OKX
Senior Manager, Digital Trust & Controls Assurance Audit, (Cybersecurity Governa
OKX, San Jose, California, United States, 95199
Who We Are
OKX is a leading crypto exchange and developer of OKX Wallet, giving millions access to crypto trading and decentralized crypto applications. We are trusted by hundreds of institutions and backed by our Proof of Reserves. Across our global offices, we are united by our core principles: We Before Me, Do the Right Thing, and Get Things Done. OKX is part of OKG, a group that brings the value of Blockchain to users worldwide through our leading products. About the Opportunity
OKX is building a global team and seeks a Senior Manager of IT Foundational Controls to lead this critical function. This role shapes the foundational control landscape to ensure operational integrity and compliance for our global operations, driving strategic initiatives that impact the secure operation of our crypto products and infrastructure. We are seeking an IT audit professional with experience applying foundational controls within the crypto exchange or crypto product space. The candidate should understand ITGC principles in novel technical environments and demonstrate strong leadership and analytical skills. What You’ll Be Doing
Drive the execution of global IT Foundational Controls (ITGC) audit programs, ensuring comprehensive coverage and adherence to best practices, with a focus on high-volume crypto environments. Collaborate with functional and regional portfolio leads to provide expert IT foundational controls testing support for stand-alone and integrated audits, ensuring controls are robust for assets with irreversible transactions. Develop and implement advanced audit methodologies tailored to blockchain technology, crypto exchanges, and decentralized systems, focusing on access management, change management, and data protection. Provide strategic guidance on emerging foundational control risks and their implications in the cryptocurrency space to senior leadership. What We Look For In You
Advanced SQL Analytical Skills:
Ability to perform complex queries, data modeling, and statistical analysis on large datasets from various sources (transactional databases, blockchain data, log files) for audit evidence and anomaly detection. Strong Critical Thinking and Problem-Solving:
Ability to analyze complex crypto environments, identify root causes, and propose effective solutions. Fundamental Understanding of Blockchain Technology:
Knowledge of distributed ledger technologies, consensus mechanisms, cryptography, and cryptocurrency transaction lifecycles. IT General Controls Auditing:
Knowledge of ITGCs and how they apply to crypto exchanges, ensuring robust controls for irreversible assets. Change Management Auditing:
Expertise in evaluating change processes for hot/cold wallets, smart contracts, and core engines, with emphasis on strict approvals and testing. Access Management Auditing:
Experience with user provisioning, privileged access management for crypto infrastructure, and segregation of duties across roles. Data Protection Auditing:
Understanding of cryptographic key management, HSMs, MPC, and data protection for keys, customer funds, and sensitive data. Secure SDLC Auditing:
Experience auditing secure SDLC for smart contracts, nodes, and exchange apps, including verification and secure coding practices. IT Operations Auditing:
Ability to assess real-time monitoring, incident response, disaster recovery, and patching for always-on crypto platforms. Risk Management for IT Foundational Controls:
Expertise in risk identification, assessment, mitigation, and monitoring for crypto environments. Regulatory Knowledge:
Understanding of regulatory requirements impacting IT controls for crypto exchanges (AML/CFT per FATF, sanctions, VASPs) and related technical controls. Why OKX?
Join a rapidly growing, innovative company at the forefront of the crypto industry. You will work with cutting-edge technologies in a dynamic, global team and contribute to the future of decentralized finance. Perks & Benefits
Competitive total compensation package Learning and development subsidies for growth Team-building programs and company events Wellness and meal allowances Comprehensive healthcare for employees and dependents Additional benefits announced during the process OKX Statement
OKX is an equal employment opportunity employer. We do not discriminate based on race, color, creed, religion, sex, sexual orientation, gender identity, national origin, age, marital status, disability, or veteran status. We will consider qualified applicants with arrest and conviction records as required by law. The salary range for this position is $143,000 - $257,000 The final offered salary depends on knowledge, skills, experience, and location. A performance bonus and long-term incentives may be provided, along with medical, financial, and other benefits dependent on the role. Applicants should apply via OKX internal or external careers site.
