Senior Manager, App Security Audit

Overview

OKX is undertaking a significant global team buildout, and we are looking for an experienced Manager or Senior Manager to join our Software & Digital Asset Audit team. This is a unique opportunity for a subject matter expert in Application Security (AppSec) to execute critical assurance projects that directly impact the security of our proprietary trading platform. As a senior individual contributor, you will perform deep technical dives into our in-house developed software to identify and assess security flaws.

OKX prioritises applicants with a current right to work in Singapore and who do not require OKX sponsorship for a visa.

• Serve as the subject matter expert for Application Security (AppSec), performing deep technical assessments of the Secure Software Development Lifecycle (SDLC) including source code review for our proprietary products.
• Leverage your deep expertise in AppSec to both lead our software security assurance program and contribute to a wide range of audits across digital asset and AI application security.
• Contribute to the annual risk-based audit plan by identifying emerging application security risks and scoping potential audit projects.
• Collaborate effectively with Engineering, Product, and security stakeholders to communicate audit findings, provide value-add recommendations, and monitor remediation plans.
• Develop and maintain expert knowledge of the evolving crypto threat landscape and application security best practices to ensure audit approaches remain current and effective.

We are seeking a hands-on, deeply technical auditor who thinks like a software developer and a security researcher. You are a recognized subject matter expert in Application Security, with demonstrable experience assessing custom software in complex, high-technology environments—ideally within crypto or FinTech. You should have a passion for understanding the entire software development lifecycle and a proven ability to find vulnerabilities in complex, custom-built applications.

• Crypto & Blockchain Acumen: Prior experience with a crypto exchange or crypto product is highly preferred. You must have a fundamental understanding of blockchain technology, including distributed ledgers, consensus mechanisms, and cryptography.
• Application Security (AppSec) (SME): Deep expertise in auditing the Secure Software Development Lifecycle (SDLC) and performing technical security assessments of custom software, including business process application controls.
• Critical Thinking for Complex Environments: A proven capacity to analyze complex technical environments, identify intricate root causes, and propose effective, context-specific solutions.
• Data Analysis & SQL: Experience using SQL for data analysis is highly desired. The ability to achieve proficiency in performing data analytics with SQL within the first 90 days is required.
• Broad Expertise Across Software & Digital Asset Security: Demonstrable experience auditing the design and effectiveness of controls in several of the following areas: information protection, authentication, access control, logging and monitoring, and related security controls.

• Competitive total compensation package
• L&D programs and education subsidy for employees' growth and development
• Various team building programs and company events
• Wellness and meal allowances
• Comprehensive healthcare schemes for employees and dependants
• More that we love to tell you along the process

Information collected and processed as part of the recruitment process of any job application you choose to submit is subject to OKX's Candidate Privacy Notice.

• Mid-Senior level

• Full-time

• Other, Information Technology, and Management
• Industries: IT Services and IT Consulting

Referrals increase your chances of interviewing at OKX by 2x

Get notified about new Senior Security Manager jobs in Singapore, Singapore .

Seniority: Mid-Senior level | Employment type: Full-time | Job function: Other, Information Technology, and Management | Industry: IT Services and IT Consulting