Senior Security Engineer (Insider Threat)
Remote (USA)
About the Company
Gemini is a global crypto and Web3 platform founded by Tyler Winklevoss and Cameron Winklevoss in 2014. Gemini offers a wide range of crypto products and services for individuals and institutions in over 70 countries.
Crypto is about giving you greater choice, independence, and opportunity. We are here to help you on your journey. We build crypto products that are simple, elegant, and secure. Whether you are an individual or an institution, we help you buy, sell, and store your bitcoin and cryptocurrency.
At Gemini, our mission is to unlock the next era of financial, creative, and personal freedom.
In the United States, we have a flexible hybrid work policy for employees who live within 30 miles of our office headquartered in New York City and our office in Seattle. Employees within the New York and Seattle metropolitan areas are expected to work from the designated office twice a week, unless there is a job-specific requirement to be in the office every workday. Employees outside of these areas are considered part of our remote-first workforce. We believe our hybrid approach for those near our NYC and Seattle offices increases productivity through more in-person collaboration where possible.
The Department: Threat Detection & Response
The Role: Senior Security Engineer (Insider Threat)
We are seeking a highly skilled Forensic / Insider Threat Specialist with expertise in Mac Forensics. You will play a pivotal role in identifying, investigating, and mitigating insider threats, while conducting comprehensive digital forensic investigations primarily on macOS systems.
Responsibilities:
- Insider Threat Monitoring: Proactively identify and assess potential insider threats, such as unauthorized access, data exfiltration, and policy violations.
- Macos Forensic Investigations: Lead forensic investigations on macOS, conducting in-depth analysis of file systems, memory, logs, and applications to uncover malicious activities, insider threats, and security incidents.
- Incident Response: Collaborate with the Incident Response team to investigate breaches, perform forensic analysis, and recommend remediation strategies specific to macOS platforms.
- Digital Evidence Handling: Meticulously collect, preserve, and analyze digital evidence adhering to chain-of-custody protocols.
- Threat Hunting and Detection: Proactively hunt for malicious insider activity using advanced tools and techniques to detect early indicators of compromise or suspicious behavior.
- Reporting & Documentation: Produce detailed forensic reports, including timelines, attack vectors, and attribution. Meticulously document case summaries, methodologies, and remediation steps.
- Collaboration: Work closely with IT, …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Must work in-office twice a week if within 30 miles of NYC or Seattle
Benefits/PerksAnnual bonus Competitive starting salary Comprehensive health plans Discretionary annual bonus Equity grant Flexible hybrid work policy Flexible time off Health plans Hybrid work In-person collaboration In-person collaboration opportunities Long-term incentive Paid parental leave Remote-first workforce
Tasks- Collaborate on incident response
- Collaborate with stakeholders
- Documentation
- Identify insider threats
Architecture Bash Collaboration Compliance Crypto Cryptocurrency Data Loss Prevention Digital Forensics Documentation EDR Education Endpoint detection and response Incident Response Information security Investigations Legal Malware Analysis Monitoring Networking Networking concepts Python Reporting Scripting Security Security information and event management SIEM Threat Hunting Threat Intelligence User and Entity Behavior Analytics Web3 Workday
Experience3 years
EducationB.S. in Computer Science Computer Science Related Field
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9