About Paxos
Today’s financial infrastructure is archaic, expensive, inefficient and risky — supporting a system that leaves out more people than it lets in. So we’re rebuilding it.
We’re on a mission to open the world’s financial system to everyone by enabling the instant movement of any asset, any time, in a trustworthy way. For over a decade, we’ve built blockchain infrastructure that tokenizes, custodies, trades and settles assets for the world’s leading financial institutions, like Mastercard, Visa, Robinhood, and PayPal.
The Opportunity
As a Senior Security Operations Engineer, you will serve on the front lines of our security program, helping protect the organization by detecting, investigating, and containing threats across our endpoints, cloud infrastructure, and network. You will act as both an investigator and a builder: triaging and resolving security incidents with precision while continuously improving detections and automations that help the team move faster and operate more effectively. This role is central to our day-to-day security posture, turning alerts into meaningful action.
What You'll Do
Triage, investigate, and respond to security alerts across endpoints, cloud infrastructure, and network telemetry.
Take a builder’s mindset to the role by automating repetitive workflows and using AI to increase speed, scale, and effectiveness.
Execute containment and remediation actions for confirmed incidents, while following and continuously improving established runbooks.
Tune and maintain SIEM and EDR detections to reduce false positives, strengthen signal quality, and close coverage gaps.
Apply threat intelligence, including IOCs and TTPs, to active investigations and ongoing monitoring.
Participate in the on-call rotation and contribute clear, actionable post-incident documentation.
About You
You bring 5+ years of experience in security operations, detection and response, or a related security engineering role.
You have deep experience leading investigations and response efforts across endpoints, cloud environments, and network telemetry, and can independently manage complex security incidents from initial triage through containment, eradication, and recovery.
You bring strong analytical judgment, mature decision-making, and a calm, methodical approach to high-severity alerts and incidents, including the ability to prioritize effectively and guide others through ambiguity.
You have advanced hands-on experience with SIEM and EDR platforms, including building and tuning detections, improving signal quality, reducing false positives, and shaping detection strategy based on evolving threats.
You think like a builder and continuously identify opportunities to automate repetitive security workflows, including applying AI thoughtfully to improve the speed, consistency, and scale of investigations and response.
You are skilled at applying threat intelligence, including IOCs, TTPs, and adversary tradecraft, to investigations, proactive threat hunting, and the continuous improvement of monitoring and detection capabilities.
You are comfortable participating in an on-call rotation, and you document incidents clearly and thoroughly while driving post-incident reviews, operational improvements, and stronger team readiness over time.
You have experience mentoring teammates, raising the quality of investigative work, and influencing security operations processes, tooling, and standards across the team.
Important Notice for Paxos Applicants
We’ve become aware of fraudulent accounts posting as Paxos recruiters on LinkedIn and other platforms. These scammers attempt to deceive applicants into paying for job opportunities or providing personal financial information.
To verify a legitimate Paxos recruiter:
We only use @paxos.com email addresses
We never ask for payment or financial details to apply, interview, or work here
For technical roles, we do not perform a coding interview without prior screening by our engineering team
Thanks for your interest in Paxos!