Security Engineer, New Grad

If you are interested in more than one Supernova role, please apply to your first preference. We will still consider you for all opportunities.Who We AreOKX is revolutionising world systems through our cutting–edge digital asset exchange, Web3 portal and blockchain ecosystems. We are deeply committed to shaping a fairer, more transparent and accessible society through blockchain technology and to date, we have 50+ million users, 3000+ employees and 180+ countries believing in the same vision as us. We are safe and reliable, backed by our Proof of Reserves. As strong supporters of the Arts and Sports, we are proud partners.About OKX Graduate Program (Supernova)The Supernova Program is a 3–year Career Accelerator Program that aims to fast–track high–performing graduates into technical experts and future leaders mainly in the fields of Product Engineering, Product Management, and Product Design. We firmly believe in the power of the new era. Join us to achieve your narrative around crypto.As a graduate Security Engineer, you will:Design, develop, and maintain high–performance backend systems and procedures to support client security projects, regulatory compliance, and infrastructure security best practices.Conduct security audits, vulnerability assessments, vulnerability scanning, and code reviews.Perform routine checks and tests to ensure all known vulnerabilities are detected and patched.Maintain high–quality technical and organizational documentation. Uphold technology best practices and conduct code reviews with peers. Improve efficiency in cross–office/time zone collaboration.Collaborate with team members and functional stakeholders to meet control requirements demonstrating organizational security compliance.Communicate and bridge the gap between external regulatory, audit requirements and internal stakeholder operations.Provide help and consulting to developers on secure coding practices.Optional directions include, but are not limited to web security, network security, host and terminal security, data security, threat intelligence, SoC/SIEM/SOAR, Client Security, DevSecOps, etc.What We Look For In YouBachelor's degree in Computer Science, Technology, Networking, MIS, Engineering, Mathematics, or related technical disciplines.Solid basic knowledge of security attack and defense, understanding common vulnerability principles and attack techniques.Holistic risk assessment skills to break down complex infrastructural and procedural issues for effective solutions.Compliance–first mindset with the ability to lead by example for internal and external stakeholders.Analytical with a positive problem–solving mindset, a proactive team player who embodies a growth mindset.Nice to HavesComfortable with cloud–based Linux environments and knowledgeable in distributed architecture.Understanding of Kubernetes or container orchestration architecture.Familiar with development tools such as npm, gulp, webpack, git.Possessing relevant tech stack skillset for the respective specialization – relational databases, OS, network computers, MIS operations, networking protocols, encryption, Identity and Access Management.AliCloud and AWS knowledge and certifications are a strong plus.Familiarity with security risk management and compliance frameworks (i.e. ISO 27001, NIST CSF, SOC 2 Common Criteria, CSA STAR).Security and IT risk certifications from recognized bodies such as ISACA, ISC2, CompTIA, CSA (i.e CISA, CISSP, CCSP, CCSK) are a strong plus.Experience in intrusion detection capability development and security emergency response.Experience in CTF competitions and achieving good results.OKX StatementThe salary range for this position is $125,000–$155,000. The salary offered depends on various factors, including job–related knowledge, skills, experience, and market location. In addition to the salary, a performance bonus and long–term incentives may be provided as part of the compensation package, along with a full range of medical, financial, and/or other benefits, depending on the position offered. Applicants should apply via OKX internal or external careers site.OKX is committed to equal employment opportunities regardless of race, color, genetic information, creed, religion, sex, sexual orientation, gender identity, lawful alien status, national origin, age, marital status, and non–job related physical or mental disability, or protected veteran status.

#J-18808-Ljbffr