DLP & Incident Response Engineer

hace 1 semana

Asia Argentina Buenos Aires Binance A tiempo completo
Binance is a leading global blockchain ecosystem behind the world's largest cryptocurrency exchange by trading volume and registered users. We are trusted by over 280 million people in 100+ countries for our industry-leading security, user fund transparency, trading engine speed, deep liquidity, and an unmatched portfolio of digital-asset products. Binance offerings range from trading and finance to education, research, payments, institutional services, Web3 features, and more. We leverage the power of digital assets and blockchain to build an inclusive financial ecosystem to advance the freedom of money and improve financial access for people around the world.
We're looking for a security engineer with hands-on experience in Data Loss Prevention (DLP) and incident response, ideally within fintech, crypto, or high-security environments. The role goes beyond using commercial tools you'll also design and build custom solutions, leverage automation, and adapt to emerging threats, including those driven by recent LLM/AI advancements. Responsibilities
  • Design, deploy, and optimize DLP solutions across network, endpoint, and cloud.
  • Build and refine data classification schemes for sensitive assets (wallets, trading algorithms, customer PII).
  • Configure DLP policies to prevent data exfiltration while minimizing false positives.
  • Monitor, analyze, and tune alerts and incidents for continuous improvement.
  • Lead investigations of DLP incidents and insider threats, 
  • Conduct threat hunting and forensic analysis of data exfiltration attempts.
  • Integrate DLP monitoring into broader SOC workflows and incident response playbooks.
  • Build custom DLP tools and integrations (e.g., macOS Swift endpoint protection, Unix socket monitoring).
  • Develop automation scripts, APIs, regexes and integrations to enhance detection and response.
  • Explore AI/LLM-driven methods for anomaly detection and response efficiency.
  • Ensure controls align with crypto and financial regulations (AML, KYC, GDPR, CCPA).
  • Support audits and regulatory reviews related to data protection.
  • Assess and mitigate data loss risks across trading platforms, onboarding systems, and blockchain infrastructure.
Requirements
  • 4+ years in a SOC or security operations role with incident response focus.
  • Proven experience with DLP design, deployment, and monitoring.
  • Strong programming skills (macOS Swift, Unix socket programming, scripting).
  • Hands-on threat hunting, forensic analysis, and APT detection experience.
  • Familiarity with SIEM, EDR, and cloud security architectures.
  • Knowledge of encryption, tokenization, and data classification methods.
Nice-to-have
  • 4+ years in a SOC or security operations role with incident response focus.
  • Proven experience with DLP design, deployment, and monitoring.
  • Strong programming skills (macOS Swift, Unix socket programming, scripting).
  • Hands-on threat hunting, forensic analysis, and APT detection experience.
  • Familiarity with SIEM, EDR, and cloud security architectures.
  • Knowledge of encryption, tokenization, and data classification methods.
Why Binance
• Shape the future with the world's leading blockchain ecosystem
• Collaborate with world-class talent in a user-centric global organization with a flat structure
• Tackle unique, fast-paced projects with autonomy in an innovative environment
• Thrive in a results-driven workplace with opportunities for career growth and continuous learning
• Competitive salary and company benefits
• Work-from-home arrangement (the arrangement may vary depending on the work nature of the business team)
Binance is committed to being an equal opportunity employer. We believe that having a diverse workforce is fundamental to our success. By submitting a job application, you confirm that you have read and agree to our Candidate Privacy Notice. We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

  • Dlp & Incident Response Engineer

    hace 9 horas

    Buenos Aires, Argentina Binance A tiempo completo

    Binance is a leading global blockchain ecosystem behind the world’s largest cryptocurrency exchange by trading volume and registered users. We are trusted by over 280 million people in 100+ countries for our industry-leading security, user fund transparency, trading engine speed, deep liquidity, and an unmatched portfolio of digital-asset products. Binance...

