Startup Jobs
Post a Job
OKX

Senior Security Architecture Engineer

On-site

AI overview

Lead the security architecture design for cloud infrastructure and business applications while building governance frameworks from the ground up.
OKX will be prioritising applicants who have a current right to work in Singapore, and do not require OKX's sponsorship of a visa

About OKX

At OKX, we believe that the future will be reshaped by crypto, and ultimately contribute to every individual's freedom. OKX is a leading crypto exchange, and the developer of OKX Wallet, giving millions access to crypto trading and decentralized crypto applications (dApps). OKX is also a trusted brand by hundreds of large institutions seeking access to crypto markets. We are safe and reliable, backed by our Proof of Reserves. Across our multiple offices globally, we are united by our core principles: We Before Me, Do the Right Thing, and Get Things Done. These shared values drive our culture, shape our processes, and foster a friendly, rewarding, and diverse environment for every OK-er. OKX is part of OKG, a group that brings the value of Blockchain to users around the world, through our leading products OKX, OKX Wallet, OKLink and more.
 

About the Opportunity

The Technology Governance team provides security advice and guidance to OKX entities across all coverage areas, including global locations support business growth by working with all teams within the company to help them achieve their goals. This team works closely with compliance and legal teams to interpret global requirements for applying for licensing or any regional requirements, and understanding them.
 

What You’ll Be Doing

Security Review System & Virtual Organization Construction

  • System Establishment: Responsible for building the company-level security review process and governance framework from the ground up (0 to 1), defining collaboration mechanisms, and clarifying rights and responsibilities.
  • Process Integration: Seamlessly embed security controls into IT change and release processes. Establish security entry and blocking standards (Quality Gates) to ensure full visibility and control over the company's technical changes.

Security Architecture Design & Core System Assessment

  • Architecture Planning: Lead the security architecture design for cloud infrastructure (IaaS/PaaS) and business applications. Formulate high-scalability and high-performance security defense strategies and technical baselines for complex scenarios such as Cloud-Native environments (K8s/Containers) and microservices.
  • Deep Governance: Conduct specialized security governance for core systems to identify deep-seated architectural risks in product design, system development, and runtime environments; propose systematic remediation plans and lead their implementation.

Governance Operations & Executive Decision Support

  • Visibility Construction: Establish a routine reporting mechanism for security governance and reviews. Clearly present the security posture, major risks, and governance progress to management, providing data support for decision-making.
  • Closed-Loop Management: Drive relevant stakeholders to resolve bottlenecks identified during reviews. Promote cross-departmental risk remediation and architectural upgrades, ensuring a closed-loop management process from discovery to remediation.

Policy Construction & Enablement

  • Combine industry best practices (e.g., ISO27001, SDL, DevSecOps) with regulatory requirements to improve the company's information security management policies.
  • Empower R&D and Operations teams through virtual groups/teams to enhance overall security awareness.

 

What We Look For In You

Experience & Background

  • Education: Bachelor’s degree or above in Computer Science, Information Security, or related fields.
  • Experience: 5+ years of experience in internet/tech companies.
  • Key Experience: Proven experience in building security review systems from scratch or leading large-scale security governance projects. Experience operating cross-functional virtual organizations is preferred.

Professional Competencies

  • Architecture Skills: Proficient in mainstream cloud security architectures (AWS/Aliyun). Possesses a strong Application Security background (Web/API/Mobile), with a solid understanding of network, host, and data security principles. Capable of conducting threat modeling, architectural risk assessments, and designing solutions for complex business scenarios.
  • Offensive & Defensive Insight: Deep understanding of common security risks (OWASP Top 10) and attack vectors. Familiar with security development lifecycles (SDL/DevSecOps) and able to guide architectural design from an attacker/defender perspective.

Comprehensive Skills

  • Reporting & Communication: Strong logical thinking and professional writing skills (adept at writing governance weekly updates and analysis reports). Excellent cross-departmental communication and coordination skills to effectively drive cooperation between business and operations teams for remediation.
  • Project Management: Result-oriented. PMP certification or security certifications (CISSP, CISA, CCSP) are preferred.
Language Ability
  • Proficiency in speaking, reading and writing in both English and Mandarin to collaborate effectively with global and cross-functional team members.

 

Perks & Benefits

  • Competitive total compensation package
  • L&D programs and Education subsidy for employees' growth and development
  • Various team building programs and company events
  • Wellness and meal allowances
  • Comprehensive healthcare schemes for employees and dependants
  • More that we love to tell you along the process!
Notice:
All official OKX vacancies are published on this website. While roles may appear on selected third-party platforms from time to time, information on other sites may be inaccurate or outdated. If in doubt, please apply directly through our official careers website.
Information collected and processed as part of the recruitment process of any job application you choose to submit is subject to OKX's Candidate Privacy Notice.

Perks & Benefits Extracted with AI

  • Health Insurance: Comprehensive healthcare schemes for employees and dependants
  • Learning Budget: L&D programs and Education subsidy for employees' growth and development
  • Team building programs and company events: Various team building programs and company events
  • Wellness and meal allowances: Wellness and meal allowances
OKX

OKX operates as a leading cryptocurrency exchange, providing users with a platform to buy, sell, and trade various digital assets such as Bitcoin, Ethereum, and XRP, while also offering tools for exploring Web3, decentralized finance (DeFi), and non-fu...

Website LinkedIn
View all jobs
Ace your job interview

Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.

Architect Q&A's
Report this job
Apply for this job