ChainalysisRemote
Staff Threat Detection Engineer
United States of America
Full Time
16 hours ago
$175,000 - $240,000 USD
H1B Sponsor Likely
Key skills
PythonSQLBashAIAnalyticsAWSGCPBlockchainSaaSLeadership
About this role
Chainalysis is a company focused on blockchain technology and its applications. The Staff Threat Detection Engineer will lead the corporate threat detection strategy, design high-fidelity detections, and conduct risk assessments to protect corporate assets against evolving threats.
Responsibilities:
- Lead Detection Strategy: Own the end-to-end roadmap for corporate threat detection, mapping coverage against frameworks like MITRE ATT&CK
- Engineeer High-Fidelity Detections: Design and maintain scalable detection logic across SIEM, EDR, and cloud logging platforms (AWS/GCP)
- Conduct Threat Hunting: Plan and execute hypothesis-driven hunting campaigns to uncover novel TTPs and turn findings into durable controls
- Perform Risk Modeling: Lead threat assessments and design reviews for new technology on-boarding and product design changes
- Optimize Response: Partner with Incident Response to refine alert quality, automate triage playbooks, and reduce time-to-containment
- Mentor & Influence: Provide technical leadership and mentorship to the DaRE team while influencing product teams to improve visibility and remediate gaps
Requirements:
- 8+ years of experience in detection engineering, SOC, or incident response at scale
- Deep expertise in building and tuning detections within SIEM, EDR, and log analytics platforms
- Advanced proficiency in writing complex detection queries (e.g., KQL, SPL, SQL)
- Demonstrated experience detecting modern attacker TTPs across endpoint, identity, and cloud environments
- Strong scripting skills (Python, Bash) for automation and enrichment
- Proven ability to lead cross-functional security initiatives with IT and Engineering stakeholders
- Experience leading threat hunting in cloud-first or SaaS-heavy environments
- Familiarity with securing AI integrations and managing associated security risks
- Knowledge of blockchain ecosystems and threats specific to the Web3/Crypto space
- Prior experience in a Staff-level technical leadership or mentorship role
- Red teaming experience against web technologies
- OSINT and investigations