Senior Security Engineer, IAM

The AppSec team is looking for a Senior Security Engineer to revolutionize how we scale Identity and Access Management (IAM) reviews. In this role, you will have the autonomy to treat security as an engineering problem and stay at the forefront of applying AI to cybersecurity. Your mission is to move our organization away from manual processes toward a proactive, automated security posture. By building the foundations of a next-generation IAM review system, you will design and deploy frameworks that enforce least-privilege at scale and leverage AI to identify risks that human oversight might miss.

What you’ll be doing (ie. job duties): 

• Design, develop, and maintain internal tools and services (primarily in Go) to automate the IAM lifecycle and security review processes.
• Build "Guardrails-as-Code" to detect and remediate overly permissive roles or misconfigurations across a diverse set of in-house developed and SaaS applications.
• Prototype and implement AI-driven solutions (such as LLM-based analysis or anomaly detection) to categorize access patterns and provide intelligent recommendations for rightsizing permissions.
• Create developer-centric tools that allow engineering teams to manage their own access securely, reducing friction while maintaining strict security standards.
• Serve as the subject matter expert for complex IAM architecture decisions, ensuring that automation logic aligns with industry frameworks (like Zero Trust and NIST).

What we look for in you (ie. job requirements):  

• Bachelor’s or Master’s in Computer Science, Computer Engineering, Cybersecurity, or a related field.
• Deep understanding of IAM primitives (Service Accounts, OIDC, SAML, RBAC vs. ABAC).
• Strong proficiency in Python, Go, or Node.js. Experience with Git, CI/CD pipelines, and writing clean, maintainable code.
• Experience in leveraging LLMs to enable self-serve and autonomous capabilities.
• Familiarity with microservices architecture.

Nice to haves:

• Demonstrated experience managing workforce access, logging, and auditing in a fast-paced hyper-growth environment (FinTech or crypto preferred), with a strong understanding of navigating strict regulatory landscapes, such as SOX compliance.
• Experience with data engineering basics (SQL, Snowflake, or Databricks) to analyze large-scale access logs.
• Background in Application Security.

Pay Transparency Notice: The target annual base salary for this position can range as detailed below. Total compensation may also include equity and bonus eligibility and benefits (including medical, dental, and vision).

Annual base salary range (excluding equity and bonus):

$191,100—$191,100 CAD

Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying.

Commitment to Equal Opportunity

Coinbase is proud to be an Equal Opportunity Employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law.  For US applicants, you may view the Employee Rights and the Know Your Rights notices by clicking on their corresponding links. Additionally, Coinbase participates in the E-Verify program in certain locations, as required by law. 

Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations[at]coinbase.com to let us know the nature of your request and your contact information.   For quick access to screen reading technology compatible with this site click here to download a free compatible screen reader (free step by step tutorial can be found here).