Security Operations Tech Lead

Fireblocks
Singapore, SG
On-site

Who this role is best for

Aimed at senior security professionals who thrive in a global, fast-paced environment and have hands-on experience in incident response and cloud security.

Best fit for

  • Senior security experts with deep incident response and cloud security experience.
    — “5+ years experience working in an Incident Response/Cyber Security Operations Center
  • Leaders who can mentor teams and drive SecOps projects from inception.
    — “Lead SecOps projects from inception to execution, ensuring effective implementation
  • Technologists comfortable with coding and automating security operations.
    — “Strong development fundamentals with experience delivering and maintaining production-grade code

Things to consider

  • Role involves 24/7 incident management in a global production environment.
    — “Extensive experience in managing the lifecycle of security incidents in a global, 24/7 production environment
  • Expect cross-functional collaboration with various stakeholders for incident response.
    — “Collaborating with various cross-organizational stakeholders to drive incident response

How to stand out

  • Showcase specific examples of automating security workflows in past roles.
    — “Work cross-functionally to refine and evolve agentic workflows that drive automated security operations
  • Highlight hands-on forensic investigations and root-cause analysis experience.
    — “Perform hands-on forensic investigations, log reviews, cloud investigations, and root-cause analysis
  • Demonstrate expertise in cloud and SaaS attack mitigation methods.
    — “Proven expertise in attack and mitigation methods within Cloud and SaaS environments
Pace · Fast PacedCollaboration · HighAutonomy · HighDecision Impact · TeamLevel · Senior

Derived from job-description analysis by Serendipath's career intelligence engine.

What success looks like

  • leading SecOps projects
  • performing deep-dive DFIR investigations
Typical background
5+ years experience in Incident Response/Cyber Security Operations Center

Skills & requirements

Required

Incident ResponseSecurity OperationsAutomation

Preferred

PythonBash

Stack & domain

Incident ResponseCyber Security Operations CenterSecurity TelemetrySecurity SolutionsSecurity ControlsHost-based ForensicsOs ArtifactsPythonBashCloud And Saas EnvironmentsLlm ConceptsArchitecturesCollaborationProblem-solvingCommunicationTeamworkLeadershipSecurity OperationsForensic InvestigationsLog ReviewsCloud InvestigationsRoot-cause Analysis

About the role

Original posting from Fireblocks

The world of digital assets is accelerating in speed, magnitude, and complexity, opening the door to new ways for leveraging the blockchain. Fireblocks’ platform and network provide the simplest and most secure way for companies to work with digital assets and it trusted by some of the largest financial institutions, banks, globally-recognized brands, and Web3 companies in the world, including BNY Mellon, BNP Paribas, ANZ Bank, Revolut, and thousands more. 

The world of digital assets is accelerating in speed, magnitude, and complexity, opening the door to new ways for leveraging the blockchain. Fireblocks’ platform and network provide the simplest and most secure way for companies to work with digital assets and it trusted by some of the largest financial institutions, banks, globally-recognized brands, and Web3 companies in the world, including BNY Mellon, BNP Paribas, ANZ Bank, Revolut, and thousands more. 

The Security & Information team is looking for someone who is passionate about technology and has a roll-up-their-sleeves mentality to join our global team. You’ll play a crucial role in enhancing our security infrastructure, improving networking, ensuring scalability, and maintaining strong security as we continue to grow. If you want to be an industry leader, on a team experiencing hyper-growth, look no further! 

Responsibilities 

Operates as the primary escalation point for critical security alerts, performing deep-dive DFIR investigations, analyzing attacker techniques and vectors, proactively hunting threats, and directing incident response activities.

Lead SecOps projects from inception to execution, ensuring effective implementation and ongoing maintenance.

Mentor a team of SecOps experts, providing technical guidance in a fast-paced environment.

Research how to leverage security telemetry and existing security solutions to improve triage and automated response.

Work cross-functionally to refine and evolve agentic workflows that drive automated security operations.

Coordinate investigation, containment, and other response activities with business stakeholders and groups.

Perform hands-on forensic investigations, log reviews, cloud investigations, and root-cause analysis

Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement.

Minimum Requirements 

5+ years experience working in an Incident Response/Cyber Security Operations Center (in-house or outsourced) addressing, escalating, and managing security incidents and creating incident reports.

Extensive experience in managing the lifecycle of security incidents in a global, 24/7 production environment..

Collaborating with various cross-organizational stakeholders to drive incident response and remediation.

Development of common runbooks for most frequent or critical incident types.

Strong development fundamentals with experience delivering and maintaining production-grade code.

Coding & Scripting: Hands-on programming experience (Python, Bash, etc.) with proven ability to build automation processes.

Proven expertise in attack and mitigation methods within Cloud and SaaS environments 

Solid understanding of system and security controls on at least two OSs (Windows, Linux / Unix, and MacOS (Advantage), including host-based forensics and experience with analyzing OS artifacts.

Problem solver, an in-depth thinker with a growth mindset.

Excellent communication skills and ability to work collaboratively with other teams 

Preferred Qualifications

Bachelor's degree in Computer Science, Information Technology, or related field

Solid understanding of LLM concepts and architectures, with hands-on experience applying them in practice.

Fireblocks' mission is to enable every business to easily and securely access digital assets and cryptocurrencies. In order to do that, we strongly believe our workforce should be as diverse as our clients, and this is why we embrace diversity and inclusion in all its forms. 

Please see our candidate privacy policy here.

Source: Fireblocks careers

Similar roles