Security Analyst

US or EMEA Remote (excluding France and Australia)

Consensys is the leading blockchain and web3 software company founded by Joe Lubin, CEO of Consensys and Co-Founder of Ethereum. Since 2014, Consensys has been at the forefront of innovation, pioneering technological developments within the web3 ecosystem.

Through our product suite, including the MetaMask platform, Infura, Linea, Diligence, and our NFT toolkit Phosphor, we have become the trusted collaborator for users, creators, and developers on their path to build and belong in the world they want to see.

Whether buildig a dapp, an NFT collection, a portfolio, or a better future, the instinct to build is universal. Consensys inspires and champions the builder instinct in everyone by making web3 universally easy to use and develop on.

Our mission is to unlock the collaborative power of communities by making the decentralized web universally easy to access, use, and build on. 

You’ll get to work on the tools, infrastructure, and apps that scale these platforms to onboard one billion participants and 5 million developers. You’ll be constantly exposed to new concepts, ideas, and frameworks from your peers, and as you work on different projects — challenging you to stay at the top of your game. You’ll join a network of builders that reaches the edge of our ecosystem. Consensys alumni have moved on to become tech entrepreneurs, CEOs, and team leads at tech companies. 

About the role:

As an Intermediate Security Analyst within our SOC team, you'll actively monitor, investigate, and respond to security incidents across our web2 and web3 environments. You'll leverage our security tooling ecosystem, comprising both 3rd party solutions and custom-built tools, to detect and analyze threats in traditional and blockchain environments. You'll apply established incident response playbooks while contributing improvements based on your experience. Your skills in threat detection will enable you to identify suspicious patterns, correlate security events, and conduct first and second-level investigations. You'll utilize our SOAR platform to manage response actions and work with machine learning detection systems to identify anomalies. You'll also help implement LLM integrations to enhance security operations efficiency. With a solid foundation in security principles, you'll expand your expertise in blockchain security and contribute to the team's threat intelligence and detection capabilities.

Note: As Web3 security is an emerging discipline, we strongly encourage candidates with exceptional traditional security backgrounds to apply—we value your expertise and will provide dedicated training and mentorship to build your web3 security capabilities.

Responsibilities will include:

• Monitor and investigate security alerts across traditional networks, blockchain networks, cloud platforms, and enterprise systems

• Perform first and second-level analysis of security incidents

• Apply and suggest improvements to incident response playbooks and procedures

• Document detailed findings from security investigations and maintain accurate incident records

• Utilize security tools including SIEM, EDR, cloud security systems, and blockchain-specific platforms

• Configure and tune security monitoring systems to reduce false positives

• Create and refine detection rules based on threat intelligence and observed patterns

• Support the implementation of SOAR workflows to automate response actions

• Use established machine learning models to improve threat detection effectiveness

• Help implement LLM integrations to enhance security operations efficiency

• Collaborate with other security teams to address vulnerabilities and security gaps

• Contribute to threat intelligence gathering and analysis

• Develop and maintain dashboards and reports for security metrics

• Write and maintain documentation for security procedures and common investigations

• Participate in on-call rotation for security incident response

• Mentor junior analysts on security tools and investigation techniques

Qualifications: 

• 2-4 years of experience in IT security, with SOC analyst experience

• Strong understanding of security principles, attack methodologies, and defense strategies

• Experience with SIEM platforms and security analytics

• Proficiency in using EDR and cloud security monitoring tools

• Ability to investigate and resolve common security incidents independently

• Knowledge of security compliance frameworks and requirements

• Experience documenting security incidents and creating technical reports

• Solid understanding of network protocols and common vulnerabilities

• Basic scripting abilities (Python, Bash, PowerShell) for security task automation

• Familiarity with threat intelligence concepts and practical application

• Strong analytical skills and attention to detail

• Excellent communication abilities and team collaboration skills

Nice to have:

• Security certifications (e.g., Security+, SSCP, CySA+, TryHackMe SOC Level 2 Path)

• Experience with blockchain technology or cryptocurrency security

• Knowledge of SOAR platforms and security automation

• Familiarity with machine learning applications in security

• Experience with cloud security architectures

• Knowledge of MITRE ATT&CK framework and its application

• Experience with digital forensics techniques and tools

• Understanding of security data analysis and visualization techniques

• Prior experience with incident response coordination

Don't meet all the requirements? Don't sweat it. We’re passionate about building a diverse team of humans and as such, if you think you've got what it takes for our chaotic-but-fun, remote-friendly, start-up environment—apply anyway, detailing your relevant transferable skills in your cover letter. While we have a pretty good idea of what we need, we're ready for you to challenge our thinking on who needs to be in this role.

It is a requirement of employment in this position that applicants will be required to submit to background checks including but not limited to employment, education and criminal record checks. Further details will be provided to applicants that successfully meet the criteria for the position as determined by the company in its sole discretion. By submitting an application for employment, you are acknowledging and consenting to this requirement.