Senior Blockchain Security Engineer, Offensive Security

Crypto Jobs

• Title: Senior Blockchain Security Engineer – Offensive Security
• Job Type: Full-time
• Team: Protocol Security (within Coinbase’s Offensive Security function)
• Compensation: CA$191,100 (base) + bonus + equity + benefits
• Job ID: G2702

Join Coinbase’s Protocol Security team to attack before others can — identifying novel vulnerabilities in both onchain (smart contracts, protocols, L1/L2s) and offchain infrastructure, and simulating real-world adversaries. The objective: fortify onchain development as Coinbase scales to bring 1B+ users onchain safely.

• Conduct threat modeling and security assessments on blockchain-focused products
• Design and execute Red Team operations simulating real-world threats
• Produce clear technical reports and actionable insights from offensive exercises
• Collaborate with detection and response teams to boost security coverage
• Help build Coinbase’s next-gen security tooling and frameworks
• Stay on top of latest vulnerabilities, threats, tools, and research in blockchain and offensive security
• 3+ years of Red Team experience with advanced offensive security skills
• Proven track record of discovering vulnerabilities in blockchain systems (protocol, app, infra)
• Strong knowledge of L1/L2 networks, DeFi protocols, staking, consensus mechanisms
• Capable of writing and speaking clearly to both technical and non-technical audiences
• Background in Computer Science, Cybersecurity, or equivalent experience
• Hands-on knowledge of security mitigation strategies in distributed systems

• Participation in CTFs, bug bounty programs, CVE research
• Experience in any of:
• Application Security
• Network Security
• 1+ years of Software Engineering experience (understanding code at depth is critical)

• High-impact frontier work: You’ll be helping Coinbase secure not just web infrastructure, but onchain systems that power wallets, staking, DeFi, and more.
• Real offensive security: It’s not just audits — you're red teaming onchain platforms, crafting novel exploits, and breaking systems before attackers can.
• Crypto-native: Expect to dive into the nitty-gritty of smart contract vulnerabilities, blockchain consensus, and exploit techniques specific to Web3.

Note: The subsequent job titles listed at the end seem unrelated to this role and are likely placeholders or formatting errors, so they are omitted from the refined description.