Security Engineer (Penetration test)

Singapore

Binance logo
Binance
Binance cryptocurrency exchange - We operate the worlds biggest bitcoin exchange and altcoin crypto exchange in the world by volume
Apply now Apply later

Binance is the global blockchain company behind the world’s largest digital asset exchange by trading volume and users, serving a greater mission to accelerate cryptocurrency adoption and increase the freedom of money.
Are you looking to be a part of the most influential company in the blockchain industry and contribute to the crypto-currency revolution that is changing the world?

Responsibilities:

  • Partner with internal and external security, engineering and business functions to find, fix, and prevent security vulnerabilities in Binance platform
  • Collaborate closely with engineering and other teams to conduct regular security assessments including vulnerability assessments, penetration testing, deeper design reviews and code reviews
  • Develop technical solutions to help mitigate appsec related threats to the Binance ecosystem
  • Drive security improvements by providing security guidance on critical, highly sensitive and evolving stream of new products and technologies
  • Conduct research to identify new attack vectors against Binance's products and services

Requirements

  • B.S. or M.S. Computer Science or related field, or equivalent experience
  • Strong understanding of common web application controls, such as CSP, SRI, the same-origin policy, cookie security, OAuth, etc
  • Strong understanding and practical experience attacking web application vulnerabilities such as XSS, CSRF, XXE, SQLi, LFI/RFI, etc
  • Expertise in Secure SDL practices including whitebox and blackbox assessments, code reviews, design reviews, threat modelling, etc
  • Technical experience across various product security areas including web applications, mobile, infrastructure, cryptography, etc
  • Strong software development skills in one or more languages (Rust, Python, C/C++, Java, Node.js, etc)
  • Experience with security software development lifecycle in a fast-pace environment
  • Experience translating technical concepts into language for broad technical and non-technical audiences
  • Deep technical ability and creativity to think and act like a hacker
  • Experience understanding threats and ensuring security and privacy on the internet

Good to have

  • Good communication skills and leads by influence across all levels
  • Experience working on blockchain security
  • Experience contributing to the security community in DeFi, other cryptocurrency open-source projects, public research, presentations, etc
  • Experience in the financial industry, FinTech, and/or cryptocurrency space
Conditions• Do something meaningful; Be a part of the future of finance technology and the no.1 company in the industry• Fast moving, challenging and unique business problems• International work environment and flat organisation• Great career development opportunities in a growing company• Possibility for relocation and international transfers mid-career• Competitive salary• Flexible working hours, Casual work attire
Job region(s): Remote/Anywhere Asia/Pacific
Job stats:  41  9  0
  • Share this job via
  • or

Explore more Information Security career opportunities