Glocomms is partnered with a leading international hedge fund to play a pivotal role in our security operations team. As Principal Threat Detection & Response Engineer you will join as robust security team to oversee the identification, investigation, and mitigation of security incidents to ensure the safety and integrity of sensitive client data.
Key Responsibilities:
- Lead and coordinate response efforts to security incidents, ensuring timely and effective resolution and helping create best-practice playbooks.
- Design, develop, and maintain advanced detection mechanisms to identify potential security threats.
- Proactively hunt for threats and vulnerabilities within the firm's digital environment.
- Collaborate with DevOps teams to integrate security practices into the software development lifecycle.
- Develop and maintain scripts, tools, and platforms to streamline IR processes and enhance overall security operations efficiency.
- Perform in-depth analysis and reverse engineering of malware and other malicious artifacts to uncover hidden threats and attack vectors.
- Leverage your expertise in reverse engineering to dissect complex malware, understand its behavior, and develop robust detection and mitigation strategies.
- Provide insights and recommendations based on analysis to improve defenses and detection capabilities.
- Apply a deep understanding of security principles and practices to all aspects of your work.
- Stay current with emerging threats, vulnerabilities, and industry best practices.
- Mentor and provide guidance to junior team members.
Qualifications:
- Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
- 5+ years of experience in a senior threat management role (financial services or hedge fund environment exposure preferred).
- Strong expertise in incident response, computer forensics, and threat detection.
- Proficiency in scripting and automation languages (e.g., Python, PowerShell).
- Experience with security information and event management (SIEM) tools and technologies.
- Advanced knowledge of malware analysis and reverse engineering techniques, including static and dynamic analysis, debugging, and disassembly.
- Familiarity with DevOps practices and tools.
- Excellent problem-solving skills and the ability to work under pressure.
- Strong communication and interpersonal skills.
Preferred Qualifications:
- Relevant certifications such as CISSP, GCIH, GCFA, or similar.
- Experience with cloud security (AWS, Azure, GCP).
- Understanding of financial industry regulations and compliance requirements.