Security Engineer (Penetration test)

Asia

Applications have closed

Binance

Binance cryptocurrency exchange - We operate the worlds biggest bitcoin exchange and altcoin crypto exchange in the world by volume

View company page

Binance is the global blockchain company behind the world’s largest digital asset exchange by trading volume and users, serving a greater mission to accelerate cryptocurrency adoption and increase the freedom of money.
Are you looking to be a part of the most influential company in the blockchain industry and contribute to the crypto-currency revolution that is changing the world?

Responsibilities

  • Partner with internal and external Security, Engineering, and Business functions to find, fix, and prevent security vulnerabilities in Binance platform
  • Collaborate closely with engineering and other teams to conduct regular security assessments including vulnerability assessments, penetration testing, deeper design reviews and code reviews
  • Develop technical solutions to help mitigate appsec related threats to the Binance ecosystem
  • Drive security improvements by providing security guidance on critical, highly sensitive and evolving stream of new products and technologies
  • Conduct research to identify new attack vectors against Binance's products and services

Requirements

  • B.S. or M.S. Computer Science or related field, or equivalent experience
  • Strong understanding of common web application controls, such as CSP, SRI, the same-origin policy, cookie security, OAuth, etc
  • Strong understanding and practical experience attacking web application vulnerabilities such as XSS, CSRF, XXE, SQLi, LFI/RFI, etc
  • Expertise in Secure SDL practices including whitebox and blackbox assessments, code reviews, design reviews, threat modelling, etc
  • Technical experience across various product security areas including web applications, mobile, infrastructure, cryptography, etc
  • Strong software development skills in one or more languages (Rust, Python, C/C++, Java, Node.js, etc)
  • Experience with security software development lifecycle in a fast-pace environment
  • Experience translating technical concepts into language for broad technical and non-technical audiences
  • Deep technical ability and creativity to think and act like a hacker
  • Experience understanding threats and ensuring security and privacy on the internet

Good to have

  • Good communication skills and leads by influence across all levels
  • Experience working on blockchain security
  • Experience contributing to the security community in DeFi, other cryptocurrency open-source projects, public research, presentations, etc
  • Experience in the financial industry, FinTech, and/or cryptocurrency space
Conditions• Do something meaningful; Be a part of the future of finance technology and the no.1 company in the industry• Fast moving, challenging and unique business problems• International work environment and flat organisation• Great career development opportunities in a growing company• Possibility for relocation and international transfers mid-career• Competitive salary• Flexible working hours, Casual work attire

Tags: Application security Blockchain C C++ Computer Science Crypto Cryptography CSRF Finance FinTech Java Node.js Pentesting Privacy Product security Python Rust Security assessment Vulnerabilities XSS

Perks/benefits: Career development Competitive pay Flat hierarchy Flex hours Relocation support

Regions: Remote/Anywhere Asia/Pacific
Job stats:  37  6  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.