Used Tools & Technologies
Not specified
Required Skills & Competences ?
Security @ 3 Terraform @ 3 GCP @ 3 AWS @ 3 Cloudflare @ 3Details
At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform — and with it, the future global financial system.
To achieve our mission, we’re seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company’s hardest problems.
Our work culture is intense and isn’t for everyone. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported.
Coinbase Cloud Security (CloudSec) is looking for a Staff Security Engineer to enhance our network security across multiple cloud environments. This role involves leading the design, implementation, and continuous improvement of our security posture. You will leverage your extensive skills in WAF management, DDoS protection, network segmentation, and firewall policy management to enforce robust security measures while enabling developer efficiency.
Responsibilities
- Design, implement, and maintain network security controls across multi-cloud (AWS, GCP, etc.) and on-prem infrastructure
- Own and optimize Web Application Firewalls (WAF) and DDoS protection services for scalability and resilience
- Enforce network segmentation and firewall rules that minimize blast radius without impairing productivity
- Review configuration changes and write policies to detect security invariants
- Drive continuous improvement of secure-by-default network patterns for developers
- Write code for automations that support security requirements like threat detection, incident containment, and network access management
- Partner with engineering teams to review network and routing architecture design changes
Requirements
- At least 8 years of experience in network security with deep expertise in AWS and cloud edge security experience
- Ability to deploy cloud infrastructure with Terraform
- Ability to develop automations or guardrails with Golang
- Execution-focused mindset, capable of navigating through ambiguity and delivering results
- Passion for building an open financial system that brings the world together
Nice to haves
- Proficiency in crafting Rego rules for Open Policy Agent (OPA) or comparable policy-as-code solutions
- Proven experience implementing AWS Network Firewall or GCP Cloud Firewall in large-scale production environments
- Demonstrated expertise in managing Cloudflare
- Experience with both GCP and/or on-premise infrastructure
Pay Transparency
Depending on your work location, the target annual salary for this position can range as detailed below. Full time offers from Coinbase also include bonus eligibility, equity eligibility, and benefits (including medical, dental, vision and 401(k)).
Pay Range: $218,025—$256,500 USD
Benefits
- Medical Plan, Dental and Vision Plan with generous employee contributions
- Health Savings Account with company contributions each pay period
- Disability and Life Insurance
- 401(k) plan with company match
- Wellness Stipend
- Mobile/Internet Reimbursement
- Connections Stipend
- Volunteer Time Off
- Fertility Counseling and Benefits
- Generous Time off/Leave Policy
- The option of getting paid in digital currency
Additional Information
- Position ID: P72327
- #LI-Remote
- Coinbase is an Equal Opportunity Employer and provides reasonable accommodations to individuals with disabilities. For applicants in certain locations, Coinbase participates in E-Verify as required by law.
AI Disclosure
For select roles, Coinbase is piloting AI tools for initial screening and interview intelligence. Human reviewers will assess interview responses. These pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment.