Security Engineer, Vulnerability Response (United States · Remote)

🧾 Role Summary

🛡️ Security Engineer – Vulnerability Response

📍 Location: Remote (U.S.)

💼 Type: Full-time

💰 Salary Range: $152,405 – $179,300 USD

📅 Reposted: 21 hours ago

🔍 What This Role Is About

You’ll be part of Coinbase’s Vulnerability Response (VR) team — an engineering-heavy InfoSec role focused on:

• Triaging vulnerabilities across the tech stack
• Driving remediation campaigns across product and infra teams
• Automating vulnerability handling processes and reporting
• Building internal tools and improving developer security workflows

This is not just a policy role — it’s hands-on engineering blended with security operations, automation, and stakeholder management.

🔧 Your Core Responsibilities

• Partner with engineering teams to reduce security risks
• Use Python/SQL to extract insights from vulnerability data and optimize reports
• Build and maintain tools for automated vulnerability management
• Monitor and enforce SLA compliance for remediation timelines
• Create metrics and dashboards to track progress against OKRs
• Lead or participate in root cause analyses and propose systemic solutions

✅ Ideal Candidate Profile

🔑 Required Experience:

• 3+ years in vulnerability management, AppSec, or security engineering
• Strong technical understanding of vulnerability triage and remediation
• Comfortable writing scripts and tools in Python and analyzing data in SQL
• Familiar with vulnerability handling best practices and security frameworks
• Can collaborate across engineering, security, and leadership teams
• Organized, results-driven, and comfortable with changing priorities

➕ Bonus Experience (Nice to Have):

• Implemented controls in platforms like:
• GitHub Enterprise, Artifactory
• Familiar with:
• Golang
• Docker
• Airflow
• Cloud (AWS or GCP)

💸 Compensation Breakdown

• Base salary: $152.4K – $179.3K USD
• Additional compensation: Target bonus + equity + full benefits (medical, dental, vision, 401(k))

Very competitive for a role with direct impact on risk reduction at a crypto-first company.

⚖️ What Stands Out About This Role

✅ Hands-on + strategic: You’ll write Python and build tools, but also influence risk direction

✅ Real impact: Directly responsible for securing platforms that hold billions in assets

✅ Cross-functional exposure: You'll work with engineers, PMs, and security leaders

✅ Crypto security environment: Cutting-edge challenges, constant evolution