies and infrastructure.
- Provide technical support for the establishment, and implementation, of end-to-end security solutions utilizing new technologies.
Some deliverables are:
- Help develop solutions to tackle security challenges to protect employee and consumer data.
- Develop and validate baseline security configurations for operating systems, applications, networking and telecommunications equipment.
- Ensure corporate standards are properly communicated to technology units, business partners and customer teams.
- Assist in the design and oversight of security testing procedures to verify the security of systems, networks and applications, and manage the remediation of identified risks.
- Maintain a knowledge base comprising a technical reference library, security advisories and alerts, information on security trends and practices, and laws and regulations.
- Perform day-to-day activities for threat and vulnerability management, identify risks, and identify possible treatment plans.
- Provides technical expertise for vulnerability management, patch management, and security baselines.
Your Profile:
- Minimum – Three years relevant experience.
- At least 1 certification among: GSEC, MCSA, GCIH, ENSA, GCED, ENSA.
- Desire to automate existing processes using modern scripting language or automation tools.
- Incident response & security investigation experience.
- Extensive knowledge and experience with technical security controls and vulnerabilities including IPS, anti-virus, vulnerability scanners, firewalls, and other security devices.
- Pen-testing, red team, blue team, and CTF experience.
GSR works with token issuers, traders, investors, miners, and more than 50 cryptocurrency exchanges around the world. As a founding member of The Association for Digital Asset Markets (ADAM), GSR is also a leader in establishing and maintaining industry standards and protocols to support the healthy development and evolution of the global digital assets serving key exchanges and clients globally. GSR is an international company with operations in the USA, Europe and Asia.
GSR is proudly an Equal Employment Opportunity employer. We do not discriminate based upon any applicable legally protected characteristics such as race, religion, colour, country of origin, sexual orientation, gender, gender identity, gender expression or age. We operate a meritocracy, all aspects of people engagement from the decision to hire or promote as well as our performance management process will be based on the business needs and individual merit, competence in the role.
Learn more about us at www.gsr.io.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Blue team Crypto CTF DevOps Finance Firewalls GCED GCIH GSEC Incident response IPS Log analysis Malware Red team Risk management Scripting Splunk Vulnerabilities Vulnerability management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open IPS-related jobs