Remote is seeking a Security Operations Center (SOC) Engineer to build and own a high-performance security operations function for our high-volume fintech platform. Your mission is to detect threats early, respond decisively, reduce systemic risk, and scale security ahead of growth to protect billions in transaction volume.

What You'll Do

Build and operationalize a fintech-grade SOC function, defining monitoring strategy across cloud, infrastructure, identity, endpoints, and transaction systems.
Own incident response end-to-end, leading containment, eradication, recovery, and post-incident reviews.
Design and mature detection engineering, improving SIEM use cases, telemetry coverage, and correlation rules.
Define security KPIs and KRIs, track detection coverage and incident trends, and establish executive dashboards.
Embed SOC into engineering and product workflows, integrating security review into new feature launches.
Reduce systemic financial risk by aligning security monitoring with transaction flows and money movement controls.
Build and scale the SecOps team, hiring, mentoring, and defining shift models and on-call processes.
Operationalize compliance through execution for ISO 27001, PCI DSS, NIST, and produce audit evidence.

What We're Looking For

8 to 12+ years of experience in cybersecurity operations.
Proven experience building or maturing a SOC in a complex environment.
Deep experience in incident response and security investigations.
Hands-on experience with SIEM platforms and detection rule engineering.
Strong knowledge of cloud security (AWS/GCP/Azure), identity systems, and SaaS telemetry.
Experience defining KPIs, dashboards, and operational metrics.
Strong leadership and team management experience.
Ability to communicate risk clearly to executives and non-technical stakeholders.