Offer summary

Qualifications:

OSCP or equivalent certification is required., Minimum five years of experience in Web API testing and proficiency in BurpSuite is preferred., Deep understanding of OWASP Top 10 and ability to detect logic flaws is highly desirable., Experience with mobile app testing and knowledge of reverse engineering is beneficial..

Key responsabilities:

Discover security vulnerabilities through design and source code reviews, and penetration testing.

Participate in agile scrum meetings and provide recommendations on security controls and protocols.

Conduct security-related training sessions for team members.

Support application-level security monitoring, intrusion detection, and incident response.

Job description

At Crypto.com, our dedication to user security is led by our highly experienced Security Team. Comprising an international roster of seasoned cybersecurity experts, our team leads the company's Security, Privacy, and Security Compliance endeavors.

The team includes holders of international patents for technologies integrated in our security architecture. Under the stewardship of a distinguished CISO recognized by the Forbes Technology Council and among the Global Top 100 CISOs, our team has consistently championed industry standards, acquiring certifications like ISO27001, ISO27701, ISO22301, PCI:DSS 3.2.1 (Level 1), NIST Tier 4, and SOC 2 Type II, in addition to the MPI License from Singapore MAS. Our Chief Information Security Officer reports directly to the CEO, underscoring the prioritization of security in our organization's hierarchy.

Our Security Team not only places great emphasis on credentials and expertise but also deeply values hands-on experience, rapid cognition, and dynamic learning. The challenges in the world of crypto are ever-evolving, and as such, our team prides itself on quick adaptability and robust teamwork, ensuring that we stay ahead of potential threats and always safeguard our user base.

Job Responsibilities:

Discover security vulnerabilities through design review, source code review and penetration testing, either manually or by using automated tools, and follow up on the remediation process;

Participant in relevant agile scrum meetings and provide professional recommendations on the design of security controls, libraries, and/or protocols;

Conduct security-related training sessions;

Implement various security control verification and risk detection through automated scripts;

Provide support on application-level security monitoring, intrusion detection, and incident response.

Job Requirements:

OSCP (or equivalent, such as CREST) is a MUST;

A deep understanding of OWASP Top 10 and the ability to detect and address logic flaws are highly desirable;

Minimum five years of experience in Web API testing and proficiency in using BurpSuite is preferred;

Experience with Mobile App testing, comprehension of jailbreaking/rooting a device, API hooking, reverse engineering, and de-obfuscation is highly beneficial;

Previous working experiences in a crypto trading platform would be highly advantageous.

Life @ Crypto.com

Empowered to think big. Try new opportunities while working with a talented, ambitious and supportive team.

Transformational and proactive working environment. Elevate employees to find thoughtful and innovative solutions.

Growth from within. We help to develop new skill-sets that would impact the shaping of your personal and professional growth.

Work Culture. Our colleagues are some of the best in the industry; we are all here to help and support one another.

One cohesive team. Engage stakeholders to achieve our ultimate goal - Cryptocurrency in every wallet.

Are you ready to kickstart your future with us?

Benefits

Competitive salary

Medical insurance package with extended coverage to dependents

Attractive annual leave entitlement including: birthday, work anniversary

Work Flexibility Adoption. Flexi-work hour and hybrid or remote set-up

Aspire career alternatives through us. Our internal mobility program can offer employees a diverse scope.

Work Perks: crypto.com visa card provided upon joining

Our Crypto.com benefits packages vary depending on region requirements, you can learn more from our talent acquisition team.

About Crypto.com:

Founded in 2016, Crypto.com serves more than 80 million customers and is the world's fastest growing global cryptocurrency platform. Our vision is simple: Cryptocurrency in Every Wallet™. Built on a foundation of security, privacy, and compliance, Crypto.com is committed to accelerating the adoption of cryptocurrency through innovation and empowering the next generation of builders, creators, and entrepreneurs to develop a fairer and more equitable digital ecosystem.

Learn more at https://crypto.com.

Crypto.com is an equal opportunities employer and we are committed to creating an environment where opportunities are presented to everyone in a fair and transparent way. Crypto.com values diversity and inclusion, seeking candidates with a variety of backgrounds, perspectives, and skills that complement and strengthen our team.

Personal data provided by applicants will be used for recruitment purposes only.

Please note that only shortlisted candidates will be contacted.

Required profile