About MoonPay Hi, we're MoonPay. We're here to onboard the world to the decentralized economy by making digital money move as universally and effortlessly as the internet.
Why? Because crypto, stablecoins and blockchain aren't just technologies. They're tools for global financial empowerment. They give people and businesses more control over their money, their digital assets, and their future, opening access to legacy financial systems that have been out of reach for many.
What we do MoonPay is a unified payments platform for digital currency. We make it easy for anyone, anywhere, to buy, sell, swap and pay in digital currencies as easy as sending an email. That simplicity is intentional, our focus is reducing complexity so people can participate confidently, without needing to be crypto experts. We power the entire flow between fiat and crypto end to end, with compliance, identity checks, fraud prevention, and settlement all built in. This end-to-end approach reflects how we work internally: with accountability, rigor, and trust built into everything we ship.
Proven at scale Trusted by over 30 million customers and over 500 ecosystem partners, our secure, enterprise-grade platform is driving mainstream crypto adoption worldwide. Behind those numbers are millions of real people and organizations relying on MoonPay every day.
We collaborate with innovative brands and projects to build secure, scalable solutions for a blockchain-powered future. This is an opportunity to help shape systems, not just scale them. And we're committed to doing it right. Fully licensed in the U.S. and regulated across the UK, EU, Canada, and Australia, because trust and compliance are non-negotiable.
But we're just getting started. We've launched a consumer app that makes crypto accessible, intuitive, and usable for everyone, and it's growing fast. We're iterating every day to make it the best it can be.
If you believe financial freedom should be for everyone. If you believe in building a fairer, more open financial system - we want you with us. To build systems that benefit all, we need contributions from all, regardless of background.
Come build the future of payments and the decentralized economy with MoonPay. Let's make financial freedom and autonomy the new normal.
Locations Supported US, New York
Relocation available: No
Work pattern: This role will be hybrid (we expect you in our New York office ~2-3 days per week).
About the Opportunity The Security Operations (SecOps) team at MoonPay is dedicated to ensuring the security and integrity of our systems and data in an increasingly complex digital landscape. Comprising a diverse group of professionals from various regions around the globe, our multicultural team brings together a wealth of expertise and perspectives to tackle security challenges effectively.
Our mission is to identify and mitigate vulnerabilities and threats while maintaining strict compliance with security policies and relevant regulations. By leveraging advanced security measures and proactive threat detection techniques, we work diligently to safeguard our infrastructure and protect our customers' information.
In collaboration with the IT team and other departments, we foster a culture of security awareness, sharing best practices and ensuring that everyone at MoonPay understands their role in maintaining a secure environment.
Our key responsibilities include incident response, security monitoring, endpoint security, VPN, vulnerability management, and third-party risk management (TPRM), all of which contribute to our overarching goal: to create a secure environment for our employees, clients and partners.
Join us in our commitment to security excellence and help us build a safer future in the blockchain and payments industry!
What You Will Do As a Security Engineer, SIEM Platform, you will lead the design, implementation, and continuous improvement of our Google SecOps (Chronicle) platform in a demanding and fast-paced environment.
You will work closely with project managers, security engineers, and key stakeholders to deliver scalable SIEM/SOAR capabilities-while also serving as an L2 Incident Responder, leading investigations end-to-end and enabling the SOC Team through runbooks and operational guidance.
This role blends platform engineering (integration, automation, performance, detection content) with hands-on security operations (triage, investigation, response leadership).
Design and Implementation of Google SecOps - Integration of Google SecOps SIEM with other security capabilities and tools such as SOAR, EDR, NDR, threat intelligence platform, and ticketing systems.
- Write custom actions, scripts and/or integrations to extend SIEM platform functionality.
- Creation of SIEM assets such as: detection rules using YARA-L, dashboards, parsers etc.
- Extension of pre-built UDMs in Google SecOps and creation of custom parsers where required for log sources.
- Testing and deployment of newly created and migrated assets such as rules, playbooks, alerts, dashboards etc.
- Monitor performance and perform timely actions to scale SIEM deployment.
- Creation of custom SIEM dashboards to meet security requirements.
- Debug and solve customer issues in ingestion, parsing, normalization of data etc
- Develop SOAR playbooks to provide case handling and Incident response as per triage needs.
- Design and implement solutions to handle alert fatigue encountered in SIEM correlation.
L2 Incident Response (Operational Role) - Actively participate in Security Operations activities as an L2 Incident Responder.
- Lead incidents through all stages: identification, containment, eradication, recovery, and lessons learned.
