MoonPay builds payments infrastructure for cryptocurrencies. Our on- and off-ramp suite of products provides a seamless experience for converting between fiat and crypto using all major payment methods in over 160 countries. Our mission is to make cryptocurrencies accessible to over a billion people by 2030! 🚀

We are bootstrapped and already highly profitable, enjoying a revenue growth of 1000% + in the last 12 months 📈 We have more than 2 million customers and our payment solutions power more than 250 of the world’s largest crypto wallets, websites, and applications.

We are a fully remote, global team across 25+ countries, and we pride ourselves on having a connected and inclusive culture that empowers people to do their best work. We give our team autonomy to move fast, innovate and take responsibility. In the same way the internet became a means to democratize information, cryptocurrency is becoming a means to democratize financial participation at scale. Join us in our mission to build a better financial world!

The team ❤️

The incident response team will be a cross-functional team comprising Security Engineers and Analysts. They will be on the front line investigating security events and incidents. The goal of the team is to think like an attacker and stay one step ahead of them, ensuring that we have the right operational security controls needed to detect, remediate and prevent compromises.

What you’ll do 👀

  • Build and manage a team focusing on incident response and forensics. Providing both subject matter expertise and leadership to serve as the SME for security events and incident investigations.
  • Recommend and document specific countermeasures and mitigating controls.
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences.
  • Build an Incident Response program including training and tabletop exercises.
  • Establish policies and processes to have a 24/7 incident response and SOC capability.
  • Utilise cutting edge technology to conduct large-scale investigations and examine host and network-based sources of evidence.
  • Monitors, analyses, and investigates the SIEM solution and Endpoint Detection and Response events for Tier 1 (triage), Tier 2 (responder), and Tier 3 (hunting) support
  • Monitors security dashboard alerts to identify and respond to security events.
  • Monitors and communicates threat intelligence from various resources that is relevant to Moonpay’s systems.
  • Participates in the response to cyber incidents by gathering data and artefacts relevant to the event.
  • Supervise staff, provide feedback and coaching, and grow their technical and analytics skills
  • Improve Moonpay’s business processes and incident response methodologies.

You should apply if ✅

  • You are an experienced Security Leader who has built incident response and SOC teams in previous roles.
  • You're a capable manager who is able to build, develop and manage a cross functional team of security specialists.
  • You still have hands on technical abilities in at least three of the following areas:
    • Windows disk and memory forensics
    • Network Security Monitoring (NSM), network traffic analysis, and log analysis
    • Unix or Linux disk and memory forensics
    • Static and dynamic malware analysis
    • Applied knowledge in at least one scripting or development language (such as
    • Python)
    • Thorough understanding of enterprise security controls in cloud and MacOS Environments
  • You're able to manage and deliver multiple projects and take ownership over the scope and budget.
  • You have experience with Botnet and Denial of Service detection and remediation.
  • You have experience with Ethical hacking and penetration testing.
  • Bonus points if you have experience with Security Information and Event Management (SIEM) and Endpoint Detection and Response (EDR).
  • Bonus points if you have one or more security certifications (CISSP, GIAC, CISM, CEH, etc.).

Research has shown that women are less likely than men to apply for this role if they do not have solid experience in 100% of these areas. Please know that this list is indicative and that we would still love to hear from you even if you feel you only are a 75% match. Skills can be learnt, diversity cannot.

We promote a diverse and inclusive culture at MoonPay.

Logistics 🛠 

Unfortunately, we are unable to offer visas of any kind at this time!

Our interview process takes place on Google Hangouts and tends to consist of the following stages:

  • Recruiter call (20-30 minutes)
  • Initial screen (30-45 minutes)
  • Final interview (2 hours)

Please let us know if you require any accommodations for the interview process, and we’ll do our best to provide assistance

Benefits 💰

  • Competitive salary 💰
  • Stock options 📈
  • Unlimited holidays 🏝
  • Working in a disruptive and fast-growing industry where the possibilities are endless 🚀
  • Fully remote: your life, your way of working 🌎
  • Freedom, autonomy and responsibility 💪
  • Annual company retreat 🧘‍♀️



Apply for this Job

* Required
  
  


U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at MoonPay are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.