Senior Security Engineer, Cloud Security

Details

Ready to be pushed beyond what you think you’re capable of?

At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform — and with it, the future global financial system.

To achieve our mission, Coinbase seeks a candidate who is passionate about crypto and blockchain, eager to leave their mark, comfortable with high-caliber colleagues, and who actively seeks feedback to keep leveling up. The work culture is intense; many roles are remote-first but not remote-only — in-person participation is required throughout the year for team and company-wide offsites.

Coinbase Cloud Security (CloudSec) is responsible for the safety of cloud and compute platforms on which Coinbase applications are built. As a Senior Security Engineer on CloudSec you will be a trusted expert on platform security, ensuring security through consultations, configuration reviews, policy-as-code, and development of guardrails and automation.

Responsibilities

• Design, implement, and maintain network security controls across multi-cloud (AWS, GCP, etc.) and on-prem infrastructure.
• Enforce network segmentation and firewall rules to minimize blast radius while maintaining developer productivity.
• Review configuration changes and write policies to detect security invariants.
• Drive continuous improvement of secure-by-default network patterns for developers.
• Write code for automations that support security requirements such as threat detection, incident containment, and network access management.
• Partner with engineering teams to review cloud, network and routing architecture design changes.

Requirements

• At least 5 years of experience in cloud security with deep expertise in AWS.
• At least 2 years of experience in network security and cloud edge security.
• Ability to deploy cloud infrastructure with Terraform.
• Ability to develop automations or guardrails with Golang.
• Execution-focused mindset: able to navigate ambiguity and deliver results.
• Passion for building an open financial system and alignment with Coinbase's mission.

Nice to Haves

• Proficiency in crafting Rego rules for Open Policy Agent (OPA) or comparable policy-as-code solutions.
• Experience with GCP and/or on-premise infrastructure.
• Experience with detection platforms such as Wiz and tools like AWS Config.

Compensation

• Pay Range: $186,065 — $218,900 USD (target annual salary). Full-time offers also include target bonus, target equity, and benefits (medical, dental, vision, and 401(k)).

Additional Notes

• Position ID: P72358
• #LI-Remote (remote-first, with required in-person participation for offsites)
• Coinbase is an Equal Opportunity Employer and provides reasonable accommodations for candidates with disabilities.
• Coinbase pilots certain AI tools for initial screening interviews and interview intelligence; humans review interview responses and decisions are not made solely by AI.

Benefits

• Medical, Dental and Vision plans with generous employee contributions
• Health Savings Account with company contributions
• Disability and Life Insurance
• 401(k) plan with company match
• Wellness stipend
• Mobile/Internet reimbursement
• Connections stipend
• Volunteer Time Off
• Fertility counseling and benefits
• Generous time off/leave policy
• Option to get paid in digital currency