Associate, Security Engineer (Vulnerability Management)

We are a diverse team of free thinkers, and fast movers united to help investors and creators energize the global economy. We are looking for individuals who thrive in a culture of builders and overachievers and embrace high performance, transparent feedback, and a mission-first approach. Our culture shapes our way of working and gets us where we want to be.

• Seek Excellence.
• Be Selective To Be Effective.
• Be Highly Aligned, Loosely Coupled.
• Disagree Transparently.
• Encourage Independent Decision-Making.
• Build Dream Teams.

Galaxy is seeking an Associate Security Engineer (Vulnerability Management) to administer application security tooling and help drive the vulnerability management program. You’ll join a collaborative team of product and offensive security engineers who tackle complex technical challenges and align closely with Galaxy's business objectives. This role reports directly to the Director of Product Security and interfaces closely with Engineering, DevOps, and Infrastructure teams.

• →Administer application security tooling: manage and configure to reduce false positives and enhance accuracy.
• →Provide comprehensive support and documentation of security tooling to encourage adoption among engineering teams.
• →Develop dashboards and KPIs to clearly visualize security activities, vulnerabilities, and cybersecurity risks for individual departments or teams.
• →Aggregate and analyze data from vulnerability management and asset inventory systems.
• →Support the vulnerability management program by ensuring technology teams adhere to SLAs for vulnerability triage and remediation.
• →Track and report on vulnerability remediation progress across infrastructure and application environments.
• →Coordinate with engineering teams to validate, assign, and prioritize vulnerabilities based on risk and asset criticality.
• →Leverage AI-driven tools for efficient data analysis and qualitative risk assessment.
• →Assist in security assessments and proactively suggest improvements related to tooling and risk insights.
• →Embrace and champion the thoughtful adoption of AI to improve team performance and business outcomes.
• →Leverage AI tools (e.g., generative AI, automation platforms, data copilots) to improve productivity, decision-making, and output quality in your day-to-day work.

• Bachelor or post-graduate diploma in cybersecurity or technology
• 4+ years of work experience in cybersecurity, software development, or security operations
• Proficiency in scripting or object programming languages
• Familiarity with application security and vulnerability management practices
• Strong analytical skills, detail-oriented, proactive, and capable of independent problem-solving
• Very good verbal and written communication skills, collaborative and solution-driven
• Security or cloud certifications