Remote Senior Security Engineer (Threat Disruption)

Summary

Join our team at Gemini as we seek a skilled Senior Threat Disruption Engineer to track, analyze, and disrupt cyber campaigns orchestrated by both nation-state actors and non-state threat groups.

Requirements

• B.S. in Computer Science, Cybersecurity, equivalent field, or relevant work experience
• 3+ years in threat analysis, threat hunting, or incident response specializing in advanced threat actor activity
• Demonstrated success tracking complex global cyber campaigns
• Expertise in on-chain analysis and crypto fraud investigations
• Proficiency with threat intelligence platforms and campaign tracking tools (MISP, ThreatConnect, Maltego)
• Deep understanding of blockchain technology, cryptocurrency, and crypto fraud techniques
• Familiarity with threat actor TTPs, including MITRE ATT&CK framework
• Hands-on experience with tools like YARA, Suricata, or Snort for threat detection and rule writing
• Strong scripting/programming skills (Python, Bash, etc.) for automation

Responsibilities

• Identify, monitor, and analyze malicious campaigns leveraging advanced tools and methods
• Collaborate with threat intelligence teams to deliver in-depth assessments of adversarial TTPs tied to active and potential campaigns
• Conduct meticulous on-chain analysis to trace illicit activity, identify transaction patterns, and expose threat actor relationships
• Proactively hunt for novel threats using threat intelligence, telemetry, and IOCs to fortify our defenses
• Engineer and execute threat disruption strategies, employing technical, procedural, and legal countermeasures against ongoing attacks
• Partner with incident response teams during investigations into APTs, nation-state activity, and cybercriminal incidents
• Develop and maintain tools that streamline threat detection, tracking, and mitigation
• Work cross-functionally with legal, fraud, and compliance teams to support enforcement actions, policy creation, and legal cases related to crypto-related fraud or cybercrime
• Generate comprehensive technical reports and threat intelligence briefings, providing strategic and tactical insights for internal stakeholders

Benefits

• Competitive starting salary
• A discretionary annual bonus
• Long-term incentive in the form of a new hire equity grant
• Comprehensive health plans
• 401K with company matching
• Paid Parental Leave
• Flexible time off