Staff Security Engineer, Network Security

at Coinbase
πŸ“ World
CAD 217,900 per year
SENIOR
βœ… Remote βœ… Hybrid

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 4 Terraform @ 4 GCP @ 4 AWS @ 4 CCPA @ 4 GDPR @ 4 Cloudflare @ 4

Details

Coinbase Cloud Security (CloudSec) is seeking a Staff Security Engineer to enhance network security across multiple cloud environments. This role leads the design, implementation, and continuous improvement of network security posture β€” leveraging WAF management, DDoS protection, network segmentation, firewall policy management, and automation β€” while enabling developer efficiency. The role is remote-first with in-person participation required throughout the year for team and company-wide offsites.

Responsibilities

  • Design, implement, and maintain network security controls across multi-cloud (AWS, GCP, etc.) and on-prem infrastructure.
  • Own and optimize Web Application Firewalls (WAF) and DDoS protection services for scalability and resilience.
  • Enforce network segmentation and firewall rules that minimize blast radius without impairing productivity.
  • Review configuration changes and write policies to detect security invariants.
  • Drive continuous improvement of secure-by-default network patterns for developers.
  • Write code for automations that support security requirements like threat detection, incident containment, and network access management.
  • Partner with engineering teams to review network and routing architecture design changes.

Requirements

  • At least 8 years of experience in network security with deep expertise in AWS and cloud edge security.
  • Ability to deploy cloud infrastructure with Terraform.
  • Ability to develop automations or guardrails with Golang.
  • Execution-focused mindset, capable of navigating ambiguity and delivering results.
  • Passion for building an open financial system and belief in crypto/blockchain technology.

Nice to haves

  • Proficiency in crafting Rego rules for Open Policy Agent (OPA) or comparable policy-as-code solutions.
  • Proven experience implementing AWS Network Firewall or GCP Cloud Firewall in large-scale production environments.
  • Demonstrated expertise in managing Cloudflare.
  • Experience with both GCP and/or on-premise infrastructure.

Compensation & Additional Details

  • Position ID: P72327
  • Pay Range: $217,900β€”$217,900 CAD (target annual salary). Full-time offers also include bonus eligibility, equity eligibility, and benefits (medical, dental, vision).
  • #LI-Remote β€” remote-first, with in-person participation expected throughout the year for offsites and collaboration.

Benefits

  • Extended Health Care Benefit (coordinates with Provincial Coverage)
  • Dental Care
  • Vision Care
  • Consult+ (Virtual Health Care)
  • Life & Accident Insurance
  • Disability Coverage
  • Employee Stock Purchase Plan (ESPP)
  • Wellness Stipend
  • Mobile/Internet Reimbursement
  • Connections Stipend
  • Learning and Development Allowance
  • Employee Assistance Program
  • Travel Medical Policy - Global Traveler
  • Fertility Benefits
  • Generous Time off/Leave Policy

Equal Opportunity & Privacy

Coinbase is an Equal Opportunity Employer and committed to reasonable accommodations for individuals with disabilities. Global data privacy notices (GDPR/CCPA) and candidate processing details apply as outlined by Coinbase policies.