Director, Technology Risk

Details

At Coinbase, our mission is to increase economic freedom in the world by building the emerging onchain platform and the future global financial system.

Responsibilities

• Lead and oversee the second line technology and security risk team, driving the vision for a Technology Risk Management framework across the three lines of defense.
• Lead company-wide technology and security risk initiatives; collaborate with leadership to identify, surface, and report risks across the business.
• Build, grow, and coach a team of technology and security risk analysts, fostering a culture of agility and innovation.
• Oversee implementation of risk policies, standards, and technologies to establish scalable processes.
• Facilitate periodic second line technology and security risk assessments in production and corporate environments.
• Ensure monitoring of all risk treatment activities and maintain clear communication with risk owners.
• Collaborate with global stakeholders to build a security risk management program supporting multiple entities, products, and locations.
• Keep current with international regulations, emerging threats, policies, and benchmarks, integrating them into risk management practices.
• Partner with Enterprise Risk Management (ERM) and Operational Risk programs for effective oversight.
• Develop communication plans to roll out the security risk program and provide ongoing education and support.

Requirements

• Minimum 12 years of relevant experience in technology risk, information security risk, IT audit, or related domains; 8+ years management experience.
• Strong communication and writing skills for drafting project plans, reporting, and stakeholder engagement.
• Proven ability to embed risk management into operations.
• Knowledge of security and risk frameworks such as NIST Cybersecurity Framework, NIST RMF, COBIT, ISO 27005, DORA, FAIR.
• Expertise in all phases of the risk management lifecycle within technology or security risk programs.
• Self-motivated with urgency in high-intensity environments.
• Ability to shift between strategy and operations.
• Skilled at communicating with technical and non-technical stakeholders, including senior management.
• Problem-solving skills with ability to handle incomplete or ambiguous inputs.
• Data-driven decision-making ability.
• Experience managing multiple stakeholders and priorities.
• Interaction experience with regulators.
• Knowledge of cloud services environments.
• Expertise in automation and scalable solution building.

Nice to Haves

• Experience in fintech, tech, or financial services.
• Advanced knowledge of cloud computing, Google apps, JIRA, Confluence.
• Master's degree or equivalent in technical area, business administration, or industrial engineering.
• Quantitative modeling and data visualization skills.
• Prior crypto experience and interest in blockchain technologies.
• Information security risk management certifications like CRISC, CISM, CISA.

Benefits

• Medical, dental, and vision plans with generous employee contributions.
• Health Savings Account with company contributions.
• Disability and life insurance.
• 401(k) plan with company match.
• Wellness, mobile/internet, and connections stipends.
• Volunteer time off.
• Fertility counseling and benefits.
• Generous time off and leave policy.
• Option to get paid in digital currency.

Salary and Compensation

• Annual salary range: $267,325 — $314,500 USD plus target bonus, target equity, and benefits.

#LI-Remote