Location: New York,NY, USA
Who We Are:
At Galaxy we are building products and services to help the world invest in economic progress. We believe crypto and blockchain innovations will permeate and improve all aspects of our global economy. Our vision is a society where value and ownership flow as freely as information. Galaxy is a digital asset and blockchain leader helping institutions, startups, and individuals access and navigate the crypto economy. As one of the most well-capitalized and trusted companies in the industry, we provide platform solutions custom-made for a digitally native ecosystem across three complementary operating businesses: Global Markets, Asset Management, and Digital Infrastructure Solutions. Our offerings include, amongst others, trading, lending, strategic advisory services, institutional-grade investment solutions across passive, active and venture strategies, proprietary bitcoin mining and hosting services, network validator services, and the development of enterprise custodial technology. Galaxy's CEO and Founder Michael Novogratz leads a team of crypto enthusiasts, and institutional veterans focused on the future of finance and Web3. The Company is headquartered in New York City, with global across North America, Europe and Asia.
Additional information about the Company's businesses and products is available on www.galaxy.com.
What We Value:
We are a diverse team of free thinkers, and fast movers united to help investors and creators energize the global economy. We are looking for individuals who thrive in a culture of builders and overachievers and embrace high performance, transparent feedback, and a mission-first approach. Our culture shapes our way of working and gets us where we want to be.
Who You Are:
The Product Security team is looking for an Offensive Security Engineer with knowledge of coding to perform white box scoped internal engagements. The assets to be tested will be about 3/4 web apps and APIs, 1/4 infrastructure. The engineer will use creative adversarial techniques to uncover vulnerabilities in our products, then organize the resulting vulnerabilities to provide full clarity to security and technology peers. The engineer will provide guidance and hands on help to technology peers to remediate the issues.
Our team objective is to ensure a secure-by-design approach to all product development and operations, and we seek a strong testing practice as the final assurance that controls are implemented properly. The type of products build by Galaxy are client facing and internal Web/APIs, blockchain applications, data lakes and integration of advanced trading architectures.
As a member of the product security team, the offSec engineer will be in a unique position, working closely with the software engineering, SRE, and security operations teams.
We are looking for a driven professional, with great communication and organization skills.
What You'll Do:
What We're Looking For:
Bonus Points:
What We Offer: