About the company
About OKX OKX is a leading crypto trading app, and a Web3 ecosystem. Trusted by more than 20 million global customers in over 180 international markets, OKX is known for being the fastest and most reliable crypto trading app of choice for investors and professional traders globally. Our Singapore office is a Product and Engineering hub and we are in the progress of expanding our teams in Singapore for the continuous growth of our global business. We build and maintain core trading platform with millions of daily active users. Design, Product and Engineering teams work cross-functionally to identify customer needs, and ship high-quality new features through fast iterations.
Job Summary
What You’ll Be Doing
📍Serve as the subject matter expert for Application Security (AppSec), performing deep technical assessments of the Secure Software Development Lifecycle (SDLC) including source code review for our proprietary products. 📍Leverage your deep expertise in AppSec to both lead our software security assurance program and contribute to a wide range of audits across digital asset and AI application security. 📍Contribute to the annual risk-based audit plan by identifying emerging application security risks and scoping potential audit projects. 📍Collaborate effectively with Engineering, Product, and security stakeholders to communicate audit findings, provide value-add recommendations, and monitor remediation plans. 📍Develop and maintain expert knowledge of the evolving crypto threat landscape and application security best practices to ensure audit approaches remain current and effective.
What We Look For In You
📍We're looking for a hands-on, deeply technical auditor who thinks like a software developer and a security researcher. You are a recognized subject matter expert in Application Security, with demonstrable experience assessing custom software in complex, high-technology environments—ideally within crypto or FinTech. You have a passion for understanding the entire software development lifecycle and a proven ability to find vulnerabilities in complex, custom-built applications. 📍Crypto & Blockchain Acumen: Prior experience with a crypto exchange or crypto product is highly preferred. You must have a fundamental understanding of blockchain technology, including distributed ledgers, consensus mechanisms, and cryptography. 📍Application Security (AppSec) (SME): Deep expertise in auditing the Secure Software Development Lifecycle (SDLC) and performing technical security assessments of custom software, including business process application controls. 📍Critical Thinking for Complex Environments: A proven capacity to analyze complex technical environments, identify intricate root causes, and propose effective, context-specific solutions. 📍Data Analysis & SQL: Experience using SQL for data analysis is highly desired. The ability to achieve proficiency in performing data analytics with SQL within the first 90 days is required.
The future of finance is here — whether you’re interested in blockchain, cryptocurrency, or remote web3 jobs, there’s a perfect role waiting for you.
