What you’ll work on:

📍Lead the Security Operations Center team to develop, and support, follow-the-sun incident response capabilities 📍Establish policies and develop procedures for all aspects of security operations, focusing on threat modeling, threat hunting, digital forensics and incident response 📍Recruit and develop team members to support all aspects of security operations 📍Build relationships with peers across the organization to develop effective, cross-departmental investigation and response capabilities 📍As a hands-on, technical leader, build relationships with systems owners to proactively develop and deploy security event detection and incident response technologies 📍As a hands-on, technical leader, respond to security events by collecting artifacts, conducting investigations, containing adversaries, and recovering business capabilities 📍Configure and maintain security monitoring tools such as antivirus or intrusion detection solutions 📍Use tools such as AWS Athena, AWS GuardDuty, AWS Cloudwatch, AWS Lambda, and ELK to record, monitor, and alert on security events. 📍Research and recommend new tools in support of business requirements 📍Escalate and report on incidents in accordance with policy and operational requirements. 📍Conduct forensics analysis on artifacts collected during incident response. 📍Hunt for incidents and identify environment-specific indicators of compromise 📍Model threats specific to the cryptocurrency industry and build detection capabilities specific to Circle’s business 📍Support other security team projects such as threat modeling, vulnerability scanning, and audits. 📍Support the development and enhancement of controls based on incident response and threat hunting. 📍Lead the continuous improvement of the digital forensics and incident response program

You will aspire to our four core values:

📍Multistakeholder - you have dedication and commitment to our customers, shareholders, employees and families and local communities. 📍Mindful - you seek to be respectful, an active listener and to pay attention to detail. 📍Driven by Excellence - you are driven by our mission and our passion for customer success which means you relentlessly pursue excellence, that you do not tolerate mediocrity and you work intensely to achieve your goals. 📍High Integrity - you seek open and honest communication, and you hold yourself to very high moral and ethical standards. You reject manipulation, dishonesty and intolerance.

What you’ll bring to Circle:

📍Enthusiasm for scalable, reproducible security management 📍Proven team building and team leadership experience 📍Deep knowledge of SIEM solutions, threat hunting, incident response, and incident management 📍Strong ability to work collaboratively across teams during high-stress situations 📍Self-motivated and creative problem-solver able to work independently with minimal guidance 📍Ability to manage multiple competing priorities and use good judgment to establish order of priorities on the fly 📍Experience working with standards such as ISO 27001/27002 or the NIST Cybersecurity Framework highly desirable 📍Experience working in financial services or financial technology desired 📍Bachelor's degree in computer science, computer engineering, cybersecurity or related field; equivalent experience also accepted 📍Certifications such as CISSP, CISM, GCFA, GNFA, GCIA, GCIH or similar will receive favorable consideration but are not required 📍13+ years of overall technology experience with a minimum of five years (can be overlapping) with a focus on cybersecurity. 📍7+ years of experience managing others 📍Experience working in an AWS environment required 📍Ability to use Python to automate repetitive tasks