Binance

Security Consultant

Binance

full-time

Posted on:

Origin:  • 🇸🇬 Singapore

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

GoiOSReactSQLSwiftWeb3

About the role

  • Lead security assessments and audits focusing on mobile applications and blockchain platforms.
  • Ensure the security of iOS applications by applying best practices in SWIFT development and mobile security mechanisms such as secure storage, sandbox isolation, anti-debugging, and Secure Enclave.
  • Conduct security reviews and audits of blockchain technologies, including multi-signature wallets, smart contracts, cryptographic algorithms (ECDSA, EdDSA), and private key management.
  • Collaborate with development teams to identify security risks and recommend mitigation strategies.
  • Provide clear and actionable security guidance, documentation, and training to technical and non-technical stakeholders.
  • Support compliance efforts by aligning security practices with industry standards and regulations.
  • Act as a part-time consultant when needed, offering expert advice and security strategy support.

Requirements

  • Extensive experience in iOS security, familiar with SWIFT.
  • Deep understanding of mobile security mechanisms including secure storage, sandboxing, anti-debugging, and Secure Enclave.
  • Proven ability to secure mobile applications throughout the development lifecycle.
  • Strong knowledge of blockchain technology and security.
  • Experience with multi-signature wallets, smart contract auditing, cryptographic algorithms (ECDSA, EdDSA), and private key management.
  • (Nice-to-have) Proficiency in React framework and frontend security, including knowledge of common vulnerabilities such as XSS, CSRF, and SQL injection.
  • (Nice-to-have) Experience reviewing frontend code and providing security optimization recommendations.
  • (Nice-to-have) Familiarity with Go language development and backend security, including API security, data encryption, authentication/authorization (OAuth, JWT), and prevention of vulnerabilities like RCE and DoS.
  • (Nice-to-have) Experience in security auditing and compliance, with knowledge of standards such as OWASP and ISO 27001.
  • (Nice-to-have) Strong communication and consulting skills, capable of working as a part-time advisor, delivering security training, and producing clear documentation.