Job Application for Control Assurance Specialist, Technology Governance at OKX

Who We Are

At OKX, we believe that the future will be reshaped by crypto, and ultimately contribute to every individual's freedom.

OKX is a leading crypto exchange, and the developer of OKX Wallet, giving millions access to crypto trading and decentralized crypto applications (dApps). OKX is also a trusted brand by hundreds of large institutions seeking access to crypto markets. We are safe and reliable, backed by our Proof of Reserves.

Across our multiple offices globally, we are united by our core principles: We Before Me, Do the Right Thing, and Get Things Done. These shared values drive our culture, shape our processes, and foster a friendly, rewarding, and diverse environment for every OK-er.

OKX is part of OKG, a group that brings the value of Blockchain to users around the world, through our leading products OKX, OKX Wallet, OKLink and more.

About The Team

The Technology Governance team supports the organization in managing and mitigating data security and technology control risks through strong governance, standards, and assurance practices. The team partners closely with technology and business functions to help design, implement, and operate effective security, data, and technology control frameworks.

To enhance the company’s overall security and compliance posture, the team is responsible for building and maintaining the technology and data security management framework, defining control expectations, supporting risk identification activities, and driving the consistent implementation of governance and control solutions across the organization.

The team is also accountable for developing and maintaining technology and data security policies and standards, optimizing governance and assurance processes, and supporting the operation and continuous improvement of internal governance platforms. As the organization expands its use of data, analytics, and AI-enabled capabilities, the team plays a key role in strengthening data governance and AI governance practices in partnership with business and technology owners.

About The Role

We are looking for an experienced Technology Controls Specialist to assess, design, and evaluate the effectiveness of technology, security, and data-related controls across the organization. This role works closely with control owners, engineering teams, and business stakeholders to embed governance and control requirements into day-to-day operations.

What You’ll Be Doing

Perform assurance reviews to assess the design and operating effectiveness of IT, security, and data-related controls against internal standards, industry best practices, and applicable regulatory or customer requirements.
Monitor the organization’s security and compliance posture, identifying opportunities to enhance control design, consistency, and operational effectiveness.
Identify control gaps and improvement areas, and partner with control owners and stakeholders to support remediation planning and implementation.
Analyze findings and observations from internal and external audits, certifications, and assessments, and support timely and sustainable remediation.
Design, implement, and maintain approaches that support continuous alignment with industry security standards and frameworks, such as ISO/IEC 27001, SOC 1/2, NIST, CIS benchmarks, and SOX.
Support broader technology governance and compliance initiatives, including programs related to business growth, regulatory expectations, or IPO readiness where applicable.
Track remediation progress and provide regular updates and reporting to management on the effectiveness of governance and assurance activities.
Develop, review, and refine technology governance–related policies, standards, and procedures, and provide practical implementation guidance to stakeholders.
Stay current on evolving industry trends, regulatory expectations, and emerging technologies to continuously strengthen the organization’s governance and assurance capabilities.

What We Look For In You

At least 5 years of relevant work experience, including IT audit, risk management, compliance, and security governance within large internet enterprises, blockchain companies, fintech firms, or auditing firms.
In-depth understanding of various IT security frameworks and compliance requirements, such as ISO 27001, COBIT, SOC 2, SOC 1, NIST, and SOX.
Familiarity with relevant regulatory requirements, industry best practices, and data protection regulations (e.g., GDPR, CCPA).
One or more certifications, such as CISA, CISSP, CRISC, CISM, or equivalent qualifications, are highly desirable.
Experience leading cross-functional initiatives with operational and technical teams.
Proficiency in speaking, reading, and writing in both English and Mandarin to collaborate effectively with global and cross-functional team members.
Familiarity with the risks and compliance challenges posed by emerging technologies (such as AI and blockchain) would be a plus.
Experience in data governance or AI governance is highly desirable.

Perks & Benefits

Competitive total compensation package.
L&D programs and Education subsidy for employees' growth and development.
Various team building programs and company events.
Wellness and meal allowances.
Comprehensive healthcare schemes for employees and dependants .
More that we love to tell you along the process!

Notice: All official OKX vacancies are posted on this site. We are not affiliated with other third-party job boards except Linkedin.com, listings on other sites may be inaccurate or outdated. This is the only source of truth for applications.

Information collected and processed as part of the recruitment process of any job application you choose to submit is subject to OKX's Candidate Privacy Notice.

Create a Job Alert

Interested in building your career at OKX? Get future opportunities sent straight to your email.

Control Assurance Specialist, Technology Governance

Who We Are

Perks & Benefits

Apply for this job