Clash
of Jobs
Browse All Jobs
Job Description
Galaxy Digital is seeking an Offensive Security Engineer to join their team in New York. This role involves performing internal testing of Galaxy Digital’s products and infrastructure, spanning from web applications to smart contracts. The engineer will use adversarial techniques to uncover vulnerabilities, provide guidance on remediation, and ensure a secure-by-design approach to product development. They will collaborate closely with software engineering, SRE, and security operations teams.
Role Involves:
- Planning and documenting testing activities
- Performing security-focused code reviews
- Conducting adversarial tests using manual and automated techniques
- Providing written reports and recommendations
- Implementing testing tools
- Engaging with vendors for Agile Pentesting Program
- Guiding development and SRE teams on vulnerability mitigation
- Advocating security testing and promoting a security-conscious mindset
- Staying updated on adversarial tactics in the financial and digital asset space
Requirements:
- Security certification (OSWE/OSCP/OSWA/eWPTX/BSCP or equivalent)
- Bachelor's or post-graduate diploma in any field
- 3+ years of experience in security research and penetration testing
- Strong background in blockchain technologies and/or cryptocurrency
- Programming and scripting language experience (Java, C++, Python, or similar)
- Attention to detail and excellent communication skills
- Experience with automated security testing (DAST, SAST, SCA)
What Galaxy Digital Offers:
- Competitive base salary and discretionary bonus
- Flexible Time Off
- Company paid Holidays (11)
- Company paid sick leave
- Company-paid health and protective benefits
- 3% 401(k) company contribution
- Generous paid Parental Leave
- Free virtual coaching and counseling sessions through Headspace
- Opportunities to learn about the Crypto industry
