Offensive Security Engineer, Assessments (Web3) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Coinbase · 18 hours ago

Offensive Security Engineer, Assessments (Web3)

positionUnited States
timeFull-time
remoteRemote
seniorityMid Level
money$152K/yr - $179K/yr
date3+ years exp

Coinbase is a company focused on increasing economic freedom through blockchain technology. They are seeking an Offensive Security Engineer to specialize in Web3 penetration testing and manage the bug bounty program, collaborating with various teams to enhance security and vulnerability management.

BitcoinBlockchainCryptocurrencyFinTechTrading Platform
check
Comp. & Benefits
check
H1B Sponsor Likelynote

Responsibilities

Conduct security assessments of Web3 products and services, including smart contracts, DeFi protocols, and blockchain infrastructure
Collaborate with partner teams to enhance detection and response capabilities for Web3 vulnerabilities
Stay informed on emerging security trends, advisories, and academic research in the Web3 space
Lead Web3 bug bounty triage and validation, ensuring timely and accurate assessments of reported vulnerabilities
Develop and implement strategies to incentivize high-quality bug bounty submissions and engage with the hacker community
Manage the Web3 bug bounty program, including scope updates, researcher communication, and payout disbursements
Analyze bug bounty data to identify trends, common vulnerabilities, and areas for improvement
Collaborate with engineering teams to prioritize and remediate vulnerabilities identified through the bug bounty program
Mentor and train junior security engineers in Web3 bug bounty triage and analysis
Provide on-call support for critical Web3 bug bounty-related incidents
Document and report on Web3 bug bounty metrics and program effectiveness

Qualification

Web3 application securityPenetration testingBlockchain ecosystem knowledgeBug bounty program managementSecurity tooling developmentAnalytical skillsCommunication skillsContinuous learningTeam collaboration

Required

Bachelor's or Master's degree in Computer Science, Cybersecurity, Software Engineering, or a related field
3+ years of experience in Web3 application security and penetration testing
Proven track record of identifying critical vulnerabilities across the blockchain protocol stack, Web2, and Web3 components
Extensive knowledge of the blockchain ecosystem, including L1/L2 networks, DeFi protocols, and staking mechanisms
Deep understanding of Web2 security concepts and common vulnerabilities (e.g., OWASP Top 10, SANS Top 25)
Strong analytical skills to identify trends and patterns in vulnerabilities
Excellent communication skills for engaging with internal teams
Passion for security and a drive to improve Web3 security posture
Ability to work independently and take ownership of penetration testing initiatives
Energy and self-drive for continuous learning in the rapidly evolving crypto space
Excellence in clear, direct, and kind communication with technical and non-technical stakeholders
Experience building relationships with product, engineering, and security teams

Preferred

Participation in CTFs, bug bounty programs, or open-source security research
Expertise in Application Security, Network Security, or Cloud Security
Relevant security certifications (e.g., OSCP, GPEN)
Experience developing and implementing security tooling to support bug bounty triage and analysis
Experience with bug bounty programs and platforms, including triage, validation, and researcher communication
Strong analytical skills to identify trends and patterns in bug bounty submissions
Excellent communication skills to effectively engage with bug bounty researchers

Benefits

Bonus eligibility
Equity eligibility
Benefits (including medical, dental, vision and 401(k))

Company

Coinbase

twittertwittertwitter
Glassdoor3.7
company-logo
Coinbase is a crypto exchange and wallet platform that allows merchants and consumers to buy, sell, and store digital currencies.
dateFounded in 2012
location
San Francisco, California, USA
people-size1001-5000 employees
web-link
https://www.coinbase.com

H1B Sponsorship

Coinbase has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (181)
2024 (92)
2023 (96)
2022 (284)
2021 (183)
2020 (66)

Funding

Current Stage
Public Company
Total Funding
$4.46B
Key Investors
ARK Investment ManagementTiger Global ManagementIVP
2025-12-19Post Ipo Equity· $4.2M
2025-08-05Post Ipo Debt· $2.6B
2025-03-04Post Ipo Equity· $8M

Leadership Team

leader-logo
Brian Armstrong
CEO & Co-Founder
linkedin
leader-logo
Alesia Haas
Chief Financial Officer
linkedin

Recent News

Cointelegraph
Bakkt stock surges 20% after move on stablecoin payments strategy
2026-01-13
Coinspeaker
Sharps Technology Taps Coinbase to Launch Solana Validator
2026-01-13
Coinspeaker
Standard Chartered Planning Prime Brokerage for Crypto Trading
2026-01-13
Company data provided by crunchbase