Coinbase is seeking to increase economic freedom in the world by building the emerging onchain platform and the future global financial system. The Application Security organization needs to improve the security of all Coinbase apps and services by designing, implementing, and deploying baseline security solutions.
Requirements
- Experience with designing and implementing automated security tools in Python or Go.
- A deep understanding of secure system design principles, authentication and authorization mechanisms.
- Proficiency in designing and implementing security solutions across various technology stacks and cloud environments (e.g., AWS, GCP, Azure).
- Strong experience with threat modeling methodologies and security design reviews, used to inform system development.
- AI security experience.
- Experience with Web3 security concepts, blockchain technologies, and smart contract security.
- Experience with large-scale distributed systems and microservices architectures.
Responsibilities
- Design, implement and deploy baseline security controls to secure all of Coinbase apps and services.
- Design, implement and deploy security guardrails to eliminate classes of security vulnerabilities at scale.
- Build automation to scale the security review process.
- Collaborate with engineering teams to provide expert guidance on secure product development, secure vendor product integration, and vulnerability remediation.
- Evaluate and recommend new security technologies and solutions to enhance the company's security posture.
- Participate in incident response activities, providing architectural insights and recommendations for containment and remediation.
- Mentor and guide junior security engineers and security champions on security best practices and architectural principles.
Other
- A Bachelor’s degree in Computer Science, Computer Engineering, or a related field.
- 5+ years of experience in software development, security architecture, application security, or offensive security roles, with a strong focus on building security systems.
- Excellent communication and interpersonal skills, with the ability to effectively articulate complex security concepts to both technical and non-technical audiences.
- Proven ability to work independently and collaboratively in a fast-paced, dynamic environment.
- Ability to influence and drive change across an organization.