- Serve as the primary point of contact for the SOC regarding SIEM investigations, platform behavior, detection logic, and operational troubleshooting.
- Support continuous improvement by translating incident learnings into better detections, dashboards, and playbooks.
About You (Must-have experience and skills) - Must-have experience and skills
Experiences - Minimum of 2-3 years in Cybersecurity, ideally security operations or security operation center.
- Expertise on incident management, SIEM, DLP, threat intelligence, VPN, and email security.
Technical Proficiency - Google SecOps SIEM experience in the areas of responsibility for at least 1 year.
- Experience building detection content (rule logic, correlation, tuning); YARA-L experience preferred.
- Experience integrating security tools via APIs and automation (EDR, NDR, ticketing).
- Scripting ability (e.g., Python, Bash) for automation and troubleshooting.
Cybersecurity Principles - Strong understanding of cybersecurity principles and best practices.
- Strong knowledge of network, endpoint, identity, and cloud security fundamentals.
Analytical Skills - Excellent analytical and problem-solving abilities.
Crisis Management - Ability to work effectively under pressure.
- Capable of handling multiple incidents simultaneously.
Communication - Strong communication and interpersonal skills to collaborate with various teams.
You're a Security Engineer who can both build and operate at scale. You have strong expertise in Google SecOps and are equally comfortable with leading incident response. You will be working primarily on the following stack: Apple systems, Google SecOps, Okta, Google Workspace, Slack, Code42, Crowdstrike, Cloudflare WARP, Tenable Nessus and Jamf Pro.
About You (Nice-to-have experience) Bachelor's degree in Computer Science, Information Security, or a related field. Equivalent work experience will be considered.
Experience with frameworks such as ISO 27001, SOC 2, and PCI-DSS.
Responsible for defining and implementing key security controls.
Practical incident response experience including triage, investigation, containment, and communications.
Identifying, prioritizing, and automating remediation of security vulnerabilities.
Bonus Points CISSP, CISM, or equivalent certifications are a plus.
Google Cloud Certified Professional Security Operations Engineer
Proven experience with tools such as:
Google Cloud Platform
Okta
Crowdstrike
Cloudflare Zero Trust
Tenable Nessus
ZeroFox
Code42
BLOCK Values We're looking for people who live our core values, those who strive for excellence and want to leave a lasting legacy on the global financial system. Our values:
B - Be Hungry
L - Level Up
O - Own It
C - Crypto Curious
K - Kaizen
Research has shown that women are less likely than men to apply for this role if they do not have experience in 100% of these areas. Please know that this list is indicative, and that we would still love to hear from you even if you feel that you are only a 75% match. Skills can be learnt, diversity cannot.
Benefits & Perks Competitive salary package Equity package: We believe financial freedom starts with our employees, so all employees have ownership at MoonPay
Pay for performance equity bonus: Those who drive outsized outcomes receive outsized rewards
Moonshot award. We honor exceptional impact - 10 employees twice a year, each earning a $250,000 equity grant.
Unlimited holidays: We give you the autonomy to choose when to work (and when to switch off)
Hybrid working schedule: Work fully remotely or your nearest Moonbase, the choice is yours
Private Healthcare benefits: To protect you and your loved ones
Enhanced parental leave: So you can spend more time with your loved ones without a second thought
Annual training budget: We support your training journey every step of the way
Home office setup allowance: Create the home office of your dreams
Remote working allowance: Those working fully remotely get a little extra for utilities
Monthly budget to spend on our products and zero fee crypto transactions: Cultivate your inner DEGEN
Employee referral programme: Great people know great people, refer them to receive 10K in USDC
Regular remote company offsites: Meet your colleagues regularly for high impact in person sessions and hackathons
Working in a disruptive and fast-growing company where excellence is rewarded Commitment To Diversity At MoonPay we believe that every voice matters. We strive to create a mindful and respectful environment where everyone can bring their authentic self to work, and experience a culture that is free of harassment, racism, and discrimination. That's why we are committed to diversity and inclusion in the workplace and are a proud equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other characteristic protected by law. This policy applies to all employment practices within our organization, including, but not limited to, hiring, recruiting, promotion, termination, layoff, and leave of absence.
MoonPay is also committed to providing reasonable accommodations in our job application procedures for qualified individuals with disabilities. Please inform our Talent Team if you need any assistance completing any forms or to otherwise participate in the application process.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Never miss an opportunity! Create an alert based on the job you applied for.
.png?format=webp)
