Deskripsi Pekerjaan
BitMEX, a leading cryptocurrency derivatives exchange, is seeking a highly skilled Senior Infrastructure Security Engineer to join our dynamic security team. In this critical role, you will be at the forefront of protecting our advanced trading platform and infrastructure from sophisticated cyber threats.
You will collaborate closely with cross-functional teams including DevOps, SRE, and Software Engineering to architect, implement, and maintain robust security controls across our cloud-native infrastructure. Your expertise will be instrumental in identifying vulnerabilities, developing security automation, and ensuring compliance with industry best practices.
At BitMEX, we process high-volume, low-latency transactions in a fast-paced environment where security is paramount. You will have the opportunity to work with cutting-edge technologies while contributing to our mission of providing secure and reliable trading services to millions of users worldwide.
Tanggung Jawab
- Design and implement security architecture for cloud-based infrastructure and Kubernetes environments
- Conduct comprehensive security assessments, penetration testing, and vulnerability analysis
- Develop and maintain security automation scripts and tools using Python, Go, or similar languages
- Monitor and analyze security events using SIEM, IDS/IPS, and threat intelligence platforms
- Collaborate with development teams to integrate security into CI/CD pipelines and DevSecOps practices
- Respond to and investigate security incidents, conducting forensic analysis and remediation
- Establish and enforce security policies, standards, and best practices across the organization
- Participate in on-call rotation and provide security expertise during incident response
Kualifikasi
- Minimum 5 years of experience in infrastructure or platform security engineering roles
- Strong expertise in cloud security (AWS, GCP, or Azure) with hands-on experience in IAM, networking, and compute security
- Proficiency in container security, Kubernetes hardening, and microservices security patterns
- Experience with security tooling such as vulnerability scanners, secrets managers, and CSPM solutions
- Solid understanding of cryptography, TLS/SSL, and secure communication protocols
- Familiarity with regulatory frameworks and compliance standards (SOC2, PCI-DSS)
- Excellent problem-solving skills with the ability to work in high-pressure situations
- Strong communication skills and ability to articulate technical concepts to diverse audiences