Job Closed
This listing is no longer active.
A digital currency exchange, Coinbase is used by consumers, merchants, and traders to buy and sell cryptocurrencies, such as Bitcoin, Ethereum, and Litecoin. Founded in 2012 "to cr
Senior Security Engineer, IAM
Location
Canada
Posted
43 days ago
Salary
0
Seniority
Senior
Job Description
Senior Security Engineer, IAM
Coinbase
Ready to be pushed beyond what you think you’re capable of? At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform — and with it, the future global financial system. To achieve our mission, we’re seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company’s hardest problems. Our work culture is intense and isn’t for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there’s no better place to be. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported. The AppSec team is looking for a Senior Security Engineer to revolutionize how we scale Identity and Access Management (IAM) reviews. In this role, you will have the autonomy to treat security as an engineering problem and stay at the forefront of applying AI to cybersecurity. Your mission is to move our organization away from manual processes toward a proactive, automated security posture. By building the foundations of a next-generation IAM review system, you will design and deploy frameworks that enforce least-privilege at scale and leverage AI to identify risks that human oversight might miss. What you’ll be doing (ie. job duties): - Design, develop, and maintain internal tools and services (primarily in Go) to automate the IAM lifecycle and security review processes. - Build "Guardrails-as-Code" to detect and remediate overly permissive roles or misconfigurations across a diverse set of in-house developed and SaaS applications. - Prototype and implement AI-driven solutions (such as LLM-based analysis or anomaly detection) to categorize access patterns and provide intelligent recommendations for rightsizing permissions. - Create developer-centric tools that allow engineering teams to manage their own access securely, reducing friction while maintaining strict security standards. - Serve as the subject matter expert for complex IAM architecture decisions, ensuring that automation logic aligns with industry frameworks (like Zero Trust and NIST). What we look for in you (ie. job requirements): - Demonstrated ability to responsibly use generative AI tools and copilots (e.g., LibreChat, Gemini, Glean) in daily workflows, continuously learn as tools evolve, and apply human-in-the-loop practices to deliver business-ready outputs and drive measurable improvements in efficiency, cost, and quality. - Bachelor’s or Master’s in Computer Science, Computer Engineering, Cybersecurity, or a related field. - Deep understanding of IAM primitives (Service Accounts, OIDC, SAML, RBAC vs. ABAC). - Strong proficiency in Python, Go, or Node.js. Experience with Git, CI/CD pipelines, and writing clean, maintainable code. - Experience in leveraging LLMs to enable self-serve and autonomous capabilities. - Familiarity with microservices architecture. Nice to haves: - Demonstrated experience managing workforce access, logging, and auditing in a fast-paced hyper-growth environment (FinTech or crypto preferred), with a strong understanding of navigating strict regulatory landscapes, such as SOX compliance. - Experience with data engineering basics (SQL, Snowflake, or Databricks) to analyze large-scale access logs. - Background in Application Security. Job #: P76231 #LI-Remote Pay Transparency Notice: The target annual base salary for this position can range as detailed below. Total compensation may also include equity and bonus eligibility and benefits (including medical, dental, and vision). Annual base salary range (excluding equity and bonus): $191,100—$191,100 CAD Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying. Commitment to Equal OpportunityCoinbase is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the Employee Rights and the Know Your Rights notices by clicking on their corresponding links. Additionally, Coinbase participates in the E-Verify program in certain locations, as required by law. Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations[at]coinbase.com to let us know the nature of your request and your contact information. For quick access to screen reading technology compatible with this site click here to download a free compatible screen reader (free step by step tutorial can be found here). Global Data Privacy Notice for Job Candidates and ApplicantsDepending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available here. By submitting your application, you are agreeing to our use and processing of your data as required. For US applicants only, by submitting your application you are agreeing to arbitration of disputes as outlined here. AI DisclosureFor select roles, Coinbase is piloting an AI tool based on machine learning technologies to conduct initial screening interviews to qualified applicants. The tool simulates realistic interview scenarios and engages in dynamic conversation. A human recruiter will review your interview responses, provided in the form of a voice recording and/or transcript, to assess them against the qualifications and characteristics outlined in the job description. For select roles, Coinbase is also piloting an AI interview intelligence platform to transcribe and summarize interview notes, allowing our interviewers to fully focus on you as the candidate. The above pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment. To request a reasonable accommodation due to disability, please contact accommodations[at]coinbase.com
Benefits
- 401(K), 401(K) matching, Childcare benefits, Company equity, Company-sponsored outings, Continuing education stipend, Dental insurance, Employee stock purchase plan, Family medical leave, Flexible Spending Account (FSA), Free daily meals, Generous parental leave, Health insurance, Job training & conferences, Life insurance, Paid volunteer time, Paid holidays, Paid sick days, Performance bonus, Promote from within, Lunch and learns, Relocation assistance, Remote work program, Free snacks and drinks, Team based strategic planning, OKR operational model, Vision insurance, Wellness programs, Mental health benefits, Home-office stipend for remote employees, Employee awards, Pay transparency, Personal development training, Flexible time off, Bereavement leave benefits, Company-wide vacation
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
SAP Security Consultant
DyFlex SolutionsYour SAP Gold Partner for S/4HANA, Business ByDesign, Ariba and Analytics solutions.
