Security Engineer - Blue Team (Cyber Defense) at Coinhako

As a Blue Team Engineer, you will be the primary shield for our organization’s digital assets. Your mission is to design, implement, and maintain robust security defenses while proactively hunting for threats. You won't just wait for alarms to go off; you will refine our detection capabilities, leverage AI-driven automation, and ensure our cloud environments are battle-ready.

What you'll be doing:

• Manage and optimize our SIEM (e.g., ELK, DataDog) to reduce noise and increase the fidelity of security alerts.
• Manage cloud security services to ensure the latest security improvements can be implemented. Monitor and remediate cloud misconfigurations using Cloud Security Posture Management (CSPM) tools.
• Employ cloud-based APIs when suitable to write network/system level tools for safeguarding cloud environments and improving defensive visibility.
• Act as a core member of the CSIRT, investigating security breaches and performing root cause analysis.
• Participate in a rotating on-call schedule to ensure continuous monitoring and rapid response to critical security incidents 24/7 (including after-hours, weekends, and public holidays).
• Remain available and ready to work outside of standard business hours when high-priority security incidents require immediate intervention to mitigate risks and protect organizational assets.
• Conduct proactive hunting exercises to identify dormant threats or suspicious activity that automated tools might miss.
• Deploy and manage defensive technologies including EDR/XDR, WAF, Email Security, and IDS/IPS.
• Apply adept understanding and experience with systems automation platforms. Master the use of AI tools and integrate AI into daily workflows to enhance detection accuracy and response speed.

What we're looking for:

• Bachelor’s degree in Computer Science, Cybersecurity or a related field.
• 3+ years in a dedicated SOC or Security Engineering role.
• Proven experience in managing security within Clouds specifically utilizing native security services and API integrations.
• Strong experience with IaC solutions and a high level of proficiency in applying AI/LLMs to solve complex security tasks.
• Deep understanding of the MITRE ATT&CK framework.
• Experience in EDR, WAF, DNS, UEM/MDM, Zero Trust etc.
• Ability to write scripts to interface with APIs and automate repetitive security operations.
• Advanced understanding and/or experience working in a Cryptocurrency/Blockchain/Fintech/Finance Trading domain preferred

Nice to have:

• AI Security: Experience in securing AI models, protecting against prompt injection, or managing AI Security risks.
• Experience with setting up and managing MCP (Model Context Protocol) servers to facilitate secure AI-data interactions.
• Blue team and Cloud-specific security certifications.

What’s in it for you:

• MacBook or high-end laptop for working.
• Full coverage of social insurance.
• Premium health care for you and your family members.
• Full 100% salary during probationary period.
• Working in a professional, friendly, well-equipped workspace with both foreigners and Vietnamese.
• Extensive on job training; will always having chances to work with new emerging technologies.
• Friendly and fun start-up work culture.

Find out more about Coinhako here https://www.coinhako.com/ and don't forget to visit our Careers Page https://www.coinhako.com/join-us

By submitting your application to us, you consent to the collection, use, disclosure and processing of your personal data in accordance with our privacy policy, which is accessible at https://www.coinhako.com/legal/sg-1/privacy_policy.