Logo
OKX

Head of Platform & Infrastructure Audit

OKX, San Jose

Save Job

Head of Data Privacy & Engineering Audit

San Jose, California, United States

Overview

OKX is undertaking a significant global team buildout within its Internal Audit function, and we are looking for an experienced and visionary Head of Data Privacy & Engineering Audit. This is a unique opportunity to lead the assessment and assurance of data privacy and engineering controls within a leading crypto organization, ensuring the highest levels of data protection, integrity, and compliance for our global operations. You will build and lead a high-performing audit team, drive strategic assurance initiatives, and directly impact the secure and compliant handling of sensitive data across innovative crypto products and infrastructure.

We are seeking a seasoned IT audit professional with demonstrable experience in independently assessing data privacy and engineering practices within the crypto exchange or crypto product space. The ideal candidate will possess a deep understanding of data analytics, protection, governance, and quality principles applied to novel technical and control environments, coupled with strong leadership and analytical skills.

What You’ll Be Doing

  • Lead and manage a global Data Privacy & Engineering Audit team, including hiring and developing individuals across key regions.
  • Drive the execution of global audit programs, specifically assessing the design and operating effectiveness of controls over data privacy, data governance, data quality, data security, data modeling, ETL processes, and database management systems.
  • Oversee the independent validation of IT incidents related to data privacy and engineering, and provide critical audit support for group-wide IT certifications.
  • Collaborate effectively with other functional and regional Internal Audit portfolio leads to provide expert data analytics, privacy, and engineering controls testing and assurance for integrated audits.
  • Develop and implement advanced audit methodologies tailored to the unique complexities of managing sensitive data in high-volume, distributed crypto systems, including both on-chain and off-chain data.
  • Provide strategic audit insights and independent assurance on emerging data privacy and engineering risks in the cryptocurrency space to senior leadership and the Audit Committee.

What We Look For In You

  • Prior Crypto Exchange/Crypto Product Experience is Essential.
  • Strong Critical Thinking and Problem-Solving Skills: ability to analyze complex, novel technical and control environments, identify root causes, and propose effective, context-specific solutions.
  • Fundamental Understanding of Blockchain Technology: basic knowledge of distributed ledger technologies, consensus mechanisms (e.g., PoW, PoS), cryptography, and the lifecycle of a cryptocurrency transaction.
  • Data Analytics/SQL for Blockchain Data: advanced ability to perform complex queries, data modeling, and statistical analysis across diverse datasets, including CI/CD pipeline logs, commit histories, dependency manifests, and configuration management logs, to identify security vulnerabilities and ensure secure development lifecycle.
  • Data Governance Auditing: independently assessing data governance frameworks for on-chain and off-chain data, including data classification, ownership, and lifecycle management of sensitive crypto information.
  • Data Quality Auditing: independently evaluating data quality controls with a focus on transactional integrity and reconciliation across disparate systems.
  • Data Security and Privacy Auditing: deep understanding of global data privacy regulations and their application to crypto assets and user data, including KYC/AML considerations.
  • Data Modeling and Architecture Auditing: knowledge of data modeling for traditional databases and blockchain structures, auditing data architectures that integrate on-chain data, off-chain data, and analytics platforms.
  • ETL Process Auditing: ability to assess the security, integrity, and accuracy of ETL processes across blockchain networks, external APIs, and internal systems.
  • DBMS Auditing: expertise in auditing security configurations, access controls, logging, and patching of traditional databases and data stores used for blockchain nodes.
  • Risk Management Principles for Data Privacy & Engineering Auditing: advanced risk identification, assessment, mitigation, and monitoring methodologies for crypto environments.
  • Knowledge of Regulatory Requirements affecting Data Privacy & Engineering: understanding GDPR, CCPA, AML/CFT per FATF, sanctions compliance, and VASP licensing considerations, and how they translate to technical controls.

Benefits

  • L&D programs and education subsidy for employees' growth and development
  • Various team building programs and company events
  • Wellness and meal allowances
  • Comprehensive healthcare schemes for employees and dependents

OKX Equal Employment Opportunity: OKX is committed to equal employment opportunities regardless of race, color, genetic information, creed, religion, sex, sexual orientation, gender identity, lawful alien status, national origin, age, marital status, and non-job related disability, or protected veteran status. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

The salary range for this position is $240,000 - $360,000.

The salary offered depends on a variety of factors, including job-related knowledge, skills, experience, and market location. In addition to the salary, a performance bonus and long-term incentives may be provided as part of the compensation package, as well as a full range of medical, financial, and/or other benefits, dependent on the position offered.

Applicants should apply via OKX internal or external careers site.

Information collected and processed as part of the recruitment process is subject to OKX's Candidate Privacy Notice.

#J-18808-Ljbffr