Head of Software & Digital Asset Audit

Singapore
Permanent
Full-time

1 month ago

OKX will be prioritising applicants who have a current right to work in Singapore, and do not require OKX's sponsorship of a visa.Who We AreAt OKX, we believe that the future will be reshaped by crypto, and ultimately contribute to every individual's freedom.OKX is a leading crypto exchange, and the developer of OKX Wallet, giving millions access to crypto trading and decentralized crypto applications (dApps). OKX is also a trusted brand by hundreds of large institutions seeking access to crypto markets. We are safe and reliable, backed by our Proof of Reserves.Across our multiple offices globally, we are united by our core principles: We Before Me, Do the Right Thing, and Get Things Done. These shared values drive our culture, shape our processes, and foster a friendly, rewarding, and diverse environment for every OK-er.OKX is part of OKG, a group that brings the value of Blockchain to users around the world, through our leading products OKX, OKX Wallet, OKLink and more.About the OpportunityOKX is undertaking a significant global team buildout within its Internal Audit function, and we are looking for an experienced and visionary Head of Software & Digital Asset Audit. This is a unique opportunity to lead a highly specialized team in performing deep technical audits of the company's proprietary software and the entire ecosystem of crypto-native technologies, focusing on the security and integrity of application code and digital assets.What You'll Be Doing

Lead and manage a global Software & Digital Asset Audit team, building a highly specialized audit team of software and digital asset security experts.
Drive the planning and execution of a risk-based audit portfolio performing deep technical audits of OKX's developer workflow, software development toolchain, high risk code base, product security, blockchain technologies, and AI integrated applications.
Collaborate effectively with Engineering and Product teams to provide assurance and risk insights throughout the system development lifecycle.
Develop and implement advanced audit methodologies tailored to assessing OKX's developer workflow, software development toolchain, high risk code base, smart contracts, proprietary products including exchange software, and digital wallet infrastructure.
Provide strategic audit insights and independent assurance on emerging software and digital asset risks in the cryptocurrency space to senior IA, Product, and Engineering leadership.

What We Look For In YouWe are seeking a seasoned audit professional with demonstrable experience in independently assessing application security and blockchain technologies within the crypto exchange or crypto product space. The ideal candidate will possess deep, hands-on technical skills, coupled with strong leadership and analytical capabilities.Key Qualifications:

Prior Crypto Exchange/Crypto Product Experience is Essential.
Strong Critical Thinking and Problem-Solving Skills: Capacity to analyze complex, often novel, technical and control environments unique to crypto, identify intricate root causes of issues, and propose effective, context-specific solutions.
Deep Understanding of Blockchain Technology: Deep knowledge of distributed ledger technologies, consensus mechanisms, cryptography, and smart contracts.
Product & Application Security (AppSec): Expertise in performing deep technical dives into the Software Development Lifecycle (SDLC) including performing code level assessments, developer workflows, system development toolchains, auditing of application controls (Input, Processing, Output), and reviewing build/test/release system implementations for critical exchange platforms.
Digital Asset & Blockchain Security: Expert-level ability to own and execute technical audits of the entire ecosystem of technologies that secure crypto-asset operations, including Smart Contracts (Solidity, Rust, etc.), Layer 1 & 2 Protocols, and Wallet Infrastructure (HSMs, MPC).
AI Application Auditing: Experience auditing the secure implementation and integration of AI models within proprietary software, focusing on input/output validation and resilience against AI-specific attack vectors like prompt injection or model manipulation.

Perks & BenefitsCompetitive total compensation package * L&D programs and education subsidy for employees' growth and developmentVarious team building programs and company events * Wellness and meal allowances

Comprehensive healthcare schemes for employees and dependants
More that we love to tell you along the process!

#LI-RF1Information collected and processed as part of the recruitment process of any job application you choose to submit is subject to OKX's .

OKX

Apply Now