Security Analyst

Figment

Figment

IT
London, UK
Posted on Oct 3, 2025

You could work anywhere. Why Figment?

Figment powers the future of Web3 through industry-leading blockchain infrastructure. As the leading provider of staking solutions, we help 500+ institutional clients optimize their crypto rewards, including top exchanges, asset managers, wallets, foundations, custodians, and major token holders. Our clients trust Figment for a comprehensive suite of services, including reward optimization, cutting-edge API development, detailed rewards reporting, seamless partner integrations, governance support, and slashing protection.

Backed by a team of passionate and intelligent Figmates, with a 100% remote-first global presence across 12 countries, our company is on a mission to accelerate the adoption, growth, and long-term success of the Web3 ecosystem. We’re building the infrastructure that will power the decentralized future.

As a fast-growing tech company, we’re looking for builders and innovators — people who thrive in the face of uncertainty and are motivated to make an impact. We are also looking for true teammates - people who are genuine, humble, and driven to level up together. If you're excited to shape the future, contribute to an energetic company culture, and work at the cutting edge of blockchain technology, we want you to join our team and help us lead the charge!

About the opportunity

As a Security Analyst on the Figment Security Team, you will be on the front lines of protecting our cutting-edge blockchain infrastructure. This is not a traditional SOC role. You will operate in a modern, code-driven environment where your primary mission is to engineer high-fidelity detections, triage security alerts, analyze logs, respond to incidents, and continuously improve our security posture.

You will be a key player in our "security-as-code" culture, using Python to write detections utilizing your knowledge of security of operating systems, networking and protocols, firewalls, databases and cloud platforms. Beyond technical execution, you will be a trusted security educator, researching the latest tactics, threats, and procedures (TTPs) across the industry and sharing that knowledge to uplift the entire organization.

How you will make an impact

  • Detection Engineering: Design, build, and tune real-time detections in Python, focusing on threats to our cloud-native services, SaaS applications, and blockchain infrastructure.
  • Incident Response & Analysis: Act as the primary responder for escalated security incidents. Analyze alerts to conduct in-depth log analysis and perform investigations to determine scope, impact, and root cause.
  • Threat Hunting: Proactively hunt for undetected malicious activity and emerging threats using available security tooling and custom queries.
  • Automation & Tooling: Develop scripts and tools to automate security workflows, data enrichment, and repetitive security tasks. Our environment is built on code—you will contribute directly to it.
  • Security Education: Research and analyze emerging threats in the blockchain and Web3 space. Communicate your findings clearly to both technical and non-technical audiences to strengthen our company-wide security awareness.
  • Protect Critical Assets: Collaborate with engineering teams to develop and refine security strategies for protecting high-risk, internet-facing blockchain infrastructure.
  • Develop Runbooks: Create detailed processes, procedures, and workflows to support Blue Team operations and response activities.

What you bring to the team

  • 3+ years of hands-on experience in a security operations, detection engineering, or incident response role, preferably within a cloud-first environment.
  • Proficiency in Python, specifically for data analysis, automation, and writing security detections. You must be comfortable writing and maintaining Python code.
  • Hands-on experience with a SIEM platform (e.g., Panther, Splunk, Sumo Logic). Direct experience analyzing logs from cloud and SaaS applications is essential.
  • Demonstrable experience securing AWS environments and a strong understanding of core services (e.g., EC2, S3, IAM, CloudTrail, VPC).
  • A "security-as-code" mindset with practical experience using tools like Terraform and Git/GitHub for managing infrastructure and configurations.
  • Excellent communication skills, with the ability to distill complex technical topics for a broader audience.

Even better if you have:

  • Working knowledge of Terraform, Ansible, AWS, Azure, GCP. Kubernetes and Git.
  • A deep passion for and knowledge of security risks unique to Web3, blockchain protocols, smart contracts, and staking infrastructure.
  • Relevant industry certifications such as GIAC (GCIH, GCFA, GCDA), AWS Security Specialty, Blue Team Level 1/2, or equivalent hands-on experience.
  • Contributions to open-source security projects or a public GitHub profile showcasing your work.

Technologies we use

Python, SentinelOne, Panther SIEM, Wiz, Github, Terraform

Teams you’ll collaborate with most often

In addition to collaborating with other Security team members, this role will collaborate most often with our Engineering teams.


Why you might be excited about us

  • At Figment, we offer an exciting range of competitive benefits designed to support and empower every member of our team. These will be discussed with you during the interview process.
  • We are a team of under 200 members, which allows for an impactful contribution from day one.
  • We place a strong focus on personal career development to shape a role that fits your goals and interests. Your satisfaction and well-being matter to us, and we’re here to support your ongoing growth.
  • Our culture is one of honesty, professionalism and risk taking in a high-growth environment.
  • Our team members themselves recommend working at Figment - with an eNPS score of 54 (which is ranked as ‘great’!).
  • We are also extremely proud of ranking as one of the top Web3 employers by Talent Titans.

Compensation

One of Figment’s core principles is “Making the Invisible Visible” - ensuring transparency and information sharing in all communication. Figment is committed to transparency regarding pay, benefits, and other compensation types for all internal roles as well as all roles being hired for. Compensation for this role will be disclosed during the interview process.

Interview process

At Figment, we try to go above and beyond in making sure that you have the best possible experience interviewing with us. We strive for a smooth, organized, and informative process.

  • During your first Recruiter Call, you will be provided with more information about Figment, the position and what to expect for the rest of the interview process. Please be prepared to discuss why you are interested in joining Figment and what excites you about the position and company.
  • As we go through the process, we work to make sure that you hear back from us in a timely fashion. If we decide at any point that we’re unfortunately not moving forward, we will give you feedback on why it was not a fit.
  • We aim for the entire process to take around 2-4 weeks from initial screen to offer. There can be exceptions on either side of the bell curve here, but as a rule, that’s the time-frame you can expect.

See here for Figment's Privacy Policy and California Employee Privacy Policy.

At Figment, we have a thorough hiring process to verify the identity of all job candidates. This includes checking documents, conducting in-person interviews, biometric authentication and completing background checks. Candidates must pass all these steps to be considered for a job with Figment. Anyone who provides false information or tries to skip these steps will be disqualified from the hiring process immediately.

To learn more about Figment, our team, and the amazing work we are doing, visit our website. Are you ready to join us?