Senior SOC Engineer

Full Time

full time

28 Sep 2025

Taguig City, Metro Manila, Philippines

Verified by Turrior

Content + Source + Freshness • 13 Dec 2025 • 95% confidence

80 / 100

Offer value

High value due to critical security role within a cryptocurrency exchange and the potential for substantial impact.

Critical role ensuring security of customer funds
Competitive salary for security professionals
Requires significant experience in SOC operations

Pros

High demand for security experts in crypto space
Role with significant responsibility impacting customer trust
Room for professional growth in blockchain security

Cons

Requires extensive knowledge in security operations and incident response
High-pressure environment due to security threats
May involve irregular hours due to the nature of the role

Who it's for

Senior • Full-time

Good fit

Experienced SOC engineers in cryptocurrency
Security analysts ready to take on more responsibility
Professionals interested in cybersecurity and finance

Not recommended for

Candidates with no relevant security experience
Individuals seeking entry-level roles
Those preferring stable, routine jobs

Motivation fit

Interest in enhancing security measures in cryptoDesire for a challenging role with real-world implicationsMotivation to lead and direct security teams

Key skills

Security operations and monitoringIncident response and forensicsThreat intelligence analysisKnowledge of blockchain security frameworks

Score: 80/100 AI verified analysis

About the job

We are actively seeking a highly skilled and experienced Senior SOC Engineer with expertise in cryptocurrency exchange security operations. This pivotal role is instrumental in ensuring the security of our digital assets and customer funds by leading comprehensive security monitoring, incident response, and threat analysis activities.

Given the unique challenges of operating a cryptocurrency exchange, this position requires deep understanding of blockchain security, digital wallet protection, and financial crime prevention, with particular emphasis on threat intelligence analysis and insider threat detection.

Key Responsibilities:

Security Operations Center Management
Lead security monitoring operations for cryptocurrency exchange infrastructure, trading platforms, and digital wallet systems
Oversee real-time analysis of security events, alerts, and anomalies across blockchain networks, trading engines, and customer-facing applications
Coordinate incident response activities for security breaches, suspicious trading activities, and potential fraud attempts
Manage and optimize SIEM platforms, security orchestration tools, and automated response systems
Develop and maintain security playbooks specific to cryptocurrency exchange operations and digital asset protection

Insider & Threat Intelligence AnalysisMonitor dark web marketplaces, criminal forums, and threat actor communications for indicators targeting cryptocurrency businessesConduct tactical, operational, and strategic threat assessments specific to digital asset platformsDevelop threat intelligence feeds and indicators of compromise (IoCs) relevant to cryptocurrency securityCollaborate with external threat intelligence providers and cryptocurrency security communitiesDesign and implement comprehensive insider threat detection programs tailored to cryptocurrency exchange environmentsAnalyze user behavior patterns to identify potential malicious insider activities or account compromisesConduct investigations into suspicious employee activities, unauthorized access attempts, and data exfiltration

Incident Response & ForensicsLead incident response efforts for security breaches, fund theft attempts, and system compromisesConduct digital forensics investigations on cryptocurrency-related security incidentsCoordinate with law enforcement, regulatory bodies, and external security firms during major incidentsDevelop and maintain incident response procedures specific to cryptocurrency exchange operationsCreate post-incident reports and recommendations for security improvements

Required Qualifications:

Experience: Minimum 5+ years in SOC operations, preferably in financial services or cryptocurrency exchanges
Certifications: CISSP, GCIH, GCFA, GNFA, GCTI, CEH, or equivalent security certifications required
SIEM Expertise: Advanced proficiency with SIEM platforms (Sumo Logic, Splunk, QRadar, Sentinel, etc.)
Threat Intelligence: Experience with threat intelligence platforms (MISP, ThreatConnect, Anomali) and frameworks (MITRE ATT&CK, Diamond Model)
Programming/Scripting: Proficiency in Python, PowerShell, or similar languages for automation and analysis
Cloud Security: Experience securing cloud infrastructure (AWS, Azure, GCP) and container environments

Preferred Qualifications:

Additional certifications: CISSP, CISM, GCTI, GCFA, CEH, or cryptocurrency-specific certifications
Experience with insider threat analysis tools and methodologies (Securonix, Exabeam, Splunk UBA, Microsoft Sentinel UEBA)
Background in behavioral analytics, user activity monitoring, and privileged access management