# Staff Security Engineer, IAM **Company**: Coinbase **Location**: Remote - USA **Work arrangement**: remote **Experience**: staff **Job type**: full-time **Salary**: $218,025-$256,500 USD **Category**: Engineering **Industry**: Technology **Apply**: https://job-boards.greenhouse.io/coinbase/jobs/7763274 **Canonical**: https://yubhub.co/jobs/job_ad10ca72-6ab ## Description Ready to be pushed beyond what you think you’re capable of? At Coinbase, our mission is to increase economic freedom in the world. We're seeking a Staff Security Engineer, IAM to lead the architectural vision and security engineering execution for Coinbase’s Identity and Access Management (IAM) and workforce security platforms. As a senior technical leader within the IAM program, you will partner with Engineering, IT, Platform, and business teams to architect and deliver identity solutions that balance zero-trust security with workforce enablement, reduce insider risk, and satisfy global regulatory requirements. Key Responsibilities: - Lead the architectural vision and security engineering execution for Coinbase’s IAM and workforce security platforms - Evaluate, design, and implement “build, buy, or hybrid” strategies for workforce Identity Governance and Administration (IGA) - Write high-quality code to build scalable automation, custom integrations, and self-service guardrails - Conduct comprehensive threat modeling and security architecture reviews for foundational identity systems and critical SaaS integrations - Partner with Engineering, IT, HR, AI/ML, and Product teams to align security initiatives with business goals Requirements: - 7+ years of proven experience in software engineering, security engineering, or systems architecture - Proficient in at least one programming language (e.g., Python, Go) - Demonstrated track record of successfully implementing complex hybrid IAM infrastructures - Deep operational and architectural understanding of Identity Governance and Administration (IGA) processes - Extensive expertise in modern identity protocols (SAML, OAuth2, OIDC, SCIM), cloud IAM (AWS and GCP), and dynamic access control frameworks (RBAC, ABAC, ReBAC) - Strong background in applied risk management, automated threat modeling, and zero-trust architecture principles Nice to Have: - Experience operating in a hyper-growth tech, FinTech, or crypto environment - Experience governing non-FTE workforce populations at scale - Hands-on experience with Policy-as-Code paradigms and integrating machine learning to automate policy generation Pay Transparency Notice: The target annual base salary for this position can range from $218,025 to $256,500 USD. ## Skills ### Required - Identity and Access Management - Security Engineering - Software Engineering - Systems Architecture - Python - Go - SAML - OAuth2 - OIDC - SCIM - AWS - GCP - RBAC - ABAC - ReBAC