Senior Infrastructure Security Engineer

Coinbase Cloud Security (CloudSec) is seeking a senior security engineer to build security controls and advise engineering teams on secure architecture requirements and best practices. CloudSec is responsible for the safety of cloud and compute platforms on which Coinbase applications are built. As an engineer on the CloudSec team, you will be a trusted expert on the security of these platforms, ensuring their security through consultations, configuration reviews, policy-as-code, and automation.

1. Develop threat models for cloud and compute platforms to identify security risks.
2. Apply your expertise in security best practices for AWS, GCP, and Kubernetes to inform remediations and control roadmaps.
3. Review configuration changes and write policies to detect security invariants.
4. Build guardrails to make cloud and compute platforms secure by default.
5. Write automation code supporting security requirements like threat detection, incident containment, and network access management.
6. Partner with engineering teams to review architecture design changes.

1. At least 5 years of experience in cloud security with deep expertise in AWS or GCP.
2. Ability to deploy cloud infrastructure using Terraform and develop automations or guardrails with Golang or Ruby.
3. Execution-focused mindset, capable of navigating ambiguity and delivering results.
4. Passion for building an open financial system that unites the world.

1. At least 2 years of experience with Kubernetes security controls.
2. Experience writing rego rules for Open Policy Agent (OPA) or similar.
3. Experience with detection platforms like Wiz, AWS Config, or GCP Security Health Analytics.
4. Advanced cloud security certifications such as AWS Certified Security - Specialty, Google Cloud Certified - Professional Cloud Security Engineer, or Certified Kubernetes Security Specialist (CKS).

Pay Range: $185,500 CAD annually, including bonus, equity, and benefits.

Coinbase is proud to be an Equal Opportunity Employer, welcoming applicants regardless of race, gender, age, disability, and other protected statuses. We also consider qualified applicants with criminal histories in accordance with applicable laws.

For US applicants, view the Know Your Rights notice. We provide reasonable accommodations for individuals with disabilities; contact us at accommodations[at]coinbase.com.

Our data privacy policies are outlined here. By applying, you agree to our data processing practices and arbitration terms here.