Security Engineer

About Dragonfly's Portfolio Security Engineer Roles

Dragonfly, a prominent crypto-native Venture Capital and research firm managing over $4B in assets across 160+ portfolio companies, is facilitating connections between exceptional candidates and high-impact technical roles within its portfolio. This specific posting is not for an internal role at Dragonfly but serves to directly connect you with one or more of their actively hiring portfolio companies for Security Engineer positions.

What We're Looking For

• 2–5 years of experience in security engineering, operations, or infrastructure security, ideally spanning both cloud and crypto-native environments.
• Solid understanding of application, network, and blockchain security principles.
• Hands-on experience with SIEMs, EDR tools, or threat detection systems.
• Familiarity with GCP, AWS, or other production cloud environments, alongside containerized or distributed systems.
• Understanding of web3 security concepts such as multisig wallets, smart contract risks, validator security, and key management.
• Experience building or operating automated security monitoring and alerting pipelines.
• Strong scripting or automation skills (Python, TypeScript, or Go).
• Bonus: experience with security audits, compliance frameworks (SOC 2, ISO 27001, NIST CSF), or open-source security tools.

About The Role(s)

Dragonfly's portfolio companies are actively hiring across two primary focus areas for Security Engineer roles:

Infrastructure-Focused Roles

• Secure and monitor blockchain infrastructure, nodes, and validators.
• Build and maintain security tooling for on-chain infrastructure, RPC endpoints, and key management systems.
• Harden cloud and network environments, implement defense-in-depth for production systems, and manage secrets and access control.
• Respond to infrastructure-level threats, analyze incidents, and improve detection coverage.

Application-Focused Roles

• Partner with smart contract and product teams to secure DeFi, wallet, or protocol codebases.
• Contribute to application-level threat modeling, auditing, and secure development practices.
• Develop internal tooling for vulnerability scanning, dependency management, and transaction monitoring.
• Work with on-chain analytics and incident response for protocol or user-level exploits.

Even if you don't perfectly match every point but possess a strong passion for security within the crypto space, you are encouraged to apply.

Process

• Your background, skill set, and interests will be confidentially matched with suitable portfolio companies.
• If mutual interest is established, a warm introduction will be facilitated.
• If no immediate match is found, your profile will be retained for future opportunities.

Dragonfly's portfolio companies are globally distributed, offering remote, hybrid, and in-person roles. They are building across the entire crypto ecosystem, including DeFi, CeFi, infrastructure, L1s and L2s, creator/consumer apps, ZK, and Crypto x AI.

All candidate submissions are strictly confidential.

Key skills/competency

• Security Engineering
• Blockchain Security
• Cloud Security
• Web3 Security
• Threat Detection
• Incident Response
• Scripting/Automation
• Smart Contract Security
• Key Management
• Compliance Frameworks