Security Incident Response Engineer
Málaga, Spain
TradingView
Where the world charts, chats and trades markets. We're a supercharged super-charting platform and social network for traders and investors. Free to sign up.About us!
Our open source charts and commercial libraries are used by tens of thousands of financial sites across the planet, including whales 🐋 like: CME, Refinitiv, Investopedia, Crunchbase, Binance, Bitcoin.com and many many others. We’re also one of the world’s biggest websites (#61 to be exact, according to Alexa Rankings), visited by 100s of millions of people every year. So if you’re interested in finance, chances are you’ll have already seen us around the place.
Our mission is to help millions of people succeed in life, whatever that means for them, by providing the highest quality information in the smartest way so they can make the best-informed decisions possible. To do this, we’re looking for individuals to join a team where product quality means everything, where you’ll be given the opportunity to develop your best work, and where the fruits of your labor will be seen by millions of people each and every day.
Join our Spanish team
We’ve got people all over the world, but our new Spanish office is the heart of our tech operations. So, if you’re looking for a start-up, get stuck-in vibe, but with all the resources and firepower of a major scale-up, then look no further, this is the place for you! Join us here and help shape the future of our tech operations! There’s never been a better time to join the Spain team as we continue to grow, offering extensive opportunities for professional development.
Our tech stack - Work with cutting-edge technologies
We are using the latest technologies, ensuring our team works on innovative and challenging projects: JavaScript, ReactJS, TypeScript with NodeJS, Python and Golang on the backend.
Your mission:
TradingView is seeking an experienced and dynamic Security Incident Response Engineer (DFIR) to lead global security incident response efforts. Reporting directly to the Chief Information Security Officer (CISO), this role will oversee all phases of incident response, including detection, containment, investigation, and remediation.
The Incident Response Engineer will play a key role in evolving TradingView’s incident response strategy, staying ahead of emerging threats, and ensuring that our security posture remains robust. This position will drive continuous improvement and innovation in our threat detection, response capabilities, and recovery activities.
Tasks:
- Coordinate and lead security incident response activities
- Identify and analyze anomalous network and application activity
- Correlate incident data to identify patterns and root causes
- Assess the scope, urgency, and impact of security incidents
- Recommend mitigation and remediation strategies for enterprise systems
- Document cyber defense incidents from initial detection through final resolution
- Communicate incident findings to appropriate stakeholders (internal and external)
- Develop and maintain playbooks for effective response and remediation of security incidents
- Expand the detection and response program, ensuring log coverage, alert development, and process improvement.
- Lead post-incident reviews and lessons-learned exercises to refine playbooks and improve the overall incident response process.
Required Knowledge:
- Computer networking protocols and operating systems internals
- Privacy laws and regulations (GDPR, etc..)
- Cybersecurity threats and vulnerabilities
- Business continuity and disaster recovery (BCDR) policies and procedures
- Incident response principles, practices, tools and techniques
- Cloud, host, network and application attack tactics, techniques, and procedures (TTPs)
- Malware analysis tools and techniques
Required Skills:
- Detecting application, cloud, host and network intrusions
- Containing and mitigating cybersecurity threats and intrusions
- Collecting and preserving digital evidence
- Designing and performing incident responses
- Collaborating and communicating with internal and external stakeholders
- Creating and conducting security tabletop exercises
- Certifications such as GCIH, GCFA, CFCE, CHFI, CISSP, or CEH are a big plus
It’ll also be an advantage if you have experience in:
Finance experience or knowledge of Trading
Knowledge of TradingView 😁
Additional information
This is an onsite role based in our Málaga office, located in the heart of the city at the prestigious Muelle Uno port (center), offering you the opportunity to work in a vibrant culture. Our flexible working hours allow for a great work-life balance, and we provide comprehensive relocation packages for you and your family to ensure a smooth transition and comfortable settling-in process. Additionally, we offer private health insurance as part of our benefits package, and much more. You can also enjoy all of our workplace perks (gym,snacks etc..)!
TradingView is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. With 500 employees from 40 nationalities speaking nearly 20 languages, with 5 global offices where we foster inclusive and collaborative work environments.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CEH CFCE CHFI CISO CISSP Cloud Cyber defense DFIR Finance Forensics GCFA GCIH GDPR Golang Incident response JavaScript Malware Node.js Open Source Privacy Python Strategy Threat detection TTPs TypeScript Vulnerabilities
Perks/benefits: Career development Flex hours Health care Relocation support Startup environment
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.