• Provide hands-on SAP Security support across ECC, S/4HANA and SAP Public Cloud environments • Design, build and maintain SAP roles and authorisations using PFCG • Maintain and troubleshoot SU24 and SU25 data and resolve authorisation issues • Support Fiori security configuration including catalogue and group assignments • Support BAU/AMS activities including user provisioning, access requests and incident resolution • Implement and support SAP GRC Access Control including access risk analysis and remediation • Collaborate with functional and technical teams to align security design with business processes • Assist with security activities for project work including enhancements, upgrades and new implementations • Support audit, compliance and segregation of duties requirements • Create and maintain clear technical and process documentation for customers and internal use
Security Consultant
Akamai TechnologiesAt Akamai, we make life better for billions of people, billions of times a day. Every moment, billions of people, all over the world, are using the internet to shop, play games, look after finances, learn remotely, share videos, connect across the world, and so much more. These life-shaping digital experiences wouldn’t be possible without Akamai. We power and protect life online. It’s an extraordinary mission, and our global teams achieve it by solving the toughest challenges, and turning the impossible into the possible. With the world’s most distributed compute platform — from cloud to edge — we make it easy for businesses to develop and run applications, while we keep experiences closer to users and threats farther away. That’s why innovative companies worldwide choose Akamai to build, deliver, and secure their digital experiences. Thanks to our world’s most distributed platform for cloud computing, security, and content delivery. Akamai keeps applications and experiences closer and threats farther away. Devoted, determined problem-solvers who share a passion for technology, we’re always pushing ground-breaking ideas and driving innovation. Do you want to power and protect life online, by solving the toughest challenges with us? Be part of an amazing team!
• Ensuring customer success by understanding requirements and helping them build a long-term strategy based on best practices • Collaborating with cross-functional teams to evaluate customer architecture, address technical challenges and maximize benefits from using Akamai solutions • Participating in training and projects contributing to best practices, maximizing efficiency, and improving methodology and service quality • Demonstrating Akamai's value, ensuring customer engagement and communicating effectively with both technical and business audiences
Senior Cybersecurity Compliance Specialist
MRI TechnologiesProof of U.S. Citizenship is a requirement for this position. Must be able to complete a U.S. government background investigation. MRI Technologies is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. As we are a Federal Contractor, most positions require the employee to obtain and maintain a U.S. Government background investigation. MRI also completes a pre-screening background check for anyone offered employment.
Role Description MRI Technologies has an exciting opportunity for a Senior Cybersecurity Compliance Specialist on the Mission Enabling Services Contract (MESC) supporting NASA's Mission Cloud (NMC) program. In this role, you will own the compliance posture for a production cloud platform delivering CUI/ITAR and FISMA Moderate classified workloads across GCP and Azure environments—systems that enable NASA mission operations every day. You will serve as the foremost authority on NIST SP 800-53, SP 800-171, and FedRAMP control requirements, working alongside cloud engineers, security personnel, and NASA ISSO stakeholders to translate compliance mandates into actionable engineering guidance. Your documentation, leadership, and technical rigor will shape the authorization and continuous monitoring of a platform that is actively expanding across new service boundaries and capability families. A typical day might include: - Reviewing updated control implementation evidence for an active ATO package. - Coordinating with the NASA ISSO on a compliance finding flagged during continuous monitoring. - Authoring new SSP sections for an expanding system boundary. - Translating a complex NIST control into step-by-step engineering guidance. - Presenting compliance status to program leadership. - Evaluating OSCAL-based tooling to automate evidence generation. - Assessing whether a proposed architecture change affects the authorization boundary. - Working with AI-assisted tools to accelerate documentation drafting. The work is substantive, high-stakes, and directly tied to the secure operation of infrastructure that NASA depends on. Qualifications - Bachelor's Degree in Computer Science, Cybersecurity, IT, or equivalent. - 6 or more years of relevant cybersecurity compliance experience. - Deep working knowledge of NIST SP 800-53 and NIST SP 800-171 control frameworks. - Experience authoring and maintaining System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), and Security Assessment Reports (SARs). - Familiarity with FedRAMP or FISMA authorization processes. - Experience working within a federal or NASA