The future of finance is being rewritten — and it’s powered by blockchain, decentralized systems, and a new generation of tech-forward innovators. At the heart of this transformation is OKX, one of the world’s leading cryptocurrency exchanges, trusted by over 20 million users across 180+ regions. If you're passionate about security, compliance, and the evolving landscape of Web3, the OKX Graduate Program (Supernova) offers a powerful launchpad for your career.
This 3-year Career Accelerator Program is designed to fast-track high-performing graduates into technical experts and future leaders in fields like Product Engineering, Product Management, and Product Design. As a Security Engineer within Technology Governance, Certification & Audit, you’ll play a pivotal role in safeguarding one of the most dynamic platforms in crypto today.
👉 Discover how you can shape the future of secure digital finance — explore opportunities at OKX.
What You’ll Do as a Graduate Security Engineer
In this role, you’ll be immersed in the full lifecycle of security and compliance for a global crypto platform serving millions of daily active users. You’ll work cross-functionally with engineering, product, legal, and risk teams to ensure OKX remains resilient, compliant, and ahead of emerging threats.
Your core responsibilities will include:
- Lead and coordinate internal and external audits, managing communication with auditors, collecting evidence, and ensuring timely delivery of audit requests.
- Respond to due diligence questionnaires from regulators, partners, and third parties — translating complex compliance requirements into actionable steps.
- Support licensing applications and renewals by developing and maintaining critical technology documentation aligned with local and international regulatory standards.
- Identify security and compliance control gaps across systems and processes, then collaborate with stakeholders to design and implement effective remediation strategies.
- Design robust security controls that align with industry best practices in application security, infrastructure security, and regulatory frameworks such as ISO 27001, SOC 2, and NIST CSF.
- Conduct risk assessments and control evaluations, proactively identifying vulnerabilities and recommending mitigation measures.
- Develop and maintain high-quality documentation, including security policies, standard operating procedures (SOPs), and compliance guidelines.
- Bridge the gap between regulatory expectations and internal operations, ensuring smooth alignment across global teams and time zones.
This is more than just a technical role — it’s an opportunity to become a strategic enabler of trust, transparency, and innovation in the crypto ecosystem.
Who We’re Looking For
We’re seeking graduates who are technically strong, analytically sharp, and driven by a mission to build a more secure financial future. Whether your background is in computer science, information systems, or engineering, what matters most is your mindset.
Core Requirements
- Bachelor’s degree in Computer Science, Information Systems, Engineering, or a related technical field.
- Solid understanding of information security principles, including risk modeling, control design, and implementation.
- Ability to conduct holistic risk assessments, breaking down complex technical or procedural challenges into manageable components.
- A compliance-first mindset with strong communication skills — you’ll be translating technical details for non-technical stakeholders and vice versa.
- Proactive problem-solver with a growth mindset, capable of managing multiple projects under tight deadlines in a fast-paced environment.
- Demonstrated ability to collaborate across teams, embrace change, and thrive in ambiguity — essential traits in a rapidly evolving industry.
Preferred Qualifications (Nice-to-Haves)
- Hands-on experience with key technologies: relational databases (RDBMS), operating systems (especially Linux), networking fundamentals, encryption & cryptography, identity and access management (IAM), and SDLC/change management practices.
- Familiarity with cloud platforms like AWS or Alibaba Cloud; certifications (e.g., AWS Certified Solutions Architect) are a strong plus.
- Working knowledge of containerization technologies such as Kubernetes or Docker.
- Programming/scripting proficiency in Python, Java, or Go; experience with development tools like Git, npm, or Webpack is beneficial.
- Exposure to major security frameworks and standards: ISO 27001, NIST Cybersecurity Framework (CSF), SOC 2, CSA STAR.
- Holding or pursuing recognized certifications such as CISA, CISSP, CCSP, or CCSK from bodies like ISACA or (ISC)² will give you an edge.
- Fluency in both English and Mandarin is highly valued for collaboration across OKX’s global teams.
Why Join the OKX Supernova Program?
OKX doesn’t just invest in technology — we invest in people. Our culture is built on three core values: We Win as a Team, Embrace Change, and Do the Right Thing. Here’s what sets us apart:
- 🌱 Structured Growth Path: The 3-year Supernova Program includes rotations, mentorship, and continuous learning tailored to accelerate your expertise.
- 💡 Innovation at Scale: Work on real-world challenges impacting millions of users in the fast-moving world of crypto and Web3.
- 🌍 Global Impact: Be part of a diverse, inclusive team spanning continents — where your voice matters and your contributions have reach.
- 🎓 Learning & Development: Access to L&D programs, education subsidies, and certification support to fuel your long-term career journey.
👉 Unlock your potential in blockchain security — start your journey with OKX today.
Frequently Asked Questions (FAQ)
Q: Is prior experience in cryptocurrency required to apply?
A: No. While familiarity with blockchain or crypto is beneficial, we value foundational knowledge in security, compliance, and systems thinking more. We provide onboarding and training to bring you up to speed.
Q: Will OKX sponsor work visas for international candidates?
A: OKX prioritizes applicants who already have the right to work in Singapore. Visa sponsorship is limited and evaluated on a case-by-case basis.
Q: Can I apply to multiple roles in the Supernova Program?
A: Yes — but please apply to your first-choice role. We’ll consider you for other relevant opportunities during the process.
Q: What does “Technology Governance” mean in this context?
A: It refers to the framework of policies, controls, and processes that ensure our technology meets regulatory requirements, industry standards, and internal risk thresholds — especially critical in financial services and crypto.
Q: How technical is this role compared to other security positions?
A: This role balances technical depth with governance strategy. You’ll need strong technical foundations but will also focus on documentation, audits, risk analysis, and stakeholder coordination.
Q: Are there opportunities for advancement after the 3-year program?
A: Absolutely. Graduates often move into senior engineering, compliance leadership, or specialized security roles across OKX’s global operations.
Perks & Benefits
We believe great talent deserves great rewards. At OKX, you’ll enjoy:
- Competitive total compensation package
- Education subsidies and L&D programs for continuous growth
- Wellness allowances and comprehensive healthcare coverage (including dependents)
- Flexible working hours and hybrid work options
- Regular team-building events and company-wide gatherings
- A dynamic startup-like environment within a globally recognized brand
Ready to Launch Your Career in Crypto Security?
If you’re ready to be part of shaping the future of decentralized finance — where innovation meets integrity — we want to hear from you.
Core Keywords: Security Engineer, Technology Governance, Compliance Audit, Cryptocurrency Exchange, Web3 Security, Risk Assessment, ISO 27001, SOC 2