Subscribe to the latest remote jobs:

SOC Engineer (Incident Response)

๐Ÿ‡ฎ๐Ÿ‡ณ India | ๐Ÿ‡ธ๐Ÿ‡ฌ Singapore | ๐Ÿ‡ฏ๐Ÿ‡ต Japan | ๐Ÿ‡น๐Ÿ‡ญ Thailand | ๐Ÿ‡จ๐Ÿ‡ณ China | ๐Ÿ‡ฎ๐Ÿ‡ฉ Indonesia | ๐Ÿ‡ง๐Ÿ‡ฉ Bangladesh | ๐Ÿ‡ฎ๐Ÿ‡ท Iran | ๐Ÿ‡ฏ๐Ÿ‡ด Jordan | ๐Ÿ‡ฐ๐Ÿ‡ฟ Kazakhstan | ๐Ÿ‡ฒ๐Ÿ‡พ Malaysia | ๐Ÿ‡ณ๐Ÿ‡ต Nepal | ๐Ÿ‡ต๐Ÿ‡ฐ Pakistan | ๐Ÿ‡ต๐Ÿ‡ญ Philippines | ๐Ÿ‡ฐ๐Ÿ‡ท South Korea | ๐Ÿ‡ฑ๐Ÿ‡ฐ Sri Lanka | ๐Ÿ‡น๐Ÿ‡ผ Taiwan | ๐Ÿ‡น๐Ÿ‡ท Turkey | ๐Ÿ‡ป๐Ÿ‡ณ Vietnam | ๐Ÿ‡ฑ๐Ÿ‡ง Lebanon | ๐Ÿ‡ฒ๐Ÿ‡ฒ Myanmar | ๐Ÿ‡ฑ๐Ÿ‡ฆ Laos | ๐Ÿ‡พ๐Ÿ‡ช Yemen | ๐Ÿ‡ฒ๐Ÿ‡ป Maldives | ๐Ÿ‡ด๐Ÿ‡ฒ Oman

Swift

Finance

Machine Learning

Design

Blockchain

Security Engineer

SOC Engineer (Incident Response)

from ๐Ÿ‡ฎ๐Ÿ‡ณ India | ๐Ÿ‡ธ๐Ÿ‡ฌ Singapore | ๐Ÿ‡ฏ๐Ÿ‡ต Japan | ๐Ÿ‡น๐Ÿ‡ญ Thailand | ๐Ÿ‡จ๐Ÿ‡ณ China | ๐Ÿ‡ฎ๐Ÿ‡ฉ Indonesia | ๐Ÿ‡ง๐Ÿ‡ฉ Bangladesh | ๐Ÿ‡ฎ๐Ÿ‡ท Iran | ๐Ÿ‡ฏ๐Ÿ‡ด Jordan | ๐Ÿ‡ฐ๐Ÿ‡ฟ Kazakhstan | ๐Ÿ‡ฒ๐Ÿ‡พ Malaysia | ๐Ÿ‡ณ๐Ÿ‡ต Nepal | ๐Ÿ‡ต๐Ÿ‡ฐ Pakistan | ๐Ÿ‡ต๐Ÿ‡ญ Philippines | ๐Ÿ‡ฐ๐Ÿ‡ท South Korea | ๐Ÿ‡ฑ๐Ÿ‡ฐ Sri Lanka | ๐Ÿ‡น๐Ÿ‡ผ Taiwan | ๐Ÿ‡น๐Ÿ‡ท Turkey | ๐Ÿ‡ป๐Ÿ‡ณ Vietnam | ๐Ÿ‡ฑ๐Ÿ‡ง Lebanon | ๐Ÿ‡ฒ๐Ÿ‡ฒ Myanmar | ๐Ÿ‡ฑ๐Ÿ‡ฆ Laos | ๐Ÿ‡พ๐Ÿ‡ช Yemen | ๐Ÿ‡ฒ๐Ÿ‡ป Maldives | ๐Ÿ‡ด๐Ÿ‡ฒ Oman

Binance is a leading global blockchain ecosystem behind the worldโ€™s largest cryptocurrency exchange by trading volume and registered users. We are trusted by 300+ million people in 100+ countries for our industry-leading security, user fund transparency, trading engine speed, deep liquidity, and an unmatched portfolio of digital-asset products. Binance offerings range from trading and finance to education, research, payments, institutional services, Web3 features, and more. We leverage the power of digital assets and blockchain to build an inclusive financial ecosystem to advance the freedom of money and improve financial access for people around the world.

Weโ€™re looking for a security engineer with hands-on experience in Data Loss Prevention (DLP) and incident response, ideally within fintech, crypto, or high-security environments. The role goes beyond using commercial tools youโ€™ll also design and build custom solutions, leverage automation, and adapt to emerging threats, including those driven by recent LLM/AI advancements.

Responsibilities

  • Design, deploy, and optimize DLP solutions across network, endpoint, and cloud.
  • Build and refine data classification schemes for sensitive assets (wallets, trading algorithms, customer PII).
  • Configure DLP policies to prevent data exfiltration while minimizing false positives.
  • Monitor, analyze, and tune alerts and incidents for continuous improvement.
  • Lead investigations of DLP incidents and insider threats,ย 
  • Conduct threat hunting and forensic analysis of data exfiltration attempts.
  • Integrate DLP monitoring into broader SOC workflows and incident response playbooks.
  • Build custom DLP tools and integrations (e.g., macOS Swift endpoint protection, Unix socket monitoring).
  • Develop automation scripts, APIs, regexes and integrations to enhance detection and response.
  • Explore AI/LLM-driven methods for anomaly detection and response efficiency.
  • Ensure controls align with crypto and financial regulations (AML, KYC, GDPR, CCPA).
  • Support audits and regulatory reviews related to data protection.
  • Assess and mitigate data loss risks across trading platforms, onboarding systems, and blockchain infrastructure.

Requirements

  • 4+ years in a SOC or security operations role with incident response focus.
  • Proven experience with DLP design, deployment, and monitoring.
  • Strong programming skills (macOS Swift, Unix socket programming, scripting).
  • Hands-on threat hunting, forensic analysis, and APT detection experience.
  • Familiarity with SIEM, EDR, and cloud security architectures.
  • Knowledge of encryption, tokenization, and data classification methods.

Nice-to-have

  • 4+ years in a SOC or security operations role with incident response focus.
  • Proven experience with DLP design, deployment, and monitoring.
  • Strong programming skills (macOS Swift, Unix socket programming, scripting).
  • Hands-on threat hunting, forensic analysis, and APT detection experience.
  • Familiarity with SIEM, EDR, and cloud security architectures.
  • Knowledge of encryption, tokenization, and data classification methods.
Why Binance
โ€ข Shape the future with the worldโ€™s leading blockchain ecosystem
โ€ข Collaborate with world-class talent in a user-centric global organization with a flat structure
โ€ข Tackle unique, fast-paced projects with autonomy in an innovative environment
โ€ข Thrive in a results-driven workplace with opportunities for career growth and continuous learning
โ€ข Competitive salary and company benefits
โ€ข Work-from-home arrangement (the arrangement may vary depending on the work nature of the business team)

Binance is committed to being an equal opportunity employer. We believe that having a diverse workforce is fundamental to our success.
By submitting a job application, you confirm that you have read and agree to ourCandidate Privacy Notice.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
apply for this job
by @maxrusakovic