Application Security Engineer

Responsibilities

• Enhance and maintain the security postures of Binance’s affiliates specializing in DeFi and Web3
• Serve as the first responder for security issues identified through penetration tests, bug bounty programs, and assessments
• Analyze penetration test findings and implement code-level solutions to resolve vulnerabilities
• Collaborate on engineering architecture design, suggesting improvements to system security
• Integrate third-party blockchain security vendor solutions to enhance overall protection
• Evaluate and incorporate AI tools for security issue detection throughout the SDLC, automating these processes in CI pipelines

Requirements

• 2+ years of full-time iOS development experience, or experience developing mobile applications using Kotlin and Java with the Android SDK
• Solid experience in at least two technical languages in Java/Swift/Kotlin/Go/Python/Rust
• Experience developing client-server applications with secure communication protocols
• Familiar with mobile security techniques, common weaknesses and mitigations
• Passion for cryptocurrency, DeFi, smart contracts, and blockchain security
• Team player with a quick-learning mindset
• Strong problem-solving skills and the ability to work independently

Nice to Have

• Experience with bug bounty programs
• Knowledge of blockchains, DeFi design patterns, wallet security and common Web3 security vulnerabilities
• Hands-on experience with smart contract auditing and development in Solidity or Rust
• Active GitHub portfolio or contributions to popular libraries/projects