About the Role
You will join the Insider Threat team within Coinbase's Security Operations organization as a Senior Insider Threat Analyst, helping protect billions of dollars in digital assets and the trust of millions of customers. This team detects, investigates, and mitigates threats from inside the organization using a blend of tooling, automation, and strategic expertise. You will own complex investigations end to end, shape detection and response processes, and partner cross-functionally with Security, Legal, HR, and business teams to mature Coinbase's insider threat program as it scales globally.
Requirements
- 5+ years of experience in insider threat, security investigations, counterintelligence, fraud detection, or closely related discipline, with deep hands-on expertise in insider threat technologies (SIEM, UBA, DLP, endpoint detection) and log analysis.
- Track record of independently leading complex, sensitive investigations involving employee matters, including evidence collection, interviewing techniques, and coordination across Legal, HR, and business stakeholders.
- Demonstrated ability to identify systemic control gaps and drive scaled improvements to insider threat detection and response processes, including refining alerting logic and recommending automation opportunities.
- Proven experience composing investigative briefs, risk assessments, and analytical products consumed by senior leadership, with the ability to translate complex technical and behavioral findings into concise, decision-ready narratives.
- Working knowledge of the legal, regulatory, and ethical frameworks governing insider threat programs, with experience applying sound judgment when handling highly sensitive and confidential information.
- Utilizes generative AI responsibly, maintaining human oversight to deliver business-ready outputs and drive measurable improvements in workflow efficiency, cost, and quality.
Responsibilities
- Own complex insider threat investigations end to end
- Lead detection and analysis efforts by prioritizing alert reviews across insider threat technologies
- Partner cross functionally with Security Legal HR and business teams to design implement and refine processes that reduce insider risk
- Shape the team's investigative and analytical capabilities by refining alerting logic and developing scalable detection improvements
- Strengthen reporting and stakeholder communication by composing decision ready briefs and assessments for senior leadership