Associate Director: Security Assurance

The CoinDCX Journey: Building the Future of Finance: At CoinDCX, our mission is clear - to make crypto and blockchain accessible to every Indian and enable them to participate in the future of finance.

As India’s first crypto unicorn valued at $2.45B, we are reshaping the financial ecosystem by building safe, transparent, and scalable products that power adoption at scale.

We believe that change starts together. It begins with bold ideas, relentless execution and people who want to build what’s next.

If you’re driven by purpose and thrive in environments where your work defines the next chapter of an industry, you’ll feel right at home here.

About the Role: Leads the Security Assurance vertical and is responsible for providing assurance that the CoinDCX applications, infrastructure and security controls are designed and operating securely in line with industry standards and internal policies.

What You'll Do:

• Security Assessments: Conduct in-depth penetration testing, secure code reviews, and threat modeling for product and underlying technology components
• Code and Infrastructure Security: Lead teams that perform vulnerability assessments and triage of outputs from automated scanning. Ensure the right prioritisation and governance over the remediation.
• Bug Bounty Management: Lead the bug bounty program for the group, ensuring the right processes in place for the validation, and support for reported vulnerabilities, ensuring fast, accurate assessment of threats
• External audits and regulatory engagements: Lead activities including coordination of audit walkthroughs and fulfillment of evidence requirements for any security related audit or regulatory activities, including close collaboration with cross functional teams to deliver audit outcomes as needed
• Control Testing: Lead the design, and implementation of independent testing framework for security controls. Guide the team to ensure timely Identification and analysis of process, control gaps, develop remediation recommendations, and ensure these are tracked to completion.
• Security Assurance and Sign-offs: Build and ensure the effective operation of security assurance sign-offs to verify that security design and architecture recommendations arising from security reviews for the existing, future implementations and new features, are implemented appropriately.
• Secure Design Training - Design and execute security awareness initiatives to educate engineering managers and developers on secure architecture, coding and testing.
• Continuous Improvement: Continuously review and align the secure development lifecycle to industry standards, evolving threat landscape, OWASP development guides, and privacy related guides. Stay current with the rapidly evolving crypto space, researching new vulnerabilities and attack vectors.
• Cross-functional Collaboration: Collaboration with product and engineering leads to ensure the prioritizing and fixing of vulnerabilities in a timely and efficient manner.
• Threat Research: Stay current with the rapidly evolving crypto space, ensuring that the team are actively researching new vulnerabilities and attack vectors.
• Automation Development: Build security tools and frameworks to automate manual testing processes

You’ll Excel in This Role If You Have:

• Bachelor’s degree in computer science, engineering or related field
• 12-14 years of experience in Information security and related technologies
• Prior experience of working in financial services or fintech
• Successful demonstrated experience managing and working with internal cross-functional teams and product engineering groups.
• Experience with driving Secure SDLC activities, DevSecOps (CI/CD) and agile software development practices
• Experience in designing and analyzing security solutions with a deep understanding in Identity and access management, cloud & infrastructure security, application security, data & network security, security governance etc.
• Sound understanding of security by design principles and architecture level security concepts
• Strong leadership skills and the ability to coach and mentor other members of the Product Security teams
• Experience with penetration testing methodologies and tools including security analysis, audits and reviews
• Sound knowledge of OWASP Top 10 and SANS 25
• Knowledge and experience with security standards such as CCSS (CryptoCurrency Security Standard), NIST, ISO 27001/2, CSA, SOC 1&2 and CIS
• One or more certifications - CISSP, TOGAF/SABSA or Cloud security certifications
• Ability to convey security concepts to both technical and non-technical audiences
• Excellent written and verbal communication skills, interpersonal and presentation skills and the proven ability to influence and communicate effectively



You’ll Know You’re Winning When:

• Analytical Rigor: Exceptional problem-solving skills and attention to detail
• Technical Excellence: Ability to bridge quantitative research and engineering implementation
• Strategic Thinking: Can balance short-term tactical improvements with long-term strategic goals
• Collaboration: Excellent communication skills to work across quant, product, and engineering teams
• Adaptability: Thrives in fast-paced, dynamic crypto markets with rapidly changing conditions
• Ownership: Takes full accountability for market quality and strategy performance

Hiring Process: Here’s what your journey with us looks like:

• Application Review – We assess for skills, alignment, and intent
• Recruiter Connect – A short conversation to understand you better
• Functional Round(s) – Deep dive into your approach, craft, and problem-solving
• Assignment / Simulation Round –A take-home task or live problem-solving exercise to understand how you think and execute in real scenarios
• Culture & Values Discussion – A conversation to understand our ways of working and how you thrive best
• Founder Conversation (Optional) – For certain roles and senior levels, you may meet our founders to explore strategic alignment and long-term fit

Where We Work: We believe the best ideas emerge when people build together. Collaboration, speed and trust come alive when teams share the same space.

With this belief, we operate as a work-from-office organisation. This role is based out of our Bangalore office, where energy, alignment and innovation move in real time.

Perks That Empower You: We believe great people deserve great experiences.

• Design Your Own Benefits: Flexible perks to match your lifestyle
• Unlimited Wellness Leaves: Rest and recharge as you need
• Mental Wellness Support: Access to therapy and wellness resources
• Learning Sessions: Bi-weekly learning and growth opportunities

Ready to Build What’s Next? If you’re looking for a role that gives you direct access to high-stakes decisions, deep impact and a chance to build the future of finance, this is it.

Join CoinDCX and help us make crypto accessible to every Indian, together.