Senior Insider Threat Analyst

USD 167,300-196,800 per year
SENIOR
✅ Remote

Used Tools & Technologies

GenAI

Required Skills & Competences

Security @ 4 Leadership @ 4 Communication @ 4 Fraud @ 6 Generative AI @ 4 AI @ 4

Details

Join the Insider Threat team within Coinbase's Security Operations organization as a Senior Insider Threat Analyst, helping protect digital assets and the trust of millions of customers. This team detects, investigates, and mitigates threats from inside the organization using tooling, automation, and strategic expertise. You will own complex investigations end-to-end, shape detection and response processes, and partner cross-functionally with Security, Legal, HR, and business teams to mature Coinbase's insider threat program globally.

Responsibilities

  • Own complex insider threat investigations end to end: triage, evidence collection, employee interviews, stakeholder coordination, and delivering findings, risk assessments, and actionable recommendations to leadership.
  • Lead detection and analysis efforts by prioritizing alert reviews across insider threat technologies (SIEM, UBA, DLP, endpoint detection), correlating signals, and identifying patterns for mitigation strategies.
  • Partner with Security, Legal, HR, and business teams to design, implement, and refine processes that reduce insider risk and close recurring control gaps at scale.
  • Refine alerting logic and develop scalable detection improvements, including recommending automation opportunities.
  • Mentor junior analysts on investigative tradecraft, evidence handling, and stakeholder communication.
  • Compose decision-ready briefs and assessments for senior leadership, translating complex investigative findings into concise narratives with clear risk context and recommended next steps.

Requirements

  • 5+ years of experience in insider threat, security investigations, counterintelligence, fraud detection, or a closely related discipline, with deep hands-on expertise in insider threat technologies (SIEM, UBA, DLP, endpoint detection) and log analysis.
  • Proven track record of independently leading complex, sensitive investigations involving employee matters, including evidence collection, interviewing techniques, and coordination across Legal, HR, and business stakeholders.
  • Demonstrated ability to identify systemic control gaps and drive scaled improvements to insider threat detection and response processes; experience refining alerting logic and recommending automation opportunities.
  • Experience composing investigative briefs, risk assessments, and analytical products for senior leadership; ability to translate complex technical and behavioral findings into concise, decision-ready narratives.
  • Working knowledge of legal, regulatory, and ethical frameworks governing insider threat programs and experience applying sound judgment when handling highly sensitive and confidential information.
  • Experience utilizing generative AI responsibly with human oversight to produce business-ready outputs and improve workflow efficiency, cost, and quality.

Pay & Compensation

  • Annual base salary range (excluding equity and bonus): $167,280 — $196,800 USD. Total compensation may also include equity, bonus eligibility, and benefits (medical, dental, vision, 401(k)).

Additional Information

  • Remote-first (Remote - USA). Coinbase is remote-first but not remote-only; employees should expect quarterly in-person working sessions called “surges.”
  • Position ID: P77056
  • Application Limit: Candidates may submit a maximum of 3 applications within a 6-month period.
  • Equal Opportunity Employer; accommodations available for applicants with disabilities.
  • Coinbase pilots AI tools for initial screening and interview transcription/summarization; AI is not used to make employment decisions.