Senior Security Program Manager

About Coinbase

At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform — and with it, the future global financial system. We’re seeking individuals passionate about our mission, who believe in crypto and blockchain technology to update the financial system, eager to leave their mark on the world, and who relish working with high-caliber colleagues. Our work culture is intense, but if you want to build the future alongside others who excel, there’s no better place.

While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported.

Team/Role Overview

Coinbase is looking for a seasoned Program Manager to join our Security Programs team, leading the end-to-end delivery of critical compliance and security initiatives across EMEA. You’ll act as the “connective tissue” between our regulated entities (including Ireland, Germany, UK and beyond) and our global shared services, ensuring that security standards are upheld and risks are mitigated at scale. In this role, you’ll maintain an objective view of cross-functional priorities, coach stakeholders to make data-driven decisions, and amplify our “Most Trusted” brand. If you thrive in fast-paced environments, enjoy collaborating across multiple time zones, and are passionate about securing billions of dollars in digital assets, let’s talk.

What You’ll Be Doing (Job Duties)

• Lead EMEA-focused security programs by designing, launching, and managing comprehensive compliance tracks across multiple jurisdictions, while liaising daily with U.S. shared-service partners.
• Drive 1st- and 2nd-line security programs in risk, controls, and operations to chart a clear path to achieve business outcomes under MiCA, DORA, BAIT, GDPR, and local frameworks.
• Collaborate with Information Security and Technology Risk and Controls teams to identify and manage risks, evolve controls, ensure compliance with applicable frameworks (SOX, SOC2, and ISO27001), and meet business objectives.
• Own the roadmap by defining success metrics, adoption targets, and delivery milestones; monitor progress using both qualitative insights and quantitative KPIs.
• Identify cross-functional blockers proactively, assess impacts, and present clear mitigation plans to senior leadership.
• Continuously refine security templates, playbooks, and metrics so they remain simple, repeatable, and scalable across new markets.

What We Look For In You (Job Requirements)

• 8+ years in program or project management roles, with 5+ years in security, risk, or compliance.
• Native-level fluency in English, with proven ability to translate complex security and risk concepts for a predominantly U.S.-based leadership and engineering audience.
• Proven track record in a highly regulated ecosystem such as FinTech, payments, or financial services.
• Hands-on experience managing outsourced security providers and tracking SLAs/KPIs to ensure delivery.
• Deep familiarity with EMEA frameworks (MiCA, DORA, BAIT, GDPR) and experience implementing cyber/security frameworks (NIST CSF, SOC2, ISO27001).
• Strong ability to design straightforward processes that flex to solve novel challenges and evolving regulations.
• Excellent at distilling complex security risks into clear, concise updates for both technical teams and C-level stakeholders.
• Comfortable working in a distributed, multi-cultural environment across EMEA.

Nice to Haves

• Broad understanding of security domains and controls, especially in M&A contexts.
• Experience leveraging automation or AI to accelerate program delivery.
• Exposure to all three lines of defense (1st, 2nd, and 3rd) in a financial services setting.
• Familiarity with crypto and blockchain technologies.

Key Skills/Competency

• Program Management
• Security Compliance
• Risk Management
• Regulatory Frameworks (MiCA, DORA, BAIT, GDPR)
• Stakeholder Management
• Cyber Security Frameworks (NIST CSF, SOC2, ISO27001)
• Cross-functional Collaboration
• Financial Services/FinTech
• KPI Tracking
• Distributed Team Leadership