You'll join the Insider Threat team within Coinbase's Security Operations organization as a Senior Insider Threat Analyst, helping protect billions of dollars in digital assets and the trust of millions of customers. This team detects, investigates, and mitigates threats from inside the organization using a blend of tooling, automation, and strategic expertise. You'll own complex investigations end to end, shape detection and response processes, and partner cross-functionally with Security, Legal, HR, and business teams to mature Coinbase's insider threat program as it scales globally. **What you'll be doing (ie. job duties):** - Own complex insider threat investigations end to end, from triage and evidence collection through employee interviews and stakeholder coordination, delivering clear findings, risk assessments, and actionable recommendations to leadership. - Lead detection and analysis efforts by prioritizing alert reviews across insider threat technologies (SIEM, UBA, DLP, endpoint detection), correlating signals, and identifying patterns that inform broader mitigation strategies. - Partner cross-functionally with Security, Legal, HR, and business teams to design, implement, and refine processes that systematically reduce insider risk and close recurring control gaps at scale. - Shape the team's investigative and analytical capabilities by refining alerting logic, developing scalable detection improvements, and mentoring junior analysts on tradecraft, evidence handling, and stakeholder communication. - Strengthen reporting and stakeholder communication by composing decision-ready briefs and assessments for senior leadership, translating complex investigative findings into concise narratives with clear risk context and recommended next steps. **What we look for in you (ie. job requirements):** - 5+ years of experience in insider threat, security investigations, counterintelligence, fraud detection, or a closely related discipline, with deep hands-on expertise in insider threat technologies (SIEM, UBA, DLP, endpoint detection) and log analysis. - Track record of independently leading complex, sensitive investigations involving employee matters, including evidence collection, interviewing techniques, and coordination across Legal, HR, and business stakeholders. - Demonstrated ability to identify systemic control gaps and drive scaled improvements to insider threat detection and response processes, including refining alerting logic and recommending automation opportunities. - Proven experience composing investigative briefs, risk assessments, and analytical products consumed by senior leadership, with the ability to translate complex technical and behavioral findings into concise, decision-ready narratives. - Working knowledge of the legal, regulatory, and ethical frameworks governing insider threat programs, with experience applying sound judgment when handling highly sensitive and confidential information. - Utilizes generative AI responsibly, maintaining human oversight to deliver business-ready outputs and drive measurable improvements in workflow efficiency, cost, and quality. Position ID: P77056 #LI-Remote **Pay Transparency Notice:** Base salary varies by location (see range below). Total compensation may also include equity and bonus eligibility, and benefits (medical, dental, vision, 401(k)). Annual base salary range (excluding equity and bonus): $167,280-$196,800 USD Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying.