Application Security Engineer (Pentester)

At our company, the Security Team, led by a team of experienced cybersecurity professionals, drives our efforts in Security, Privacy, and Security Compliance. The team comprises experts holding international patents for technologies incorporated in our security architecture.

Under the guidance of a distinguished CISO acknowledged by the Forbes Technology Council and the Global Top 100 CISOs, our team upholds industry best practices, securing certifications such as ISO27001, ISO27701, ISO22301, PCI:DSS 3.2.1 (Level 1), NIST Tier 4, and SOC 2 Type II, along with the MPI License from Singapore MAS. Reporting directly to the CEO highlights the paramount importance of security within our organizational structure.

Our Security Team values both professional qualifications and practical experience, integrating rapid thinking, continuous learning, and adaptability to address the evolving challenges in the crypto landscape. This approach ensures proactive threat mitigation and user protection.

Responsibilities

• Identify security vulnerabilities through design review and manual source code scrutiny, overseeing remediation efforts
• Utilize automated tools to detect security flaws in source code and systems
• Participate in agile scrum meetings to provide expert input on security controls, libraries, and protocols design
• Conduct training sessions on secure coding practices
• Develop automated security control verification systems for risk detection purposes
• Implement security-related libraries for internal use
• Provide support for application-level security monitoring, intrusion detection, and incident response

Requirements

• 1-4 years of experience in software development focusing on Server Side development, or in web API and mobile app penetration
• Proficiency in identifying and addressing logic flaws as per OWASP Top 10 standards
• Understanding of software development lifecycle, CI/CD tools, cloud, Kubernetes, and various technology stacks
• Security certifications like OSCP, CREST, CISSP, CLSSP are advantageous
• Proficient in both spoken and written English; knowledge of Mandarin is a plus

Life at Our Company

• Encouragement to explore new opportunities within a talented, supportive team
• Empowering working environment promoting innovation and problem-solving
• Personal and professional development opportunities within the organization
• Collaborative work culture fostering mutual support and growth
• Unified team striving to achieve a common goal of widespread cryptocurrency adoption

Benefits

• Competitive salary
• Comprehensive medical insurance coverage including dependents
• Generous annual leave entitlements and work flexibility options
• Internal mobility program offering diverse career development paths
• Work perks including a company Visa card
• Region-specific benefits packages available

About Our Company

Founded in 2016, our company serves a vast customer base globally, aiming to accelerate cryptocurrency adoption by prioritizing security, privacy, and compliance. With a commitment to innovation, our goal is to create a fairer digital ecosystem and nurture the next generation of innovators and entrepreneurs.

We are an equal opportunities employer, dedicated to fostering diversity and inclusion within our team. Candidates from various backgrounds, with different perspectives and skills, are encouraged to apply.

Applicants' personal data will be used solely for recruitment purposes. Please note that only shortlisted candidates will be contacted.