Security Engineer (Penetration test)

( )  Remote (Asia | APAC Time Zone Permitted)

Job Type : Full-Time
Experience : 3 to 5 years
Education : Bachelor Degree

Job Detail

Please note, all positions at Binance require relevant experience. Applications without required experience will not be considered. 

Binance is the global blockchain company behind the world’s largest digital asset exchange by trading volume and users, serving a greater mission to accelerate cryptocurrency adoption and increase the freedom of money for people around the world.

Are you looking to be a part of one of the most influential companies in the blockchain industry and contribute to the crypto-currency revolution that is changing the world?



  • Partner with internal and external security, engineering and business functions to find, fix, and prevent security vulnerabilities in Binance platform
  • Collaborate closely with engineering and other teams to conduct regular security assessments including vulnerability assessments, penetration testing, deeper design reviews and code reviews
  • Develop technical solutions to help mitigate appsec related threats to the Binance ecosystem
  • Drive security improvements by providing security guidance on critical, highly sensitive and evolving stream of new products and technologies
  • Conduct research to identify new attack vectors against Binance's products and services


  • 4 - 5 years of relevant experience with a degree on B.S. or M.S. Computer Science or related field
  • Strong understanding of common web application controls, such as CSP, SRI, the same-origin policy, cookie security, OAuth, etc
  • Strong understanding and practical experience attacking web application vulnerabilities such as XSS, CSRF, XXE, SQLi, LFI/RFI, etc
  • Expertise in Secure SDL practices including whitebox and blackbox assessments, code reviews, design reviews, threat modelling, etc
  • Technical experience across various product security areas including web applications, mobile, infrastructure, cryptography, etc
  • Strong software development skills in one or more languages (Rust, Python, C/C++, Java, Node.js, etc)
  • Experience with security software development lifecycle in a fast-pace environment
  • Experience translating technical concepts into language for broad technical and non-technical audiences
  • Deep technical ability and creativity to think and act like a hacker
  • Experience understanding threats and ensuring security and privacy on the internet
  • Mandarin speaking required, to interact with clients across the region


• Do something meaningful; Be a part of the future of finance technology and the no.1 company in the industry

• Fast moving, challenging and unique business problems

• International work environment and flat organisation

• Great career development opportunities in a growing company

• Possibility for relocation and international transfers mid-career

• Competitive salary

• Flexible working hours, Casual work attire

50 total views, 1 today
Apply this position
LinkedIn-SG - 1 year ago