Senior Analyst, Tech Risk

at Coinbase
📍 Singapore, Singapore
SGD 186,000 per year
SENIOR
✅ Hybrid

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 4 SQL @ 6 Looker @ 4 FinTech @ 4 Reporting @ 4 Snowflake @ 6 Audit @ 4 Compliance @ 4

Details

Ready to be pushed beyond what you think you’re capable of?

At Coinbase, our mission is to increase economic freedom in the world. We are building the emerging onchain platform and the future global financial system. We are seeking a Technology Risk & Controls Analyst to join the APAC Second Line of Defense (2LOD) team to provide oversight of technology and cybersecurity risks, with a strong emphasis on aligning with the Monetary Authority of Singapore (MAS) Technology Risk Management (TRM) Guidelines and other APAC regulatory frameworks. The role requires collaboration with engineering, product, and cybersecurity teams and in-person participation throughout the year (remote-first but not remote-only).

Responsibilities

  • Conduct independent second line assessments of technology and cybersecurity risks, ensuring alignment with Coinbase’s risk appetite and regional regulatory expectations.
  • Execute and sustain governance controls and oversight mechanisms to ensure ongoing compliance with MAS TRM, RBI Cybersecurity Framework (CSF), and other applicable regional regulations.
  • Review and challenge the effectiveness of technology and cyber controls implemented by the First Line of Defense and global teams.
  • Develop, track, and report on Key Risk Indicators (KRIs) and control metrics to support continuous monitoring and risk-informed decision making.
  • Localize and assess global technology, security policies and standards to ensure they meet jurisdiction-specific regulatory requirements.
  • Partner with engineering, product, and cybersecurity teams to strengthen detection, response, and remediation capabilities for security incidents.
  • Prepare materials for senior governance forums, including operations and risk oversight committees and board-level reporting.
  • Maintain documentation to support regulatory submissions, internal audits, and assurance reviews.
  • Present clear, data-driven risk and control insights to senior management and cross-functional stakeholders.
  • Communicate risk issues and recommendations across technical and non-technical audiences.

Requirements

  • 5+ years of experience in technology governance, risk management, or compliance, preferably within financial services or a regulated technology environment.
  • Strong working knowledge of MAS Technology Risk Management (TRM) Guidelines, Cyber Hygiene Notices, Outsourcing Guidelines, and Business Continuity Management (BCM) Guidelines, and of the RBI Cybersecurity Framework (CSF).
  • Familiarity with global technology and risk frameworks such as NIST CSF, COBIT, and ITIL.
  • Deep understanding of risk management principles including identification, assessment, control design, and monitoring.
  • Demonstrated experience leading or supporting remediation projects driven by regulatory changes or audit findings.
  • Ability to analyze and synthesize ambiguous or incomplete inputs into clear, actionable plans.
  • Experience working in cloud-native environments and navigating associated risks and controls.
  • Proficiency in using data and metrics to drive risk-informed decisions and communicate risk posture effectively.
  • Prior experience engaging with auditors and regulators, including regulatory reporting and audit response preparation.
  • Proven ability to manage multiple stakeholders and competing priorities in a fast-paced, cross-functional environment.

Nice to haves

  • Proficiency in SQL, ideally in Snowflake or a similar data platform.
  • Experience with Looker or other business intelligence and data visualization tools.
  • Background in high-security or highly regulated industries such as fintech, crypto, or traditional financial services.
  • Professional certifications such as CRISC, CISSP, CISM, or other relevant designations.
  • Bachelor’s degree in Information Security, Computer Science, Engineering, or a related technical discipline.

Benefits

  • Group medical and dental insurance (covered at 100% for employees and dependants)
  • Travel Medical Policy – Global Traveler
  • Employee Stock Purchase Plan (ESPP)
  • Wellness stipend, mobile/internet reimbursement, connections stipend
  • Learning & Development allowance, Employee Assistance Program, fertility benefits
  • Generous time off/leave policy

Pay Range

  • Target annual salary: 186,000 SGD (base). Full-time offers also include target bonus, target equity, and benefits.

Additional information

  • Position ID: P71990
  • In-person participation is required throughout the year; team and company-wide offsites are held multiple times annually.
  • Coinbase is an Equal Opportunity Employer and provides reasonable accommodations for applicants with disabilities.