#J-18808-Ljbffr
OKX is a leading crypto exchange and developer of OKX Wallet, giving millions access to crypto trading and decentralized crypto applications. We are trusted by hundreds of institutions and backed by our Proof of Reserves. Across our global offices, we are united by our core principles: We Before Me, Do the Right Thing, and Get Things Done. OKX is part of OKG, a group that brings the value of Blockchain to users worldwide through our leading products. About the Opportunity
OKX is building a global team and seeks a Senior Manager of IT Foundational Controls to lead this critical function. This role shapes the foundational control landscape to ensure operational integrity and compliance for our global operations, driving strategic initiatives that impact the secure operation of our crypto products and infrastructure. We are seeking an IT audit professional with experience applying foundational controls within the crypto exchange or crypto product space. The candidate should understand ITGC principles in novel technical environments and demonstrate strong leadership and analytical skills. What You’ll Be Doing
Drive the execution of global IT Foundational Controls (ITGC) audit programs, ensuring comprehensive coverage and adherence to best practices, with a focus on high-volume crypto environments. Collaborate with functional and regional portfolio leads to provide expert IT foundational controls testing support for stand-alone and integrated audits, ensuring controls are robust for assets with irreversible transactions. Develop and implement advanced audit methodologies tailored to blockchain technology, crypto exchanges, and decentralized systems, focusing on access management, change management, and data protection. Provide strategic guidance on emerging foundational control risks and their implications in the cryptocurrency space to senior leadership. What We Look For In You
Advanced SQL Analytical Skills:
Ability to perform complex queries, data modeling, and statistical analysis on large datasets from various sources (transactional databases, blockchain data, log files) for audit evidence and anomaly detection. Strong Critical Thinking and Problem-Solving:
Ability to analyze complex crypto environments, identify root causes, and propose effective solutions. Fundamental Understanding of Blockchain Technology:
Knowledge of distributed ledger technologies, consensus mechanisms, cryptography, and cryptocurrency transaction lifecycles. IT General Controls Auditing:
Knowledge of ITGCs and how they apply to crypto exchanges, ensuring robust controls for irreversible assets. Change Management Auditing:
Expertise in evaluating change processes for hot/cold wallets, smart contracts, and core engines, with emphasis on strict approvals and testing. Access Management Auditing:
Experience with user provisioning, privileged access management for crypto infrastructure, and segregation of duties across roles. Data Protection Auditing:
Understanding of cryptographic key management, HSMs, MPC, and data protection for keys, customer funds, and sensitive data. Secure SDLC Auditing:
Experience auditing secure SDLC for smart contracts, nodes, and exchange apps, including verification and secure coding practices. IT Operations Auditing:
Ability to assess real-time monitoring, incident response, disaster recovery, and patching for always-on crypto platforms. Risk Management for IT Foundational Controls:
Expertise in risk identification, assessment, mitigation, and monitoring for crypto environments. Regulatory Knowledge:
Understanding of regulatory requirements impacting IT controls for crypto exchanges (AML/CFT per FATF, sanctions, VASPs) and related technical controls. Why OKX?
Join a rapidly growing, innovative company at the forefront of the crypto industry. You will work with cutting-edge technologies in a dynamic, global team and contribute to the future of decentralized finance. Perks & Benefits
Competitive total compensation package Learning and development subsidies for growth Team-building programs and company events Wellness and meal allowances Comprehensive healthcare for employees and dependents Additional benefits announced during the process OKX Statement
OKX is an equal employment opportunity employer. We do not discriminate based on race, color, creed, religion, sex, sexual orientation, gender identity, national origin, age, marital status, disability, or veteran status. We will consider qualified applicants with arrest and conviction records as required by law. The salary range for this position is $143,000 - $257,000 The final offered salary depends on knowledge, skills, experience, and location. A performance bonus and long-term incentives may be provided, along with medical, financial, and other benefits dependent on the role. Applicants should apply via OKX internal or external careers site.
#J-18808-Ljbffr