Clash
of Jobs
OKX, a leading crypto exchange, is seeking a DevSecOps Security Expert to join their team in Hong Kong. The ideal candidate will be responsible for managing vulnerabilities, integrating security requirements, and optimizing vulnerability scanning and repair processes.
Responsibilities:
- Manage vulnerabilities discovered by SAST and DAST.
- Integrate security requirements and optimize vulnerability scanning.
- Reproduce vulnerabilities in complex environments.
- Develop and maintain SAST, DAST, and IAST scanning rules.
- Perform code audits to improve vulnerability coverage.
- Provide technical guidance and support to team members.
Requirements:
- At least 5 years of experience in DevSecOps or related fields.
- Proficient in the principles and practices of SAST, DAST, and IAST.
- Experience in using various scanning engines for code auditing.
- Deep understanding of microservice structure.
- Familiar with vulnerability reproduction in microservice rack/RPC scenarios.
- Understand service link tracing technology.
- Solid Java and/or Golang development skills.
- Excellent problem-solving skills and attention to detail.
- Good communication and teamwork skills.
OKX offers:
- Competitive total compensation package
- L&D programs and education subsidy
- Various team building programs and company events
- Wellness and meal allowance
- Comprehensive healthcare schemes
OKX
OKX is a leading cryptocurrency exchange and developer of the OKX Wallet, providing access to crypto trading and decentralized applications. Trusted by institutions, OKX emphasizes safety and reliability, evidenced by its Proof of Reserves. With a global presence, OKX fosters a culture driven by core principles, promoting a collaborative and diverse environment. The company is dedicated to reshaping the future through crypto, contributing to individual freedom. OKX focuses on innovation, regulatory compliance, and delivering a user-centric experience in the rapidly evolving web3 space.