Industry: Science & Technology
Specialism: Information Technology (IT) - IT - Security
ClosedOur client is the first leading wallet company in the world to offer Staking and masternode rewards on user holdings, making it easy for users to grow their digital assets effortlessly.
Our client offers a secure mobile wallet, high-end cold storage wallet for advanced users and custodial services for institutional investors. Emphasize long-term security, reliability, and convenience. The company believes in a more free and open world driven by the blockchain technology and human initiatives driven by diversity behind such technology.
The company support POS blockchains and only do the greenest mining-liquidity mining.
- Responsible for technical risk management, risk assessment, ISO27001 and other security assessment and annual review;
- Promote the identification, coordination, tracking, improvement and optimization and post-assessment of data security risks in business departments;
- Promote the construction of the company's data security governance system, including data encryption, data desensitization, privacy protection, etc.;
- Security incident investigation, emergency response, and regular delivery of security assessment and missed scan reports;
- Risk assessment and rectification, management, coordination, promotion and supervision of the implementation of corresponding rectification projects;
- Information security work experience in large-scale Internet or financial industry, familiar with laws and regulations related to financial security;
- Familiar with security attack and defense technologies, and have a deep understanding of network security, system security, and application security;
- Have experience in application system security analysis and design and familiar with the SDLC development process, and have some research on threat modeling;
- Participate in the review of the company's business system, and can define new security specifications to help the company improve the company's security technology system;
- Research on cutting-edge security attack, fraud, and prevention technologies.
- Have good programming and development capabilities, and experience in large-scale project development is better
- Good to have the thinking of Party A's safety construction system
- Familiar with security certificates such as CISP and CISSP is better
- Familiar with AWS security products, IT auditing, implementation methods of business security attacks and the corresponding prevention points is better