VP, Senior Product Security Engineer in London

Who We Are: Galaxy is a global leader in digital assets and data center infrastructure, delivering solutions that accelerate progress in finance and artificial intelligence. We believe that blockchain and digital asset innovation will transform how value moves through the world – and we’re building the products and services to make that future a reality. Our institutional digital assets platform spans trading, investment banking, asset management, staking, self-custody, and tokenization technology. We also invest in and operate cutting-edge data center infrastructure to power AI and high-performance computing, addressing the growing demand for scalable energy and compute in the U.S. We work at the intersection of finance and technology, helping institutions, startups, and developers navigate a digitally native economy. Led by CEO and Founder Michael Novogratz, our team blends deep crypto expertise with institutional experience and a shared commitment to shaping the future of Web3 and AI. Galaxy is headquartered in New York City, with offices across North America, Europe, the Middle East, and Asia.

What We Value: We are a diverse team of free thinkers, and fast movers united to help investors and creators energize the global economy. We are looking for individuals who thrive in a culture of builders and overachievers and embrace high performance, transparent feedback, and a mission-first approach. Our culture shapes our way of working and gets us where we want to be. Seek Excellence. Be Selective To Be Effective. Be Highly Aligned, Loosely Coupled. Disagree Transparently. Encourage Independent Decision-Making. Build Dream Teams.

Who You Are: Galaxy is seeking a Senior Product Security Engineer with an expertise in securing micro services and cloud applications, and with a thorough understanding of product and software engineering processes. The engineer will participate in assessments of advanced trading systems and blockchain architectures, followed by the facilitation and/or implementation of remediations. The engineer will report to the Director of Product Security and work closely with Engineering, Product and Infrastructure teams to design and deliver secure software solutions at a rapid growth company.

What You’ll Do:

• Assist engineering and software delivery teams in assessing the security of the applications, software, and operational components including:
• Participate in relevant secure software design and code reviews
• Assist with development and review of test plans to ensure effective security coverage
• Assist teams with the mitigation of findings: assess the impacts, propose possible solutions, and provide technical guidance for implementation
• Provide expertise and advice on cloud application and infrastructure security design patterns
• Provide training and thought leadership for secure software development practices
• Review and improve implementations of authentication, authorization, data access and other security layers of our product stack
• Research and collaborate with product team members to make proposals to adopt advanced security patterns - e.g. MPC, multi-signature, confidential computing

What We’re Looking For:

• Bachelor or post-graduate diploma in cybersecurity or technology
• 5 years work experience in product security, application security, cloud security, or software development of security features
• Threat modeling, risk assessment, controls review
• Programming languages
• Managing SAST, DAST, SCA, and helping software engineers with understanding vulnerabilities and selecting appropriate mitigation
• In depth understanding of at least a few of the following topics: authentication and authorization technology, TLS and PKI, network security, cloud security, system security
• Strong analysis skills, detail oriented, strategic thinking
• Strong verbal and written communication skills, collaborative and solution-driven
• Security or cloud certifications

Bonus Points:

• Familiar with Cryptocurrency

What We Offer:

• Competitive base salary and discretionary bonus
• Company-paid health and protective benefits for employees and their eligible dependents
• Free virtual coaching and counseling sessions
• Opportunities to learn about the Crypto industry
• Smart, entrepreneurial, and fun colleagues
• Employee Resource Groups

*Benefits may vary depending on location.

Galaxy respects diversity and seeks to provide equal employment opportunities to all employees and job applicants for employment without regard to actual or perceived age, race, color, creed, religion, sex or gender (including pregnancy, childbirth, lactation and related medical conditions), gender identity or gender expression (including transgender status), sexual orientation, marital or partnership or caregiver status, ancestry, national origin, citizenship status, disability, military or veteran status, protected medical condition as defined by applicable state or local law, genetic information or predisposing genetic characteristic, or other characteristic protected by applicable federal, state, or local laws and ordinances. We will endeavor to make a reasonable accommodation to the known limitations of a qualified applicant with a disability unless the accommodation would impose an undue hardship on the operation of our business. If you believe you require such assistance to complete the application process or to participate in an interview, please contact careers@galaxy.com.