Security Engineering Team Lead

Coins.ph

Coins.ph

Other Engineering
Shanghai, China
Posted on Wednesday, November 29, 2023
Join the Pioneer Crypto Brand in the Philippines!
Coins is the most established crypto brand in The Philippines and has gained the trust of more than 18 million users. Through the easy-to-use mobile app, users can buy and sell a variety of different cryptocurrencies and access a wide range of financial services.
Coins is fully regulated by the Bangko Sentral ng Pilipinas (BSP) and is the first ever crypto-based company in Asia to hold both Virtual Currency and Electronic Money Issuer licenses from a central bank.

Responsibilities

  • 1. Lead the Security Engineering team with a focus on corporate IT, cloud, infra and networking, and applications.
  • 2. Lead and conduct VAPT/SAST/DAST/MAST activities etc, Source code review and threat modelling on various platforms such as infrastructure, web application and mobile applications
  • 3. Author documentation of findings, analysis, remediation recommendations, report preparation and presentation of identified vulnerabilities/weakness
  • 4. Lead the implementation and operation of secure development lifecycle and automation of security tools and scanner to ensure our products and systems are secure
  • 5. Develop attack techniques, tool/ exploit development, intelligence analysis and adversarial tactics
  • 6. Provide guidance to application and devops team on security best practices
  • 7. Support remediation effort and track open issues and follow up to ensure remediation
  • 8. Evaluate and implement new technologies while keeping in view the cybersecurity risks, technology risks and regulatory compliance;
  • 9. Involve in reviewing various security aspects for new initiatives that interface and connect with external parties (like those involved in leveraging open standards and APIs);
  • 10. Develop and implement a Cloud Security Design review process for cloud computing use, including IAAS, PAAS and SAAS implementations; Provide advice on data protection and security controls in Big Data and data analytic implementations;
  • 11. To provide and bring in technical expertise to validate application, cloud and corporate office architecture, design, code, and implementation according to security standards across the company 12. IT architecture and Platform suite including Data.
  • 13. To Implement and manage security components within the platform (AWS Cloud implementation) around automation, access controls, compliance, alerting, and monitoring.
  • 14. To recognize areas of security improvements within the platform and support a secure continuous delivery approach.
  • 15. To assess the current Platform infrastructure and work with leaders to develop strategies and a roadmap for improvement.
  • 16. Lead and implement endpoint security controls and security hardening baseline across all endpoints including system logging.

Requirements

  • 1. Bachelor's degree in Cybersecurity, Computer Science, or similar.
  • 2. 10+ years working in a security engineering role within a crypto, web3, tech or banking company, with 2 years in a leadership role.
  • 3. Ability to to communicate effectively in English and Chinese
  • 4. A passion for solving complex challenges in high-growth startups.
  • 5. Self-motivation and drive to learn new skills.
  • 6. Recognized training or cybersecurity certifications (e.g., OSCP, OWSP, OSEP, OSWA or OSWE).
  • 7. In-depth understanding of common attacker tools and techniques, incident response, and prevention.
  • 8. Experience with AWS, and other cloud platforms is preferred.
  • 9. Experience with Okta, GSuite,PAM and cloud-based ZTNA services is preferred.
  • Strong communication skills with the ability to explain technical security and software concepts to a non-technical audience.
  • 10. Experience with Python, Java, Terrafor, and/or Kubernetes.
  • 11. Strong knowledge of common software development tools and infrastructure, including CI/CD tooling and pipelines.
  • 12. Published articles, journals, or blogs related to cybersecurity.
Join the Coins Team Now!
Meaningful Collaborations - The successful candidate will work cross-functionally with other relevant teams to carry out implementations that will improve and create an impact on customer experience.
Scalable Growth - Be part of a fast-growing organization with the vision to expand its territories outside APAC which will provide opportunities for career advancement.
A Space For Bright Ideas - Let your bright ideas be converted into meaningful changes! Coins culture welcomes new ideas backed up by data to create an impact.