Senior Security Engineer, Application Security
Trail of Bits- Full Time
- Senior (5 to 8 years)
Candidates must possess an OSCP (or equivalent, such as CREST) certification, a deep understanding of OWASP Top 10 vulnerabilities and logic flaws, a minimum of four years of experience in Web API testing, and proficiency in using BurpSuite. Fluency in spoken and written English is essential, with proficiency in Mandarin being advantageous.
The Application Security Engineer (Pentester) will discover security vulnerabilities through design review, source code review, and penetration testing, follow up on remediation processes, participate in agile scrum meetings and provide professional recommendations on security controls, conduct security-related training sessions, implement security control verification through automated scripts, and provide support on application-level security monitoring and incident response.
Cryptocurrency trading and financial services platform
Crypto.com provides a platform for trading and managing cryptocurrencies, catering to over 100 million customers worldwide. Users can buy, sell, and store various cryptocurrencies while benefiting from services like transaction processing and card issuance. The platform generates revenue primarily through transaction fees and premium services, ensuring a secure and user-friendly experience. What sets Crypto.com apart from its competitors is its strong focus on regulatory compliance, security, and privacy certifications, which builds trust among users. The company's goal is to accelerate cryptocurrency adoption, aiming to have 'Cryptocurrency in Every Wallet™' and to support builders and entrepreneurs in creating a more equitable digital ecosystem.