  • Cyber Security Incident Response Engineer

    hace 7 días

    Buenos Aires, Argentina Kimberly-Clark A tiempo completo

    Cyber Security Incident Response Engineer The Cyber Security Incident Response Engineer is an individual contributor role. It will primarily consist of conducting incident response investigations on behalf of a wide variety of stakeholders. As the Incident Response Engineer, the individual must have a wide breath of knowledge across multiple IT and...

  • Lead Security Engineer — 24/7 Incident Response

    hace 2 semanas

    , , Argentina Olo A tiempo completo

    A leading SaaS restaurant technology provider in Argentina is seeking a dedicated Security Engineer to enhance security capabilities. The ideal candidate will have over 3 years of experience in security engineering, strong knowledge of IT and cybersecurity standards, and proficiency in incident response management. This role involves mentoring junior...

  • Incident Response Analyst

    hace 4 semanas

    Ciudad Autónoma De Buenos Aires, Argentina Randstad Argentina A tiempo completo

    ¡Esta propuesta te puede interesar! Incident Response Analyst Funciones Brindar respuesta a incidentes de nivel 2, gestionando tickets según los SLA definidos. Analizar información de diversas fuentes para evaluar el alcance e impacto de incidentes de seguridad. Detectar amenazas, analizar malware y tráfico de red. Gestionar vulnerabilidades y realizar...

  • Analista de Seguridad Informatica Ssr Dlp

    hace 2 semanas

    Buenos Aires, Argentina Web: A tiempo completo

    Descripción del empleo: En RAN Security estamos en la búsqueda de un Analista de Seguridad Informática Ssr, la cual está basada en personas con alto grado de compromiso, poder de resolución de incidentes, proactivas, curiosas, empatía con el cliente y con muchas ganas de formar parte de un equipo en expansión. **Los conocimientos necesarios son los...

  • Consultor Experimentado Cyber Incident Response

    hace 2 semanas

    Capital Federal, Buenos Aires, Argentina KPMG Argentina A tiempo completo

    En KPMG ayudamos a las organizaciones a dar respuesta a los incidentes de ciberseguridad, a administrar los riesgos y costos asociados a la gestión de la evidencia electrónica, y trabajamos en la adquisición, procesamiento y análisis de grandes volúmenes de información recopilada, almacenada y tratada en sistemas informáticos. ¿Te gustaría...

  • Incident Support

    hace 1 semana

    Buenos Aires, Argentina Tekskills A tiempo completo

    An early response is really appreciated. **Job Title : Incident Support** **Location : Buenos Aires** **Duration :12+ Months** **Primary Skills**: Troubleshoot Circuit & HW issues and HW replacement, Production Alignment calls and vendor escalations. **Experience**: - Troubleshoot Circuit & HW issues: 5 years (required) - Production Alignment calls: 5...

  • Incident Manager: Lead IT Incident Response

    hace 2 semanas

    Buenos Aires, Argentina AgileEngine A tiempo completo

    A global fintech leader is seeking an experienced Incident Manager in Buenos Aires. The role involves minimizing business service downtime during IT incidents and leading technical support groups. Key qualifications include advanced English, experience in client-facing roles, and ITIL processes. Strong leadership and analytical skills are essential. This...

  • Crisis Response and Readiness Manager

    hace 2 semanas

    Buenos Aires, Argentina Assurant A tiempo completo

    The Crisis Response and Readiness Manager under the Global Security organization is a key leadership role responsible for Incident Management and Corporate Crisis Management for local, regional, and /or global events that impact Assurant. This role will work closely with business operations teams, people organization (HR), business leaders, and employees to...

  • Site Reliability Engineer

    hace 5 días

    Buenos Aires, Argentina VS-Staffing A tiempo completo

    Job Description - Site Reliability Engineer - Remote Costa Rica **Title**: Site Reliability Engineer **Location**: Remote, LATAM **Job Overview**: **Key responsibilities include**: - Incident Management: Lead the response to security incidents through identification, containment, analysis, and mitigation strategies to minimize impact. - Procedure...