10 days ago
Senior Offensive Security Engineer
Coinbase
Hybrid
Full Time
$200,000
Hybrid
Job Overview
Job TitleSenior Offensive Security Engineer
Job TypeFull Time
CategoryCommerce
Experience5 Years
DegreeMaster
Offered Salary$200,000
LocationHybrid
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
About the Role: Senior Offensive Security Engineer at Coinbase
At Coinbase, our mission is to increase economic freedom in the world by building the emerging onchain platform and the future global financial system. This ambitious goal requires passionate, high-caliber individuals eager to leave their mark and solve the company’s hardest problems. While Coinbase operates on a remote-first basis, in-person participation for team and company-wide offsites is required multiple times annually.
The Opportunity in Application Security
The Application Security organization is seeking a highly skilled and experienced Senior Offensive Security Engineer, specializing in Penetration Testing. The ideal candidate will have a proven track record in assessing and securing the digital security of physical spaces, along with an active, current, or recently expired security clearance and demonstrated experience working with executives at large companies.
What You'll Be Doing
- Assess the digital security posture of physical spaces (e.g., labs, offices), focusing on IOT/IOT automation and prosumer networking gear.
- Conduct comprehensive penetration tests on networked devices, including hardware, firmware, and their integrations.
- Identify and exploit vulnerabilities within ecosystems, providing detailed reports and actionable recommendations for remediation.
- Collaborate closely with security and development teams to embed security best practices throughout the device lifecycle.
- Stay abreast of the latest security threats, vulnerabilities, and industry best practices for securing physical spaces.
- Present complex findings and strategic recommendations to both technical and non-technical stakeholders, including executive leadership.
What We Look For In You
- Active, current, or recently expired security clearance.
- 2+ years of experience engaging with C-Suite executives at S&P 500 organizations.
- Proven expertise in penetration testing across the full threat spectrum, from common criminal actors to sophisticated Advanced Persistent Threats (APTs) and nation-state actors.
- Demonstrated expertise in penetration testing the full digital security of physical spaces, including Building Management Systems (BMS), Physical Access Control Systems (PACS), IoT/home automation devices, wireless protocols (LoRaWAN, Bluetooth, Zigbee, etc.), and networked security infrastructure (e.g., IP cameras and alarms).
- Extensive experience working with executives within large, complex organizations.
- Strong understanding of networking protocols, architectures, security frameworks, and building security best practices.
- Proficiency with various penetration testing tools and methodologies.
- Exceptional communication and report-writing skills.
- Flexibility to travel occasionally, as required by business needs.
Nice to Haves
- Participation in computer security competitions (CTFs), Bug Bounty programs, or open-source security research.
- Experience in Web3 security, network security, and/or cloud security.
- Experience with developing and implementing security tooling to support penetration testing and AI penetration testing activities.
- Experience pentesting AI systems and Large Language Models (LLMs).
Key skills/competency
- Penetration Testing
- IOT Security
- Network Security
- Physical Security Assessment
- Vulnerability Exploitation
- Security Clearance
- Executive Communication
- Threat Intelligence
- Security Best Practices
- Reporting & Remediation
How to Get Hired at Coinbase
- Research Coinbase's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor, focusing on their "economic freedom" mission.
- Customize your resume: Highlight offensive security engineering, IOT/network pentesting, and executive communication experience. Tailor it to the Senior Offensive Security Engineer role's specific requirements.
- Showcase relevant projects: Include a portfolio or descriptions of past penetration testing projects, especially those involving physical spaces, IOT, or C-suite interactions.
- Prepare for technical depth: Review advanced offensive security methodologies, network protocols, IOT vulnerabilities, and demonstrate strong problem-solving skills in security assessments.
- Practice executive communication: Be ready to articulate complex technical findings and recommendations clearly to both technical and non-technical audiences, including senior leadership.
Frequently Asked Questions
Find answers to common questions about this job opportunity
01What level of security clearance is required for the Senior Offensive Security Engineer role at Coinbase?
02How important is experience with physical space security and IOT for this Coinbase role?
03What kind of executive interaction can I expect as a Senior Offensive Security Engineer at Coinbase?
04Does Coinbase offer a remote work arrangement for this Senior Offensive Security Engineer position?
05What types of penetration testing experience are most valued for a Senior Offensive Security Engineer at Coinbase?
06How does Coinbase support continuous learning and development for its security engineers?
07What is the typical interview process for a Senior Offensive Security Engineer at Coinbase?
08What are the compensation expectations for the Senior Offensive Security Engineer role at Coinbase?
Explore similar opportunities that match your background