Dragonfly is a crypto-native Venture Capital and research firm managing over $4B in assets and 160+ portfolio companies. They are seeking Security Engineers to connect with their portfolio companies, focusing on both infrastructure and application security roles.
Responsibilities:
- Secure and monitor blockchain infrastructure, nodes, and validators
- Build and maintain security tooling for on-chain infrastructure, RPC endpoints, and key management systems
- Harden cloud and network environments, implement defense-in-depth for production systems, and manage secrets and access control
- Respond to infrastructure-level threats, analyze incidents, and improve detection coverage
- Partner with smart contract and product teams to secure DeFi, wallet, or protocol codebases
- Contribute to application-level threat modeling, auditing, and secure development practices
- Develop internal tooling for vulnerability scanning, dependency management, and transaction monitoring
- Work with on-chain analytics and incident response for protocol or user-level exploits
Requirements:
- 2–5 years of experience in security engineering, operations, or infrastructure security, ideally across both cloud and crypto-native environments
- Solid understanding of application, network, and blockchain security principles
- Hands-on experience with SIEMs, EDR tools, or threat detection systems
- Familiarity with GCP, AWS, or other production cloud environments, as well as containerized or distributed systems
- Understanding of web3 security concepts such as multisig wallets, smart contract risks, validator security, and key management
- Experience building or operating automated security monitoring and alerting pipelines
- Strong scripting or automation skills (Python, TypeScript, or Go)
- Experience with security audits, compliance frameworks (SOC 2, ISO 27001, NIST CSF), or open-source security tools