SecOps Engineer

About Us

Chainway Labs is seeking a Sec Ops Engineer to join our team at Citrea, Bitcoin’s First ZK Rollup.

At Citrea, our goal is to secure on‑chain finance with Bitcoin. We believe that Bitcoin and its values should be scaled to serve as the standard for decentralized finance. Achieving this vision requires scaling Bitcoin with zero‑knowledge proofs, ensuring on‑chain verifiability and data availability within the Bitcoin network.

This approach makes Citrea the first scaling solution to enable more complex applications without compromising Bitcoin security and changing its consensus rules.

At Chainway Labs, we are dedicated to scaling the Bitcoin Network, with a vision to transform financial infrastructure globally. Upholding core values of privacy, innovation, and scalability, we strive to build solutions that embody these principles within the Bitcoin ecosystem.

You’ll help run day‑to‑day operational security: monitoring, tooling administration, user support, internal controls, and hands‑on incident response support. This is a practical role with a strong emphasis on reliability, clear communication, and lightweight automation (small scripts and glue code).

• Participate in the incident rotation (on‑call / responder schedule as defined by the team).
• Triage and elevate security alerts (SIEM/EDR/cloud/app signals).
• Assist with incident handling: evidence collection, timeline building, containment steps, comms notes, and post‑incident action tracking.
• Maintain and improve incident runbooks, checklists, and escalation paths.

• Administer and support security tools such as:
  • SIEM / log pipelines (basic rule tuning, alert routing, dashboards, integrations)
  • EDR policy checks and operational maintenance (triage, device status follow‑ups)
  • Password manager support (onboarding/offboarding, policy enforcement, recovery flows)
  • Security training platform administration (campaigns, enrollment, reporting)
• Improve signal quality: reduce noise, identify monitoring gaps, ensure coverage for critical systems.

• Participate in internal control routines (periodic checks, evidence collection, documentation updates).
• Help with access control audits (reviews, recertification cycles, exception tracking).
• Maintain systems inventory / asset tracking (services, owners, environments, criticality tags).

• Help operate the bug bounty program: initial triage, reproduction, severity suggestions, routing to engineering, tracking fixes to closure.
• Support brand protection mechanisms: phishing/impersonation monitoring, takedown workflows, domain/social monitoring, basic investigations.

• Write and maintain simple scripts (Python and/or Bash preferred) to automate repetitive security ops tasks (enrichment, reporting, inventory sync, alert deduping, API pulls).
• Build small integrations between tools (webhooks, Slack/Telegram notifications, ticket creation).

• English proficiency (you will write incident notes, procedures, and communicate in English daily).
• Ability to write simple scripts (Python and/or Bash) and work with APIs/JSON.
• 1–3+ years in Security Operations / IT Ops / Sys Admin / SOC / Dev Ops with security responsibilities.
• Practical understanding of common security concepts: IAM basics, phishing/social engineering patterns, endpoint hygiene, logging/monitoring, incident triage.
• Comfortable with Linux/macOS/Windows basics and common SaaS admin consoles.

• Experience with at least one SIEM (Splunk, Elastic, Sentinel, Datadog, etc.) and alert tuning.
• Familiarity with cloud security fundamentals (AWS/GCP/Azure), Kubernetes, or CI/CD logs.
• Exposure to vulnerability management and bug bounty workflows (Hacker One/Intigriti/etc.).
• Experience supporting security awareness/training programs or compliance evidence collection (SOC 2 / ISO 27001 style routines).
• Security certifications are a plus.

• Competitive compensation package, including equity options
• Remote work setting
• Engaging community activities that foster team bonding and collaboration.
• A welcoming atmosphere where every team member's opinion is valued.
• A dynamic team environment filled with bright, young, and dedicated colleagues, offering an enriching collaborative experience.

✏️ Learn more about how Citrea is shaping the future of Bitcoin by visiting our Blog for the latest updates!

Chainway Labs is an equal opportunity employer, committed to fostering a diverse and inclusive workplace. We appreciate the interest of all applicants; however, only those selected for an interview will be contacted.

Thank you for considering a career with us!