Offensive Security Engineer, Offensive Security
Description For Offensive Security Engineer, Offensive Security
Coinbase is seeking an experienced Offensive Security Engineer to join their Application Security organization, focusing on bug bounty program management and optimization. This role combines technical security expertise with program management responsibilities.
The position involves managing and optimizing Coinbase's bug bounty program, working directly with whitehat hackers, and conducting internal security assessments. Key responsibilities include bug bounty triage and validation, developing strategies to attract high-quality submissions, managing researcher communications, and conducting penetration testing of web and mobile applications.
The ideal candidate will bring 2+ years of application security experience, strong technical skills in programming (Go, JavaScript, Python, or Ruby), and deep understanding of Web2 security concepts. They should possess relevant security certifications like OSCP or GPEN, and have experience with bug bounty platforms and program management.
This role offers an opportunity to directly impact Coinbase's security posture while working with cutting-edge technology in the cryptocurrency space. The position combines hands-on technical security work with program management and strategic initiatives, making it ideal for security professionals who want to grow both their technical and leadership skills.
Coinbase offers a comprehensive benefits package including medical/dental/vision insurance, life insurance, wellness stipends, learning allowances, and generous time off policies. The company maintains an intense work culture focused on their mission to increase economic freedom in the world through cryptocurrency and blockchain technology.
Responsibilities For Offensive Security Engineer, Offensive Security
- Participate in bug bounty triage and validation
- Develop and implement strategies to incentivize bug bounty submissions
- Manage bug bounty program including scope updates and researcher communication
- Analyze bug bounty data to identify trends and vulnerabilities
- Collaborate with engineering teams on vulnerability remediation
- Mentor junior security engineers
- Provide on-call support for critical incidents
- Document and report on bug bounty metrics
- Conduct internal penetration testing
- Participate in red team activities
Requirements For Offensive Security Engineer, Offensive Security
- Bachelor's degree in Computer Science, Computer Engineering, or related field
- Relevant security certifications (e.g., OSCP, GPEN)
- Experience in programming languages such as Go, JavaScript, Python or Ruby
- 2+ years of experience in application security, bug bounty triage, or offensive security roles
- Deep understanding of Web2 security concepts and common vulnerabilities
- Experience with bug bounty programs and platforms
- Strong analytical skills
- Excellent communication skills
- Ability to work independently
Benefits For Offensive Security Engineer, Offensive Security
- Medical insurance including Dental & Vision for employees and dependants
- Group Personal Accidental Insurance
- Group Term Life Insurance
- Employee Stock Purchase Plan (ESPP)
- Wellness Stipend
- Mobile/Internet Reimbursement
- Connections Stipend
- Learning and Development Allowance
- Employee Assistance Program
- Travel Medical Policy – Global Traveler
- Fertility Benefits
- Generous Time Off/Leave Policy
Jobs Related To Coinbase Offensive Security Engineer, Offensive Security
