Security Engineer (crypto exchange)

(SG)

About the Company

Our client is the biggest wallet with over 16 millions users and set up in 2014. Company now is accelerate to the next level by expanding the business in crypto exchange in SEA and led by ex-Binance Senior Leader. Company has 600 employees across the globe with license in Philippines and Thailand, with business in Philippines, Singapore, Thailand, Latin America, Europe.

Responsibilities

  • Develop and implement comprehensive information security and IT risk management program
  • Reviewing existing security measures and updating protocols as needed.
  • Overseeing the daily operations of the company to identify potential security risks and room for improvements.
  • Provide guidance on areas of risk assessment across projects and systems.
  • Identify security risks and gaps while ensuring organisation assets and information are secured.
  • Working with management to develop and implement an appropriate budget for security programs.
  • Managing, evaluating, and resolving any physical or digital security incidents or breaches. Presenting risk assessments and improved security policies to management team members.
  • Formulate response and recovery for security incidents.
  • Experience with automation and IaaC tools: Terraform, Ansible, etc;
  • Understanding of cloud security aspects (AWS is preferable);
  • Knowledge of common cyber threats and vulnerabilities, protection mechanisms;
  • Be up-to-date with the latest security development, techniques, and tools;
  • Excellent verbal and written communication in the English language.

Requirements

  • At least 7+ years of experience in IT, with a background in risk management & information security
  • Experienced in Information Security in the fintech sector.
  • Knowledge of security-related technologies (IPS/IDS, WAF, SIEM, DDOS etc.)
  • Prior people management experience and proven leadership skills.
  • Understanding of containers, containers security and orchestration;
  • Vulnerability assessment and penetration testing skills;