Job Description
Who We Are: Galaxy is a global leader in digital assets and data center infrastructure, delivering solutions that accelerate progress in finance and artificial intelligence. We believe that blockchain and digital asset innovation will transform how value moves through the world – and we’re building the products and services to make that future a reality.
Our institutional digital assets platform spans trading, investment banking, asset management, staking, self-custody, and tokenization technology. We also invest in and operate cutting-edge data center infrastructure to power AI and high-performance computing, addressing the growing demand for scalable energy and compute in the U.S.
We work at the intersection of finance and technology, helping institutions, startups, and developers navigate a digitally native economy. Led by CEO and Founder Michael Novogratz, our team blends deep crypto expertise with institutional experience and a shared commitment to shaping the future of Web3 and AI.
Galaxy is headquartered in New York City, with offices across North America, Europe, the Middle East, and Asia.
To learn more about our businesses and products, visit www.galaxy.com.
What We Value:
We are a diverse team of free thinkers, and fast movers united to help investors and creators energize the global economy. We are looking for individuals who thrive in a culture of builders and overachievers and embrace high performance, transparent feedback, and a mission-first approach. Our culture shapes our way of working and gets us where we want to be.
- Seek Excellence.
- Be Selective To Be Effective.
- Be Highly Aligned, Loosely Coupled.
- Disagree Transparently.
- Encourage Independent Decision-Making.
- Build Dream Teams.
Who You Are:
A collaborative and experienced Security Engineer with hands-on experience running a Security Operations Center (SOC) for a DataCenter. You’re comfortable working with existing tooling to analyze and monitor day-to-day operations, as well as create your own scripts or tools in both cloud and on-prem. You work well with others to solve complex problems, contribute to system design, and ensure smooth, reliable operations. You’re proactive in learning and applying new technologies to enhance performance and efficiency.
Responsibilities:
- SOC Operations & Management: Oversee and manage the day-to-day operations of the Security Operations Center, including monitoring, analyzing, and responding to security alerts and incidents.
- Threat Detection & Response: Identify, investigate, and respond to cybersecurity threats using advanced monitoring tools, SIEM platforms, and other security technologies.
- Incident Management: Lead or support incident response activities, including root cause analysis, mitigation, and post-incident reporting.
- Custom Scripting & Automation: Develop and maintain custom scripts (e.g., in Python, PowerShell, Bash) to automate security processes, improve threat detection, and streamline incident response workflows.
- Security Monitoring & Analysis: Analyze logs, network traffic, and system behavior to detect potential security breaches or anomalies.
- Tool Implementation & Optimization: Support the deployment, configuration, and optimization of security tools such as SIEM, SOAR, IDS/IPS, firewalls, and endpoint detection and response (EDR) solutions.
- Collaboration with Teams: Work closely with IT, DevOps, and other security teams to ensure consistent security practices and to implement protective measures.
- Security Policies & Procedures: Participate in the development and maintenance of security policies, procedures, and best practices.
- Training & Mentoring: Provide guidance and mentorship to junior team members and contribute to the continuous improvement of the SOC team.
Requirements:
- Experience working in or running a SOC
- Strong scripting skills in Python, PowerShell, Bash, or similar languages, with experience in automating security tasks.
- On-prem Firewall Rule and Configuration (Palo)
- Experience with various on-prem and Cloud environments (VMware, AWS, Azure)
- Experience with security log/analysis tools such as Splunk, ELK, SumoLogic, or similar SIEM platforms.
- Experience with XDR, DLP, and UBA tools and concepts (Cortex, CrowdStrike, etc.)
- Good understanding of network protocols and system security
- Windows and Linux experience
- Experience with CI/CD and DevOps practices
- Strong problem-solving and analytical skills
- Familiarity with version control (Git)
- Excellent communication and collaboration skills
What We Offer (US):
Competitive base salary and discretionary bonus
Flexible Time Off (i.e. unlimited paid vacation days)
Company paid Holidays (11)
Company paid sick leave
Company-paid health and protective benefits for employees, partners, and other dependents
3% 401(k) company contribution
Generous paid Parental Leave
Free virtual coaching and counseling sessions through Ginger
Opportunities to learn about the Crypto and Data Center industries
Free daily snacks in-office
Smart, entrepreneurial, and fun colleagues
Employee Resource Groups
Galaxy respects diversity and seeks to provide equal employment opportunities to all employees and job applicants for employment without regard to actual or perceived age, race, color, creed, religion, sex or gender (including pregnancy, childbirth, lactation and related medical conditions), gender identity or gender expression (including transgender status), sexual orientation, marital or partnership or caregiver status, ancestry, national origin, citizenship status, disability, military or veteran status, protected medical condition as defined by applicable state or local law, genetic information or predisposing genetic characteristic, or other characteristic protected by applicable federal, state, or local laws and ordinances.
We will endeavor to make a reasonable accommodation to the known limitations of a qualified applicant with a disability unless the accommodation would impose an undue hardship on the operation of our business. If you believe you require such assistance to complete the application process or to participate in an interview, please contact [email protected].
