Binance · 2 months ago
DLP & Incident Response Engineer
United States
Full-time
Remote
Mid, Senior Level
4+ years expBinance is a leading global blockchain ecosystem behind the world’s largest cryptocurrency exchange. They are seeking a security engineer with hands-on experience in Data Loss Prevention (DLP) and incident response to design and build custom solutions, leverage automation, and adapt to emerging threats in a high-security environment.
BitcoinCryptocurrencyFinTechStock ExchangesWeb3
Responsibilities
Design, deploy, and optimize DLP solutions across network, endpoint, and cloud
Build and refine data classification schemes for sensitive assets (wallets, trading algorithms, customer PII)
Configure DLP policies to prevent data exfiltration while minimizing false positives
Monitor, analyze, and tune alerts and incidents for continuous improvement
Lead investigations of DLP incidents and insider threats
Conduct threat hunting and forensic analysis of data exfiltration attempts
Integrate DLP monitoring into broader SOC workflows and incident response playbooks
Build custom DLP tools and integrations (e.g., macOS Swift endpoint protection, Unix socket monitoring)
Develop automation scripts, APIs, regexes and integrations to enhance detection and response
Explore AI/LLM-driven methods for anomaly detection and response efficiency
Ensure controls align with crypto and financial regulations (AML, KYC, GDPR, CCPA)
Support audits and regulatory reviews related to data protection
Assess and mitigate data loss risks across trading platforms, onboarding systems, and blockchain infrastructure
Qualification
Required
4+ years in a SOC or security operations role with incident response focus
Proven experience with DLP design, deployment, and monitoring
Strong programming skills (macOS Swift, Unix socket programming, scripting)
Hands-on threat hunting, forensic analysis, and APT detection experience
Familiarity with SIEM, EDR, and cloud security architectures
Knowledge of encryption, tokenization, and data classification methods
Preferred
4+ years in a SOC or security operations role with incident response focus
Proven experience with DLP design, deployment, and monitoring
Strong programming skills (macOS Swift, Unix socket programming, scripting)
Hands-on threat hunting, forensic analysis, and APT detection experience
Familiarity with SIEM, EDR, and cloud security architectures
Knowledge of encryption, tokenization, and data classification methods
Benefits
Competitive salary and company benefits
Work-from-home arrangement (the arrangement may vary depending on the work nature of the business team)
Company
Binance
Binance is a blockchain ecosystem and digital asset exchange platform that provides a wide range of crypto-related services.
5001-10000 employees
H1B Sponsorship
Binance has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (2)
2022 (3)
Funding
Current Stage
Late StageTotal Funding
$2BKey Investors
MGX
2025-03-12Series Unknown· $2B
2018-10-23Series Unknown
2018-10-01Seed
Leadership Team
Richard Teng
Binance, Co-CEO
Andrew Carroll-Goldin
Global Head of Data Analytics
Recent News
2026-01-15
2026-01-14
2026-01-12
Company data provided by crunchbase