Lead Security Engineer

Hex Trust is Asia’s leading provider of digital asset custody solutions for Banks & Financial Institutions, using leading-edge Blockchain technology. Led by innovators from the financial services industry, Hex Trust has built a proprietary platform that delivers a new way for financial institutions, asset managers, and corporations to safely and efficiently operate in the Blockchain ecosystem. Institutional adoption of digital assets and DeFi requires a fundamental shift in the way banks and financial institutions operate. Hex Trust is the link that connects the traditional financial world to the digital assets ecosystem.

Position Summary

We have a newly created position of Lead Security Engineer to help us grow our Information Security Team. You will be embedded into Hex Trust’s Developer environment, leading the DevSecOps efforts on our platforms. This role is technically hands-on and you, the applicant will need to bring your A game in deploying industry leading SecOps practices, frameworks, tool arsenal, and also be able to help design and architect solutions. The role, while highly technical, is a management position, you need to have experience in leading and managing successful teams. As you can see from our introduction, we are growing fast and attitude, passion and mission focus are just as important to us as your technical ability.

We expect that you are coming from a regulated or licenced environment, so you know how to build systems to conform to frameworks and guidelines such as OWASP, ISO, CIS and MITRE. You thrive in a CI/CD environment working with NodeJS, Typescript, Rust, Python languages and you have exposure or at least an understanding of the DeFi/Blockchain’s world.

Duties & Responsibilities

• Lead application security reviews and threat modeling, including Software Composition Analysis (SCA), Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Interactive Application Security Testing (IAST), and Runtime Application Self-Protection (RASP)
• Working with enterprise wide security architecture for on-prem and cloud-based application security solutions such as SonarQube, Acunetix, Snyk and proficiency Undertake Vulnerability Management (Code, Application, Platform and System) activities to help protect the enterprise.
• Experience in working with Container environments on Docker, Terraform, Nomad, Consul and Ansible. The applicant should possess one or more common languages NodeJS, Typescript, Rust, Python.
• Ability to articulate complex topics (written and verbal) to both a technical and non technical audience.
• A strong team leader and people manager capable of demonstrating solid work ethic and commitment to achieving team and organisation goals.

Requirements

• University degree (Information Security)

• SANS Institute, ISC2 or ISACA certifications such as :
 CISSP, GPYC, GEVA, GWAPT CISM,CASE, CASS, CSSLP, GWEB, GCPN
• Have significant integration experience as a software architect
• Be excellent in interpersonal and collaboration skills
• Be able to present proposals to technical and business audiences
• Be able to operate at an intermediate level of written and spoken communication
• Be excellent in communication skills and empathy towards customers
• Have good understanding of applied cryptography

Benefits

As one of the leading Web3 innovators, Hex Trust offers a front-row seat in the ever-changing blockchain & crypto industry. We genuinely believe that people are our greatest asset, and invest heavily so they’re best prepared to support our mission to unlock ownership in decentralized markets! You will be joining a company that is always committed to creating a supportive & inclusive environment that promotes personal and professional growth that furthers your success and drives innovation, collaboration, and passion in the blockchain space.

At Hex Trust, we are proud of our R.A.P.I.D. culture:

• Respect and Inclusion
• Agile
• Passionate
• Indivisible
• Driven by integrity

Join us at Hex Trust and not only can you look forward to working with blockchain professionals to build the decentralized future, but also:

• Competitive Salaries & Bonuses
• Generous Amounts of Paid Time Off (incl. leave for Birthdays, Work Anniversary, and Mental Health etc.)
• Flexible Work Arrangements
• Access to Corporate Discounts and exclusive Employer Perks
• Medical & Retirement Plans
• Professional Learning and Development Opportunities
• Elevate your work using cutting-edge technology
• Fun & friendly office spaces in Hong Kong, Singapore, Dubai and Vietnam
• Regular company & social events

Hex Trust is an equal-opportunity employer devoted to diversity and inclusion in the workplace. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status or disability status.