Senior Security Engineer, Application Security
Trail of Bits- Full Time
- Senior (5 to 8 years)
Candidates must possess an OSCP (or equivalent, such as CREST) certification and demonstrate a deep understanding of the OWASP Top 10. They should be able to detect and address logic flaws, and fluency in spoken and written English is essential, with proficiency in Mandarin being an advantageous skill.
The Application Security Engineer (Pentester) will identify security vulnerabilities through design review, source code review, and penetration testing, both manual and automated. They will follow up on the remediation process, participate in agile scrum meetings, and provide security recommendations for design and controls. Furthermore, they will conduct security-related training sessions, implement security control verification and risk detection through automated scripts, and provide support on application-level security monitoring, intrusion detection, and incident response.
Cryptocurrency trading and financial services platform
Crypto.com provides a platform for trading and managing cryptocurrencies, catering to over 100 million customers worldwide. Users can buy, sell, and store various cryptocurrencies while benefiting from services like transaction processing and card issuance. The platform generates revenue primarily through transaction fees and premium services, ensuring a secure and user-friendly experience. What sets Crypto.com apart from its competitors is its strong focus on regulatory compliance, security, and privacy certifications, which builds trust among users. The company's goal is to accelerate cryptocurrency adoption, aiming to have 'Cryptocurrency in Every Wallet™' and to support builders and entrepreneurs in creating a more equitable digital ecosystem.