OKX is hiring a

Graduate Hire 2024/25 - Security Engineer

OKX will be prioritising applicants who have a current right to work in Singapore, and do not require OKX's sponsorship of a visa.
 
If you are interested in more than one Supernova role, please apply to your first preference. We will still consider you for all opportunities.
 
Who We Are
At OKX, we believe that the future will be reshaped by Crypto, ultimately contributing to every individual's freedom. OKX began as a crypto exchange giving millions of people access to crypto trading and over time becoming among the largest platforms in the world. In recent years, we have developed one of the most connected Web3 wallets used by millions to access decentralized crypto applications (dApps). OKX is a trusted brand by hundreds of large institutions seeking access to crypto markets on a reliable platform that seamlessly connects with global banking and payments. In the last year, OKX has expanded into new markets including Australia, Brazil, Netherlands, Singapore and Turkey, with plans to launch in the US, Belgium and the UAE.
We are deeply committed to shaping a fairer, more transparent and accessible society through blockchain technology. This is why we publish proof of reserves monthly, and continue to ship new innovative security features.
 
About OKX Graduate Program (Supernova)
The Supernova Program is a 3-year Career Accelerator Program that aims to fast-track, high performing graduates into technical experts and future leaders mainly in the fields of Product Engineering, Product Management, and Product Design. We firmly believe in the power of the new era. Join us to achieve your narrative around crypto.
 
As a graduate Security Engineer, you will put in your utmost efforts to secure the OKX platform with millions of daily active users. You will work cross-functionally with design, product, and other engineering teams to identify and assess security risks, design and develop advanced security protective mechanisms and products or deliver high-quality thorough security operations and reinforcements. This is an opportunity to learn the full security life cycle of crypto and Web3 platforms and work along with a top-class security team fighting against worldwide security threats.
 
What You’ll Be Doing
  • The construction and continuous optimization of infrastructure security capabilities, including intrusion technology research, intrusion behavior analysis and feature extraction, development/validation/iteration of detection rules and processes, and development of security infrastructures.
  • Designing, developing, and maintaining high-performance backend systems to support the requirements of client security projects.
  • Providing help and consulting to developers on secure coding practices.
  • Conducting security testing and vulnerability assessments, including penetration testing, vulnerability scanning, and code reviews.
  • Conducting routine checks and tests to ensure that all known vulnerabilities are detected and patched.
  • Maintaining high-quality technical documentation. Upholding technology best practices and code reviews with peers. Improving efficiency in cross-office/time zone collaboration.
  • Optional directions include but are not limited to web security, network security, host and terminal security, data security, threat intelligence, SoC/SIEM/SOAR, Client Security, DevSecOps, etc., respecting personal interests and development intentions.
What We Look For In You
  • Bachelors in Computer Science, Technology, Engineering, Mathematics, related technical disciplines, or self-taught enthusiasts
  • Solid basic knowledge of security attack and defense, understanding common vulnerability principles and attack techniques, familiar with the best practices and common solutions of the defense side.
  • Possessing relevant tech stack skillset for the respective specialization - Java/Python/Go, relational databases, data structures and algorithms, OS, and network computers.
  • Analytical with a positive problem-solving mindset, a proactive team player who embodies a growth mindset, flexible, and comfortable in navigating ambiguity with a global mindset.
Nice to Haves
  • Comfortable with the cloud-based Linux environment. Knowledgeable in multi-threading and distributed architecture. Understanding of mainstream messaging frameworks, including Kafka. Or familiar with daily developing tools such as npm, gulp, webpack, git.
  • Experience in penetration tests, intrusion detection capability development, and maintenance, security emergency response, and other related work.
  • Experience in CTF competitions and achieving good results.

Perks & Benefits

  • Competitive total compensation package
  • L&D programs and Education subsidy for employees' growth and development
  • Various team building programs and company events
  • Wellness and meal allowances
  • Comprehensive healthcare schemes for employees and dependants 
  • More that we love to tell you along the process!
 
 
Apply for this job

Please mention you found this job on AI Jobs. It helps us get more startups to hire on our site. Thanks and good luck!

Get hired quicker

Be the first to apply. Receive an email whenever similar jobs are posted.

Ace your job interview

Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.

Security Engineer Q&A's
Report this job
Apply for this job