echojobs.io
Login

OKX

Control Assurance Specialist, Technology Governance

Hong Kong
AI Blockchain GDPR CCPA ISO/IEC 27001 SOC 1 SOC 2 NIST CIS SOX COBIT
Search for More Jobs
Description

Control Assurance Specialist, Technology Governance

Location: Hong Kong, Hong Kong SAR

Department: Engineering

Who We Are

At OKX, we believe that the future will be reshaped by crypto, and ultimately contribute to every individual's freedom. 

OKX is a leading crypto exchange, and the developer of OKX Wallet, giving millions access to crypto trading and decentralized crypto applications (dApps). OKX is also a trusted brand by hundreds of large institutions seeking access to crypto markets. We are safe and reliable, backed by our Proof of Reserves.

Across our multiple offices globally, we are united by our core principles: We Before Me, Do the Right Thing, and Get Things Done. These shared values drive our culture, shape our processes, and foster a friendly, rewarding, and diverse environment for every OK-er.

OKX is part of OKG, a group that brings the value of Blockchain to users around the world, through our leading products OKX, OKX Wallet, OKLink and more.

 
About The Team

The Technology Governance team supports the organization in managing and mitigating data security and technology control risks through strong governance, standards, and assurance practices. The team partners closely with technology and business functions to help design, implement, and operate effective security, data, and technology control frameworks.

To enhance the company’s overall security and compliance posture, the team is responsible for building and maintaining the technology and data security management framework, defining control expectations, supporting risk identification activities, and driving the consistent implementation of governance and control solutions across the organization.

The team is also accountable for developing and maintaining technology and data security policies and standards, optimizing governance and assurance processes, and supporting the operation and continuous improvement of internal governance platforms. As the organization expands its use of data, analytics, and AI-enabled capabilities, the team plays a key role in strengthening data governance and AI governance practices in partnership with business and technology owners.
 

About The Role

We are looking for an experienced Technology Controls Specialist to assess, design, and evaluate the effectiveness of technology, security, and data-related controls across the organization. This role works closely with control owners, engineering teams, and business stakeholders to embed governance and control requirements into day-to-day operations.
 

What You’ll Be Doing
  • Perform assurance reviews to assess the design and operating effectiveness of IT, security, and data-related controls against internal standards, industry best practices, and applicable regulatory or customer requirements.
  • Monitor the organization’s security and compliance posture, identifying opportunities to enhance control design, consistency, and operational effectiveness.
  • Identify control gaps and improvement areas, and partner with control owners and stakeholders to support remediation planning and implementation.
  • Analyze findings and observations from internal and external audits, certifications, and assessments, and support timely and sustainable remediation.
  • Design, implement, and maintain approaches that support continuous alignment with industry security standards and frameworks, such as ISO/IEC 27001, SOC 1/2, NIST, CIS benchmarks, and SOX.
  • Support broader technology governance and compliance initiatives, including programs related to business growth, regulatory expectations, or IPO readiness where applicable.
  • Track remediation progress and provide regular updates and reporting to management on the effectiveness of governance and assurance activities.
  • Develop, review, and refine technology governance–related policies, standards, and procedures, and provide practical implementation guidance to stakeholders.
  • Stay current on evolving industry trends, regulatory expectations, and emerging technologies to continuously strengthen the organization’s governance and assurance capabilities.
 
What We Look For In You
  • At least 5 years of relevant work experience, including IT audit, risk management, compliance, and security governance within large internet enterprises, blockchain companies, fintech firms, or auditing firms.
  • In-depth understanding of various IT security frameworks and compliance requirements, such as ISO 27001, COBIT, SOC 2, SOC 1, NIST, and SOX.
  • Familiarity with relevant regulatory requirements, industry best practices, and data protection regulations (e.g., GDPR, CCPA).
  • One or more certifications, such as CISA, CISSP, CRISC, CISM, or equivalent qualifications, are highly desirable.
  • Experience leading cross-functional initiatives with operational and technical teams.
  • Proficiency in speaking, reading, and writing in both English and Mandarin to collaborate effectively with global and cross-functional team members.
  • Familiarity with the risks and compliance challenges posed by emerging technologies (such as AI and blockchain) would be a plus.
  • Experience in data governance or AI governance is highly desirable.
 

Perks & Benefits

  • Competitive total compensation package.
  • L&D programs and Education subsidy for employees' growth and development.
  • Various team building programs and company events.
  • Wellness and meal allowances.
  • Comprehensive healthcare schemes for employees and dependants .
  • More that we love to tell you along the process!


    Please note that Hong Kong is a group-level service hub, and OKX does not carry on a business of operating a virtual asset trading platform in Hong Kong.
Notice:
All official OKX vacancies are published on this website. While roles may appear on selected third-party platforms from time to time, information on other sites may be inaccurate or outdated. If in doubt, please apply directly through our official careers website.
Information collected and processed as part of the recruitment process of any job application you choose to submit is subject to OKX's Candidate Privacy Notice.
OKX
OKX

0 applies

0 views

There are more than 50,000 engineering jobs:

Subscribe to membership and unlock all jobs

Engineering Jobs

60,000+ jobs from 4,500+ well-funded companies

Updated Daily

New jobs are added every day as companies post them

Refined Search

Use filters like skill, location, etc to narrow results

Become a member

🥳🥳🥳 452 happy customers and counting...

Overall, over 80% of customers chose to renew their subscriptions after the initial sign-up.

To try it out

For active job seekers

For those who are passive looking

Cancel anytime

Frequently Asked Questions

  • We prioritize job seekers as our customers, unlike bigger job sites, by charging a small fee to provide them with curated access to the best companies and up-to-date jobs. This focus allows us to deliver a more personalized and effective job search experience.
  • We've got over 200,000 jobs from 15,000+ vetted companies. No fake or sleazy jobs here!
  • We aggregate jobs from 15,000+ companies' career pages, so you can be sure that you're getting the most up-to-date and relevant jobs.
  • We're the only job board *for* software engineers, *by* software engineers… in case you needed a reminder! We add thousands of new jobs daily and offer powerful search filters just for you. 🛠️
  • Every single hour! We add 2,000-3,000 new jobs daily, so you'll always have fresh opportunities. 🚀
  • Typically, job searches take 3-6 months. EchoJobs helps you spend more time applying and less time hunting. 🎯
  • Check daily! We're always updating with new jobs. Set up job alerts for even quicker access. 📅

What Fellow Engineers Say