Enterprise Security Engineer – Incident Response (6-Month Contract)

About Asymmetric Research
Asymmetric Research ("AR") is a boutique security venture specializing in deep partnerships with L1/L2 blockchains and DeFi protocols. We operate across four core domains of web3 security: research, engineering, incident response, and infrastructure services. Our fully remote team brings decades of security-first experience from organizations including Google, Netflix, Mozilla, Stripe, and Jump Crypto. We value autonomy, professionalism, and a relentless commitment to excellence.

About the Role
We are seeking an experienced Security Engineer for a 6-month contract engagement in direct support of the Solana Incident Report Network (SIRN). In this role, you will serve as a primary operational resource for incident command, triage, and response workflows across the SIRN program. You will work closely with AR's incident response team and project stakeholders to ensure timely, well-documented, and effectively coordinated responses to security events affecting the Solana ecosystem.

This is a hands-on, execution-focused contract role — ideal for a practitioner who thrives in high-tempo environments and is comfortable owning end-to-end incident lifecycle responsibilities.

Key Responsibilities
Incident Command & Triage

• Serve as Incident Commander for SIRN-related security cases, owning coordination from detection through resolution and post-incident review.

• Lead incident triage efforts, rapidly assessing scope, severity, and impact to drive prioritization and response decisions.

• Coordinate with internal AR teams and external Solana ecosystem stakeholders throughout active incident lifecycles.

• 24x7 On-Call availability

Telemetry & Detection

• Develop, tune, and triage telemetry signals relevant to SIRN use cases, including on-chain event monitoring and infrastructure-level detection.

• Identify gaps in current detection coverage and propose improvements to signal fidelity and alert quality.

Runbook Curation

• Author, maintain, and continuously improve incident runbooks tailored to SIRN scenarios.

• Ensure runbooks reflect current threat landscape, ecosystem-specific attack patterns, and lessons learned from prior incidents.

Project & Logistics Support

• Provide operational and logistical support to the SIRN project team, including tracking deliverables, coordinating stakeholder communications, and ensuring project milestones are met.

• Escalate to AR Engineering and Consulting leads as appropriate.

• Maintain clear documentation across all assigned workstreams.
  

Qualifications
Required

• 7+ years of security engineering or incident response experience, with demonstrated depth in operational IR roles.

• Proven experience as an Incident Commander or equivalent lead role in complex, fast-moving security events.

• Hands-on experience developing or tuning telemetry, detection pipelines, or monitoring systems (SIEM, on-chain alerting, or equivalent).

• Familiarity with runbook development and operational documentation best practices.

• Strong communication skills — able to convey technical findings clearly to both engineering teams and non-technical stakeholders under pressure.

• Ability to work independently and with high autonomy in a fully remote setting.

• Experience with Web3 security, blockchain incident response, or protocol-level threat analysis (Solana ecosystem experience a strong plus).

• Background in Web2 security operations (EDR, MDM, Google Workspace, or equivalent platforms).

• Familiarity with DeFi attack patterns, smart contract exploits, or on-chain forensics.

Preferred

• Bachelor's or Master's degree in Computer Science, Information Security, or a related field (or equivalent practical experience).

Contract Details

• Duration: 6 months

• Engagement Type: Independent Contractor

• Location: Fully Remote

• Focus Area: SIRN – Solana Incident Report Network