IT environment. - Strong technical writing and compliance documentation skills. - Ability to communicate complex compliance requirements clearly to engineering and leadership audiences. - Working familiarity with OSCAL (Open Security Controls Assessment Language) or willingness to develop OSCAL-based SSP and assessment workflows. - Comfort using AI-assisted tooling to accelerate compliance workflows such as control mapping, evidence summarization, and documentation drafting. - Ability to excel in a remote work environment. Requirements - Experience with Google Cloud Platform (GCP) security tooling such as Security Command Center and Chronicle. - Familiarity with ITAR-controlled systems or CUI handling requirements. - CISSP, CAP, Security+, or equivalent certification. - Experience with continuous monitoring automation tools. - Prior NASA or federal civilian agency ATO experience. - Hands-on experience with OSCAL tooling (e.g., NIST OSCAL CLI, Trestle, or similar) or machine-readable SSP generation. - Experience using AI tools to accelerate compliance documentation, gap analysis, or control implementation guidance. Benefits - Comprehensive benefits package including medical, dental, vision, company-paid life and disability insurance. - Paid time off and 401(k). - Flexible work schedule. - Strong career development opportunities working alongside NASA's mission teams. Company Description Proof of U.S. Citizenship is a requirement for this position. Must be able to complete a U.S. government background investigation. MRI Technologies is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. As we are a Federal Contractor, most positions require the employee to obtain and maintain a U.S. Government background investigation. MRI also completes a pre-screening background check for anyone offered employment.
Security Engineer
MRI TechnologiesProof of U.S. Citizenship is a requirement for this position. Must be able to complete a U.S. government background investigation. MRI Technologies is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. As we are a Federal Contractor, most positions require the employee to obtain and maintain a U.S. Government background investigation. MRI also completes a pre-screening background check for anyone offered employment.
Role Description MRI Technologies has an exciting opportunity for a Security Engineer on the NASA Mission Cloud (NMC) team, supporting the Mission Enabling Services Contract (MESC). In this role, you will own the security tooling, harden the cloud infrastructure, and drive vulnerability remediation at scale across a production GCP platform running 12+ GKE clusters across ITAR, Moderate, and Low impact boundaries. You will work alongside cloud engineers, compliance specialists, and NASA stakeholders, building detection coverage, enforcing least-privilege access, and integrating security controls into the CI/CD pipelines that keep the platform moving. You should be comfortable writing code: whether it is Python automation for CVE triage, Go tooling for policy enforcement, or shell scripting for security checks in CI pipelines, this role expects you to build things, not just configure them. A typical day might include: - Triaging new CVEs identified across container images. - Reviewing overnight alerts from the security monitoring stack. - Writing Python automation to streamline a vulnerability remediation workflow. - Integrating a new security check into a GitLab CI/CD pipeline. - Conducting an IAM drift analysis across cloud resources. - Evaluating a new supply-chain security tool like Chainguard or Sigstore. - Investigating an anomaly flagged by the SIEM. The work is hands-on, engineering-first, and operating at a scale where your improvements have immediate, measurable impact on systems that carry NASA's mission workloads. Qualifications - Bachelor's Degree in Computer Science, Cybersecurity, or equivalent. - 4 or more years of relevant security engineering experience. - Experience with cloud security engineering on GCP or an equivalent cloud platform (AWS or Azure). - Hands-on experience with container security, Kubernetes hardening, and image vulnerability scanning. - Working knowledge of IAM principles and least-privilege enforcement at scale. - Experience with security monitoring, SIEM tools, and alert triage. - Familiarity with CVE management and vulnerability remediation workflows. - Comfortable working in Linux environments and with CLI-based tooling. - Working proficiency in at least one modern programming language (Python, Go, JavaScript, or Rust) sufficient to build security tooling, automation scripts, and CI/CD integrations. - Ability to excel in a remote work environment. Requirements - Experience with Chainguard, Sigstore, or similar supply chain security tooling. - GCP Security Command Center, Chronicle, or Google Cloud Armor experience. - GitLab CI/CD pipeline security integration experience. - NIST SP 800-53 or FedRAMP control implementation experience. - Security+ or equivalent certification. - Prior NASA or federal government security engineering experience. Benefits - Comprehensive benefits package including medical, dental, vision, company-paid life and disability insurance. - Paid time off and 401(k). - Flexible work schedule. - Strong career development opportunities working alongside NASA's mission teams.
