Associate, Security Engineer (Vulnerability Management)

Galaxy is seeking an Associate Security Engineer specializing in Vulnerability Management to enhance its application security tooling and drive the vulnerability management program. This role is integral to a collaborative team of product and offensive security engineers, aligning closely with Galaxy's business objectives. Reporting directly to the Director of Product Security, the position interfaces with Engineering, DevOps, and Infrastructure teams to ensure robust security measures across the organization.

The primary responsibilities include administering and configuring application security tools to minimize false positives and improve accuracy. The role involves providing comprehensive support and documentation to encourage adoption among engineering teams. Additionally, the engineer will develop dashboards and key performance indicators to visualize security activities, aggregate and analyze data from vulnerability management systems, and ensure adherence to service level agreements for vulnerability triage and remediation. Coordinating with engineering teams to validate, assign, and prioritize vulnerabilities based on risk and asset criticality is also a key aspect of the role.

Candidates should possess a bachelor's or post-graduate diploma in cybersecurity or technology, along with over four years of experience in cybersecurity, software development, or security operations. Proficiency in scripting or object-oriented programming languages is essential, as is familiarity with application security and vulnerability management practices. Strong analytical skills, attention to detail, proactive problem-solving abilities, and excellent verbal and written communication skills are required. Security or cloud certifications are considered advantageous.

Galaxy offers a competitive base salary complemented by a discretionary bonus. The benefits package includes flexible time off, company-paid holidays and sick leave, comprehensive health and protective benefits for employees and their dependents, a 3% 401(k) company contribution, and generous paid parental leave. Additional perks include free virtual coaching and counseling sessions, opportunities to learn about the crypto industry, and a dynamic work environment with smart, entrepreneurial colleagues.