Senior Security Engineer - Identity and Access Management

About the Role

Are you ready to push the boundaries of what you believe you're capable of?

At Coinbase, we're on a mission to enhance economic freedom globally. This ambitious journey requires exceptional talent as we develop the upcoming on-chain platform, paving the way for the future financial system.

We seek a dedicated candidate who is not just passionate about our mission but also believes in the transformative power of crypto and blockchain technology in modernizing finance. If you're eager to make a significant impact, thrive under pressure while collaborating with highly skilled colleagues, and actively seek constructive feedback to grow, we would love to hear from you. You should be someone who embraces challenges and tackles the company's toughest problems head‑on.

Our work environment is intense and designed for those who are committed to excellence. Join us in shaping the future alongside others who expect the same high standards from each other.

Though many positions at Coinbase allow for remote work, we emphasize in‑person collaboration throughout the year, with team and company‑wide offsites held multiple times annually. Your participation is vital and well‑supported.

At Coinbase, safeguarding customer funds and sensitive data relies heavily on identity and access controls. Our Identity and Access Management (IAM) program, part of the Security team, collaborates across functional areas to design, build, and govern services relating to workforce identity, privileged access controls, and automated governance amidst a rapidly evolving technology and regulatory environment. This role acts as a senior technical leader within the IAM program, partnering with Engineering, IT, Platform, and business teams to create and deliver identity solutions that harmonize zero‑trust security with workforce enablement, mitigate insider risk, and fulfill global regulatory requisites.

Key Responsibilities

• Lead the architectural vision and security engineering implementation for our IAM and workforce security platforms across multi‑cloud infrastructures and various third‑party SaaS applications.
• Assess, design, and execute strategies for workforce Identity Governance and Administration (IGA), integrating commercial tools with custom middleware and AI models for automated access management.
• Develop high‑quality code for scalable automation and seamless integrations that embed intelligence directly into workflows and provisioning processes.
• Conduct in‑depth threat modeling and architecture reviews for crucial identity systems, utilizing automated intelligence tools to uncover potential vulnerabilities.
• Collaborate with Engineering, IT, HR, AI/ML, and Product teams to align security initiatives with business objectives, ensuring a balance between robust security and efficient workflow.
• Serve as the directly responsible individual (DRI) for intricate, cross‑team security initiatives, guiding junior engineers and influencing senior leaders on risk management and innovative workforce security strategies.

Qualifications

• 7+ years of experience in software or security engineering with a strong focus on IAM and enterprise security.
• Proficiency in at least one programming language (e.g., Python, Go) and adeptness with AI‑assisted development tools for building security solutions.
• A successful history of implementing hybrid IAM infrastructures, integrating numerous third‑party SaaS applications with internally developed systems.
• Comprehensive knowledge of IGA processes, automated provisioning, continuous access reviews, and privileged access management across diverse systems.
• Expertise in modern identity protocols, cloud IAM (AWS and GCP), and dynamic access control frameworks.
• Strong background in risk management, automated threat modeling, and zero‑trust architecture.
• A results‑driven mindset that manages ambiguity, aligns with teams without direct authority, and effectively communicates complex risk concepts to stakeholders.
• Ability to achieve security and engineering outcomes across decentralized organizational structures by fostering consensus and coordinating across multiple teams.
• Proficient in responsibly utilizing generative AI tools in daily workflows and adapting to evolving technologies to enhance efficiency and quality.

Preferred Qualifications

• Experience in fast‑growing tech, FinTech, or crypto sectors adhering to strict regulatory practices regarding workforce access and auditing.
• Experience managing non‑FTE workforce access, including role‑based controls and timely deprovisioning amidst complex identity cycles.
• Hands‑on experience with Policy‑as‑Code and integrating ML for automating policy generation and identifying anomalies.
• Experience managing identity boundaries for AI/ML workloads, including securing workforce access to critical data and infrastructure.

Job Details

Job #: P76467

Pay Transparency Notice: Depending on your work location, the target annual base salary for this position can range from $218,025 to $256,500 USD. Total compensation may also include equity, bonuses, and benefits such as medical, dental, vision, and 401(k).

Commitment to Equal Opportunity: Coinbase is an Equal Opportunity Employer. All qualified candidates will be considered for employment without regard to race, color, religion, gender, national origin, age, disability, veteran status, or any other protected characteristic.

Accommodation Request: For individuals needing accommodation due to a disability, please reach out to accommodations[at]coinbase.com with the nature of your request.

Global Data Privacy Notice: Depending on your location, applicable data regulations will govern our processing of job applicants' data. More details are available in our privacy