VP, Security Engineer

Job Description

Who We Are: Galaxy is a global leader in digital assets and data center infrastructure, delivering solutions that accelerate progress in finance and artificial intelligence. We believe that blockchain and digital asset innovation will transform how value moves through the world – and we’re building the products and services to make that future a reality.

Our institutional digital assets platform spans trading, investment banking, asset management, staking, self-custody, and tokenization technology. We also invest in and operate cutting-edge data center infrastructure to power AI and high-performance computing, addressing the growing demand for scalable energy and compute in the U.S.

We work at the intersection of finance and technology, helping institutions, startups, and developers navigate a digitally native economy. Led by CEO and Founder Michael Novogratz, our team blends deep crypto expertise with institutional experience and a shared commitment to shaping the future of Web3 and AI.

Galaxy is headquartered in New York City, with offices across North America, Europe, the Middle East, and Asia.

To learn more about our businesses and products, visit www.galaxy.com.

What We Value:

We are a diverse team of free thinkers, and fast movers united to help investors and creators energize the global economy. We are looking for individuals who thrive in a culture of builders and overachievers and embrace high performance, transparent feedback, and a mission-first approach. Our culture shapes our way of working and gets us where we want to be.

• Seek Excellence.
• Be Selective To Be Effective.
• Be Highly Aligned, Loosely Coupled.
• Disagree Transparently.
• Encourage Independent Decision-Making.
• Build Dream Teams.

Who You Are:

We are seeking a highly motivated and technically skilled Security Engineer to join our Security Operations team. This role will be responsible for supporting and enhancing enterprise security technologies, infrastructure, and operational security initiatives across the organization.

The ideal candidate will have experience administering and supporting security platforms such as Teleport, Data Loss Prevention (DLP) solutions, Endpoint Detection & Response (EDR) technologies, AI-enabled security tooling, and other enterprise security technologies while partnering with cross-functional teams to strengthen the organization’s security posture. This role requires a strong foundation in infrastructure security, access management, endpoint protection, operational security processes, and emerging AI security practices.

The Security Engineer will collaborate closely with Security Operations, Infrastructure, Cloud Engineering, IT, and Engineering teams to implement security best practices, support incident response efforts, and assist with ongoing security initiatives and projects — including securing and supporting AI-related technologies and workflows across the organization.

What You’ll Do:

Security Platform Administration & Support

• Administer, maintain, and support enterprise security technologies including Teleport, DLP, EDR, IAM, logging, monitoring, and AI-enabled security platforms.
• Support onboarding, configuration, and troubleshooting of security tools and integrations.
• Monitor platform health, system alerts, and operational performance of security technologies.
• Assist with implementing and maintaining secure configurations and hardening standards.
• Support operational security requirements for internally adopted AI platforms and SaaS-based AI tooling.
• Administer, monitor, and support Endpoint Detection & Response (EDR) technologies across enterprise environments.
• Investigate and respond to EDR alerts, suspicious endpoint activity, and security incidents in collaboration with the Security Operations team.
• Assist with deployment, tuning, and optimization of EDR policies, detections, and endpoint protections.
• Support endpoint threat hunting, malware investigations, and containment/remediation activities.
• Collaborate with Infrastructure and IT teams to ensure endpoint security controls are properly configured and maintained.
• Assist with endpoint hardening initiatives, vulnerability remediation, and security compliance efforts.
• Support integration of EDR platforms with SIEM, logging, IAM, and other security monitoring solutions.

AI Tooling & Emerging Technology Security

• Assist with evaluating, securing, and supporting AI-related technologies and integrations across the organization.
• Partner with Security, Infrastructure, and Engineering teams to ensure AI tools are deployed and configured securely.
• Support governance and security controls related to AI usage, data handling, and third-party AI services.
• Help identify and mitigate risks associated with AI-enabled applications, automation platforms, and integrations.
• Participate in developing operational standards and best practices for secure AI adoption.
• Embrace and champion the thoughtful adoption of AI to improve team performance and business outcomes.
• Leverage AI tools (e.g., generative AI, automation platforms, data copilots) to improve productivity, decision-making, and output quality in your day-to-day work.

Infrastructure & Access Security

• Support secure access solutions for internal users, administrators, contractors, and third parties.
• Assist with managing privileged access workflows and secure remote access solutions.
• Partner with IAM and Infrastructure teams to support authentication, authorization, and least privilege access models.
• Support secure connectivity and access controls across cloud and on-premises environments.

Data Protection & DLP Operations

• Assist with administration and tuning of Data Loss Prevention (DLP) policies and monitoring.
• Investigate DLP alerts and support remediation efforts for potential data exposure events.
• Collaborate with business and security teams to classify and protect sensitive data.
• Support data protection initiatives and policy enforcement across endpoints, cloud platforms, SaaS applications, and AI-enabled workflows.

Security Operations & Incident Response

• Support the Security Operations team in monitoring, detecting, and responding to security incidents and alerts.
• Participate in incident investigations, root cause analysis, and remediation activities.
• Assist with threat detection, vulnerability remediation, and security monitoring efforts.
• Support investigations involving AI tools, cloud platforms, identity systems, and enterprise applications.
• Document operational procedures, security findings, and remediation recommendations.

Security Engineering & Continuous Improvement

• Support implementation of new security technologies and operational security initiatives.
• Assist with automation of operational and security processes using scripting or APIs.
• Participate in security assessments, platform evaluations, and infrastructure hardening activities.
• Work closely with engineering and infrastructure teams to improve enterprise security controls.
• Contribute to security projects and operational initiatives as business needs evolve.
• Assist with evaluating emerging security technologies, including AI-driven security capabilities and automation tools.

Compliance & Governance

• Support compliance initiatives related to SOC 2, ISO 27001, PCI-DSS, or other regulatory frameworks.
• Assist with maintaining security documentation, standards, and operational procedures.
• Participate in audit preparation and remediation activities related to security technologies and controls.
• Support governance efforts related to secure AI usage and data protection requirements.

What We’re Looking For:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience).
• 3+ years of experience in cybersecurity, security engineering, or infrastructure security roles.
• Experience supporting enterprise security technologies such as Teleport, DLP, EDR, SIEM, IAM, or PAM solutions.
• Familiarity with AI-enabled enterprise tools and associated security considerations.
• Familiarity with cloud platforms such as AWS, Azure, or Google Cloud.
• Understanding of Zero Trust, least privilege access, identity and access management, data protection, and AI security concepts.
• Experience with Linux and Windows administration.
• Familiarity with scripting or automation using PowerShell, Python, or Bash.
• Strong troubleshooting, analytical, and problem-solving skills.
• Excellent written and verbal communication skills.

Bonus Points:

• Experience with privileged access management (PAM) technologies.
• Experience supporting cloud security and SaaS environments.
• Familiarity with AI governance, AI security frameworks, or secure AI deployment practices.
• Familiarity with compliance frameworks such as NIST, SOC 2, ISO 27001, or CIS benchmarks.
• Security certifications such as Security+, CISSP, GIAC, CEH, or cloud security certifications.

What We Offer:

• Competitive base salary and discretionary bonus
• Hybrid/Flexible Working Arrangements
• Flexible Time Off (paid)
• 3% 401(k) company contribution
• Company-paid health and protective benefits for employees, partners, and other dependents
• Generous paid Parental Leave
• Competitive family planning benefits for US employees
• Opportunities to learn about the Crypto industry
• Smart, entrepreneurial, and fun colleagues
• Free daily snacks and weekly breakfasts/lunches
• Employee Resource Groups
• Free coaching and counseling sessions through Headspace

Apply now and join us on our mission to engineer a new economic paradigm.

Galaxy respects diversity and seeks to provide equal employment opportunities to all employees and job applicants for employment without regard to actual or perceived age, race, color, creed, religion, sex or gender (including pregnancy, childbirth, lactation and related medical conditions), gender identity or gender expression (including transgender status), sexual orientation, marital or partnership or caregiver status, ancestry, national origin, citizenship status, disability, military or veteran status, protected medical condition as defined by applicable state or local law, genetic information or predisposing genetic characteristic, or other characteristic protected by applicable federal, state, or local laws and ordinances.

We will endeavor to make a reasonable accommodation to the known limitations of a qualified applicant with a disability unless the accommodation would impose an undue hardship on the operation of our business. If you believe you require such assistance to complete the application process or to participate in an interview, please contact [email protected].