Senior Infrastructure Security Engineer

at Coinbase
📍 Canada
CAD 191,100 per year
SENIOR
✅ Remote

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 4 Kubernetes @ 4 Ruby @ 4 Terraform @ 4 GCP @ 4 AWS @ 4

Details

Ready to be pushed beyond what you think you’re capable of?
At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform — and with it, the future global financial system.
To achieve our mission, we’re seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company’s hardest problems.

Our work culture is intense and isn’t for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there’s no better place to be.

Coinbase Cloud Security (CloudSec) is seeking a senior security engineer to build security controls and advise engineering teams on secure architecture requirements and best practices. CloudSec is responsible for the safety of cloud and compute platforms on which Coinbase applications are built. As an engineer on the CloudSec team you are a trusted expert on the security of these platforms. You will ensure the security of these platforms through security consultations, configuration reviews, policy-as-code, and development of guardrails and automation.

Responsibilities

  • Develop threat models for cloud and compute paved roads to identify security risks.
  • Apply your expert knowledge of security best practices for AWS, GCP, and Kubernetes to inform remediations and the team’s control roadmap.
  • Review configuration changes and write policies to detect security invariants.
  • Build guardrails to make cloud and compute platforms safe by default.
  • Write code for automations that support security requirements like threat detection, incident containment, and network access management.
  • Partner with engineering teams to review cloud and compute architecture design changes.

Requirements

  • At least 5 years of experience in cloud security with deep expertise in AWS.
  • At least 2 years of experience building and configuring security controls for applications on Kubernetes.
  • An ability to deploy cloud infrastructure with Terraform and to develop automations or guardrails with Golang or Ruby.
  • An execution-focused mindset, capable of navigating through ambiguity and delivering results.
  • Your passion for building an open financial system that brings the world together drives you to excel in this role.

Nice to haves:

  • You have written rego rules for Open Policy Agent (OPA) or similar policy as code implementations.
  • You have worked with detection platforms like Wiz, AWS Config.
  • You have advanced cloud security certifications like AWS Certified Security - Specialty, and/or Certified Kubernetes Security Specialist (CKS).

Benefits

  • Extended Health Care Benefit - (coordinates with Provincial Coverage)
  • Dental Care
  • Vision Care
  • Consult+ (Virtual Health Care)
  • Life & Accident Insurance
  • Disability Coverage
  • Employee Stock Purchase Plan (ESPP)
  • Wellness Stipend
  • Mobile/Internet Reimbursement
  • Connections Stipend
  • Learning and Development Allowance
  • Employee Assistance Program
  • Travel Medical Policy - Global Traveler
  • Fertility Benefits
  • Generous Time off/Leave Policy