Senior Analyst, Tech Risk and Controls

About The Position

Requirements

• 6+ years of experience working in a 1 or 2 LoD controls management function and/or Governance, Risk, and Compliance organization.
• Familiarity with standards and frameworks e.g. ISO 27001/5, NIST CSF, COBIT, ITIL, DORA, and risk quantification methodologies.
• Ability to dig into our technology and security stack to understand our controls and articulate and propose candidates for automation.
• Proficiency in data analysis tools (e.g., SQL, Python, R, Excel, Looker, Snowflake) and techniques for extracting, transforming, and analyzing large datasets.
• Comfortable working with project management tooling (e.g. Jira, Archer) and quant and qualitative data analytics tooling.
• Clear/concise communicator and writer; experience drafting/operationalizing project plans across stakeholders.
• Working knowledge of major regulatory/legal frameworks (US/international) driving requirements across technology organizations.
• Ability to manage a queue against strategic priorities and handle multiple assessments at a time.
• Willingness to learn and apply processes unique to the challenges at Coinbase.
• Excellent organization and project management skills in a fast-moving and demanding environment.

Nice To Haves

• Experience with or a strong aptitude for low-code/no-code automation platforms (e.g., Workato, UiPath, Appian).
• Experience in FinTech, TradFi, consulting, business operations technical program management or other customer-facing disciplines.
• Strong knowledge of risk/control issues in relation to evolving technology (e.g., crypto, cloud, data lakes, machine learning).
• Information security risk management qualifications like CISA, CISSP, CISM are a plus.
• Coding knowledge (e.g. learn to build data joins, integrations with GRC and data visualization tools) is a plus.

Responsibilities

• Lead initiatives to enhance and mature our Continuous Controls Monitoring (CCM) program, including identifying new opportunities for automation, improving data quality, and expanding monitoring coverage.
• Collaborate with technology teams to design, implement, and optimize technology controls across various systems and platforms.
• Utilize data analysis tools and techniques to monitor control effectiveness, identify anomalies, and generate actionable insights and reports for stakeholders.
• Develop and implement automated solutions using low-code/no-code platforms to streamline control testing, monitoring, and reporting processes.
• Participate in risk assessments, identifying control deficiencies, and recommending appropriate mitigation strategies.
• Partner with internal audit, compliance, IT operations, and other relevant teams to ensure alignment and effective execution of control objectives.
• Develop and maintain comprehensive documentation for controls and processes, and provide training to internal teams on control best practices and monitoring procedures.
• Maintain awareness of international regulation, emerging threats, forecasts, policies, and benchmarks.

Benefits

• Target annual salary range: $167,280—$196,800 USD.
• Full time offers include target bonus + target equity + benefits (including medical, dental, vision and 401(k)).