middot warning cancel success information linkedin google twitter facebook whatsapp user-stroke rss yacht-silhouette library user ship tel email print share lock spyglass arrow--down arrow--up arrow--left arrow--right coins city yacht warranty pin

Cyber Security Engineer in Hong Kong

Application Security Engineer / Code Reviewer

EUR (€)TBC

  • Job ID #1188630
  • Posted: 31st Jul 2024 by Crypto.com

View all Crypto.com jobs

Summary

Company Information

Founded in 2016, Crypto-com serves more than 80 million customers and is the world's fastest growing global cryptocurrency platform. Our vision is simple: Crypto-currency in Every Wallet™. Built on a foundation of security, privacy, and compli-ance, Crypto-com is committed to accelerating the adoption of cryptocurrency through innovation and empowering the next generation of builders, creators, and entrepreneurs to develop a fairer and more equitable digital ecosystem.

Crypto-com is an equal opportunities employer and we are committed to creating an envi-ronment where opportunities are presented to everyone in a fair and transparent way. Crypto-com values diversity and inclusion, seeking candidates with a variety of back-grounds, perspectives, and skills that complement and strengthen our team.

Personal data provided by applicants will be used for recruitment purposes only.

Please note that only shortlisted candidates will be contacted.

Role Information

At Crypto-com, our dedication to user security is led by our highly experienced Security Team. Comprising an international roster of seasoned cybersecurity experts, our team leads the company's Security, Privacy, and Security Compliance endeavors.

The team includes holders of international patents for technologies integrated in our security architecture. Under the stewardship of a distinguished CISO recognized by the Forbes Technology Council and among the Global Top 100 CISOs, our team has consistently championed industry standards, acquiring certifications like ISO27001, ISO27701, ISO22301, PCI:DSS 3.2.1 (Level 1), NIST Tier 4, and SOC 2 Type II, in addition to the MPI License from Singapore MAS. Our Chief Information Security Officer reports directly to the CEO, underscoring the prioritization of security in our organization's hierarchy.

Our Security Team not only places great emphasis on credentials and expertise but also deeply values hands-on experience, rapid cognition, and dynamic learning. The challenges in the world of crypto are ever-evolving, and as such, our team prides itself on quick adaptability and robust teamwork, ensuring that we stay ahead of potential threats and always safeguard our user base.

No security practitioner wants to work in a company that no hacker would bother to hack. Crypto-com is a Crypto-currency company with our own Crypto Wallet, Exchange, and various Blockchain Technologies and all these are attracting top-notch hackers around the world to try to attack our system 24x7.

To keep up with the fast pace of the software development release cycle, the Application Security and DevSecOps team is expanding and hiring talented security professionals to join us and protect the company.

Responsibilities

Discover security vulnerabilities through design review, manual source code review, and follow up on the remediation process

Use automated tools to find security vulnerabilities in source code and/or system

Participant in relevant agile scrum meetings and provide professional recommendations on the design of security controls, libraries, and/or protocols

Conduct secure coding training sessions

Implement various security control verification and risk detection by developing our own automation system

Implement security related libraries for internal use

Provide support on application level security monitoring, intrusion detection, and incident response

Requirements

At least 5 years of software development experience with a focus on either Server Side Java or Rails language.

Experience in mobile application development will be an added advantage

We would love to hire a code reviewer with a solid background in security code review, but we are also open to candidates who have solid background in software development but no security code review experience.

Candidates with more experience will be considered for a more senior role and title

Good understanding of the whole software development lifecycle, CI/CD tools, cloud, Kubernetes, and various and technology stacks

CISSP, CSSLP, OSWE is definitely an advantage

Familiar with OWASP Top 10 is an advantage

Proficiency in both spoken and written English. Being able to speak Mandarin will be an advantage

Benefits

Working in a well-organized team and be able to learn how to protect an Enterprise and ship secure applications at a fast pace

New challenges every day, but still be able to enjoy work-life balance

Have exposure to many cutting edge technologies in the industry

Flexible working environment with adjustable work from home arrangements

Overview

  • CountryHong Kong, Hong Kong
  • Position TypePermanent Position
  • Working EnvironmentIn Office & Remote
  • Posted 31st Jul 2024 by Crypto.com

Interested?

Applying for this position is really simple, but you need to login first...

Login to Apply

  •  Location