CoinDesk is the most trusted media, events, indices and data company for the global crypto economy. Since 2013, CoinDesk Media has led the story of the future of money and investing, illuminating the transformation in society and culture that comes with it. Our award-winning team of journalists delivers news and unparalleled insights that bring transparency, comprehension and context. CoinDesk Events gathers the global crypto, blockchain and Web3 communities at annual events such as Consensus, the world’s largest and longest-running crypto festival. CoinDesk Indices offers expertise in digital asset indices, data and research to educate and empower investors. For more information on CoinDesk media and events, please visithttp://coindesk.com [coindesk.com]and for breaking headlines, data and indices visithttp://coindeskmarkets.com [coindeskmarkets.com]
In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. For more information on Bullish, please visit https://bullish.com . CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence.
Reports to:
Head of Security Engineering
Position Overview
At Bullish, we prioritize innovation and collaboration, creating an environment where your skills and expertise will thrive. We’re looking for a passionate Information Security Manager to build & lead our Security Operations & Incident Response (SOC/IR) team in the US, acting as the primary escalation point for the region and taking on the critical role of Incident Manager. In this pivotal role, you'll be at the forefront of our security operations, working with a talented, global team dedicated to safeguarding our organization and making a real impact in the industry.
This position is based in NYC and will be required to work onsite from our office based near Union Square.
Responsibilities:
- Lead a dedicated team of SOC/IR analysts, fostering a culture of excellence and continuous improvement.
- Serve as the primary escalation point for security incidents, guiding the team through high-stakes situations as the Incident Manager.
- Oversee the day-to-day activities of our SOC, ensuring that we meet our Service Level Objectives and respond effectively to security incidents.
- Monitor and respond to security incidents, conducting thorough containment and forensic investigations to protect our assets.
- Collaborate with global teams across the organization for seamless security incident response and to enhance our overall security posture.
- Identify gaps from incidents and recommend control improvements, ensuring our processes evolve to meet emerging threats.
- Create and maintain incident response playbooks and Standard Operating Procedures (SOPs) that empower our team to act decisively.
- Analyze security event data for proactive threat hunting, leveraging the latest frameworks and tools.
- Organize and participate in Tabletop and Red/Purple team exercises to bolster our incident response readiness.
- Update policies and procedures as necessary to maintain compliance with regulatory requirements.
- Participate in an on-call rota to provide coverage for security events occurring outside of standard business hours
Experience & Qualifications:
- 7+ years of proven experience in Security Operations and Incident Response, with a strong background as an Incident Manager.
- Hands-on experience with SIEM technologies like Splunk and/or Google Chronicle, and familiarity with proactive and reactive threat hunting using MITRE ATT&CK or similar frameworks.
- Understanding of security controls/tools (IDS/IPS, WAF, EDR) and in-depth knowledge of networking protocols, operating systems, and cybersecurity concepts.
- Experience with forensic tools, malware analysis, and familiarity with cloud environments like AWS and GCP will set you apart.
- A BS/BA degree in Cyber Security, Computer Science, or a related field (or equivalent work experience) is desired.
- Relevant certifications such as CISSP, CISM, GCIA, GCIH, or similar are highly advantageous. Additional security certifications from accredited institutions are a plus.
- Excellent verbal and written communication skills with a knack for conveying complex information clearly.
EQUAL OPPORTUNITY
In an effort to attract, retain, develop and promote the most qualified individuals, CoinDesk is committed to treating all applicants and employees in a nondiscriminatory manner with respect to the terms and conditions of employment, without regard to race, color, religion or belief, sex, national or ethnic origin, ancestry, age, marital status, sexual orientation, gender identity, veteran status/service, physical or mental disability, or any other classification protected by applicable law. This mandate governs all aspects of employment, including recruitment, selection, promotion, training, education, social and recreation programs, compensation, discipline, termination and access to benefits.
For more information on our DEI initiatives, please visit:https://www.coindesk.com/dei/.
ACCOMMODATION
CoinDesk is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the application process, please send an e-mail toaccomodations@coindesk.comand let us know the nature of your request.
Please note that only a member of CoinDesk’s Talent Acquisition team will reach out to you directly from an @coindesk.com or @coindesk-indices.com email in regards to any and all opportunities at CoinDesk. Disregard emails from any other addresses or persons. If you’re selected to move onto the next phase of our hiring process, a member of our team will reach out to guide you through our interview process. We look forward to connecting!
