Security Engineer (Penetration test) at Binance | Powderkeg

Location: Asia

Employment Type: Full-time Onsite or Remote

Team: Security

Binance is the global blockchain company behind the world’s largest digital asset exchange by trading volume and users, serving a greater mission to accelerate cryptocurrency adoption and increase the freedom of money.

Are you looking to be a part of the most influential company in the blockchain industry and contribute to the crypto-currency revolution that is changing the world?


  • Partner with internal and external Security, Engineering, and Business functions to find, fix, and prevent security vulnerabilities in Binance platform
  • Collaborate closely with engineering and other teams to conduct regular security assessments including vulnerability assessments, penetration testing, deeper design reviews and code reviews
  • Develop technical solutions to help mitigate appsec related threats to the Binance ecosystem
  • Drive security improvements by providing security guidance on critical, highly sensitive and evolving stream of new products and technologies
  • Conduct research to identify new attack vectors against Binance's products and services


  • B.S. or M.S. Computer Science or related field, or equivalent experience
  • Strong understanding of common web application controls, such as CSP, SRI, the same-origin policy, cookie security, OAuth, etc
  • Strong understanding and practical experience attacking web application vulnerabilities such as XSS, CSRF, XXE, SQLi, LFI/RFI, etc
  • Expertise in Secure SDL practices including whitebox and blackbox assessments, code reviews, design reviews, threat modelling, etc
  • Technical experience across various product security areas including web applications, mobile, infrastructure, cryptography, etc
  • Strong software development skills in one or more languages (Rust, Python, C/C++, Java, Node.js, etc)
  • Experience with security software development lifecycle in a fast-pace environment
  • Experience translating technical concepts into language for broad technical and non-technical audiences
  • Deep technical ability and creativity to think and act like a hacker
  • Experience understanding threats and ensuring security and privacy on the internet

Good to have

  • Good communication skills and leads by influence across all levels
  • Experience working on blockchain security
  • Experience contributing to the security community in DeFi, other cryptocurrency open-source projects, public research, presentations, etc
  • Experience in the financial industry, FinTech, and/or cryptocurrency space

Working at Binance

• Do something meaningful; Be a part of the future of finance technology and the no.1 company in the industry

• Fast moving, challenging and unique business problems

• International work environment and flat organisation

• Great career development opportunities in a growing company

• Possibility for relocation and international transfers mid-career

• Competitive salary

• Flexible working hours, Casual work attire

Job Summary
  • Job Title
    Security Engineer (Penetration test)
  • Company
  • Location
  • Employment Type
    Full time
Ready to apply?
Ready to apply?