Binance is a leading global blockchain ecosystem behind the world’s largest cryptocurrency exchange by trading volume and registered users. We are trusted by over 250 million people in 100+ countries for our industry-leading security, user fund transparency, trading engine speed, deep liquidity, and an unmatched portfolio of digital-asset products. Binance offerings range from trading and finance to education, research, payments, institutional services, Web3 features, and more. We leverage the power of digital assets and blockchain to build an inclusive financial ecosystem to advance the freedom of money and improve financial access for people around the world.
Responsibilities
Enhance and maintain the security postures of Binance’s affiliates specializing in DeFi and Web3.
Serve as the first responder for security issues identified through penetration tests, bug bounty programs, and assessments.
Analyze penetration test findings and implement code-level solutions to resolve vulnerabilities.
Collaborate on engineering architecture design, suggesting improvements to system security.
Integrate third-party blockchain security vendor solutions to enhance overall protection.
Evaluate and incorporate AI tools for security issue detection throughout the SDLC, automating these processes in CI pipelines.
Requirements
2+ years of full-time iOS development experience, or experience developing mobile applications using Kotlin and Java with the Android SDK.
Solid experience in at least two technical languages in Java/Swift/Kotlin/Go/Python/Rust.
Experience developing client-server applications with secure communication protocols.
Familiar with mobile security techniques, common weaknesses and mitigations.
Passion for cryptocurrency, DeFi, smart contracts, and blockchain security.
Team player with a quick-learning mindset.
Strong problem-solving skills and the ability to work independently.
Nice to Have
Experience with bug bounty programs.
Knowledge of blockchains, DeFi design patterns, wallet security and common Web3 security vulnerabilities.
Hands-on experience with smart contract auditing and development in Solidity or Rust.
Active GitHub portfolio or contributions to popular libraries/projects.
