Senior Engineer - Application Security, Vulnerability Scanner

OKX

OKX

Singapore
Posted on Sep 2, 2024
OKX will be prioritising applicants who have a current right to work in Singapore, and do not require OKX's sponsorship of a visa

Who We Are

At OKX, we believe the future will be reshaped by technology. Founded in 2017, we are revolutionising world systems through our cutting-edge digital asset exchange, Web3 portal and blockchain ecosystems. We reshape the financial ecosystem by offering some of the most diverse and sophisticated products, solutions, and trading tools on the market. Trusted by more than 50 million users in over 180 countries globally, OKX empowers every individual to explore the world of Web3. With our extensive range of products and services, and unwavering commitment to innovation, OKX envisions a world of financial access backed by blockchain and the power of decentralized finance.
We are innovative in the way we think, work, and in the products we create. We are also socially responsible by actively participating and encouraging employees to take part in various public welfare activities. With more than 3,000 employees around the world, we believe embracing diversity and inclusion will spark the creation of long-term value for the industry. Come Build the Future with Us now!

What You’ll Be Doing

  • Develop and maintain scanning tools for DevSecOps, including task scheduling and resource scheduling systems.
  • Integrate security practices throughout the software development lifecycle, including design, development, testing, and deployment.
  • Responsible for the DevSecOps platform's performance monitoring / alarm construction and operation to ensure the platform's safe and stable operation.
  • Collaborate with the development team to ensure security requirements are met and continuously improve security performance.

What We Look For In You

  • Experience in backend development, with proficiency in at least one of Golang, Java, or Python.
  • In-depth understanding of SAST, DAST, and IAST principles, with extensive practical experience using these tools.
  • Expertise in Kubernetes, Containers, and Microservices.
  • Strong experience in database design and optimization, with familiarity in both SQL and NoSQL databases.
  • Knowledge of common network protocols and security mechanisms, as well as understanding of common client security vulnerabilities and mitigation strategies.
  • Strong problem-solving skills and the ability to work effectively in a team.
  • Excellent communication skills for effective collaboration with team members and other relevant departments.
  • Familiarity with network security and vulnerability hunting is preferred.

Perks & Benefits

  • Competitive total compensation package
  • L&D programs and Education subsidy for employees' growth and development
  • Various team building programs and company events
  • Wellness and meal allowances
  • Comprehensive healthcare schemes for employees and dependants
  • More that we love to tell you along the process!