Senior Analyst, Tech Risk and Controls

at Coinbase
📍 World
USD 167,300-196,800 per year
SENIOR
✅ Remote

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 4 Python @ 6 SQL @ 6 Looker @ 6 R @ 6 Machine Learning @ 7 Data Analysis @ 7 CCPA @ 4 GDPR @ 4 Jira @ 4 FinTech @ 4 Workato @ 4 Project Management @ 4 Reporting @ 4 Snowflake @ 6 Audit @ 4 Compliance @ 4

Details

Ready to be pushed beyond what you think you’re capable of?

At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform — and with it, the future global financial system.

To achieve our mission, Coinbase is seeking a creative and analytical Senior Analyst of Technology Risk & Controls to serve as a member of the Technology Risk & Controls team and support the implementation and maturity of the technology and security controls lifecycle program. This role is crucial in maturing the continuous controls monitoring program, ensuring effectiveness and efficiency of technology and security controls. The ideal candidate will have a strong background in controls, robust technical data analysis skills, and a preference for low-code/no-code platform automation.

While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually; attendance is expected and supported.

Responsibilities

  • Lead initiatives to enhance and mature the Continuous Controls Monitoring (CCM) program, including identifying automation opportunities, improving data quality, and expanding monitoring coverage.
  • Collaborate with technology teams to design, implement, and optimize technology controls across systems and platforms.
  • Utilize data analysis tools and techniques to monitor control effectiveness, identify anomalies, and generate actionable insights and reports for stakeholders.
  • Develop and implement automated solutions using low-code/no-code platforms to streamline control testing, monitoring, and reporting processes.
  • Participate in risk assessments, identify control deficiencies, and recommend mitigation strategies.
  • Partner with internal audit, compliance, IT operations, and other teams to ensure alignment and effective execution of control objectives.
  • Develop and maintain comprehensive documentation for controls and processes, and provide training to internal teams on control best practices and monitoring procedures.
  • Maintain awareness of international regulation, emerging threats, forecasts, policies, and benchmarks.

Requirements

  • 6+ years of experience in a 1st or 2nd Line of Defense controls management function and/or Governance, Risk, and Compliance (GRC) organization.
  • Familiarity with standards and frameworks such as ISO 27001/27005, NIST CSF, COBIT, ITIL, DORA, and risk quantification methodologies for measuring and monitoring controls/risks and validating remediation.
  • Ability to dig into technology and security stacks to understand controls and propose candidates for automation.
  • Proficiency in data analysis tools and techniques for extracting, transforming, and analyzing large datasets (examples listed: SQL, Python, R, Excel, Looker, Snowflake).
  • Comfortable working with project management tooling (e.g., Jira, Archer) and quantitative and qualitative analytics tooling.
  • Clear and concise communicator and writer; experience drafting and operationalizing project plans across stakeholders, holding teams accountable, and documenting deliverables for junior and senior audiences.
  • Working knowledge of major regulatory/legal frameworks (US/international) driving requirements across technology organizations.
  • Ability to navigate ambiguity and complexity, manage multiple assessments, and prioritize strategic workstreams.
  • Drive for continuous learning and willingness to embrace steep learning curves and stretch opportunities.
  • Excellent organization and project management skills in a fast-moving environment.

Nice to haves

  • Experience with low-code/no-code automation platforms (e.g., Workato, UiPath, Appian).
  • FinTech, TradFi, consulting, business operations technical program management, or other customer-facing disciplines.
  • Strong knowledge of risk/control issues related to evolving technology (crypto, cloud, data lakes, machine learning).
  • Relevant certifications (CISA, CISSP, CISM) are a plus but not required.
  • Coding knowledge is a plus (ability to build data joins, integrations with GRC and data visualization tools).

Compensation & Other Details

  • Pay Range: $167,280 — $196,800 USD (target annual salary; full-time offers also include target bonus, target equity, and benefits including medical, dental, vision, and 401(k)).
  • Job #: P69475
  • Location: Remote-first (#LI-Remote); in-person participation required at times for team/company offsites.

Benefits

  • Medical, Dental and Vision with generous employee contributions
  • Health Savings Account with company contributions
  • Disability and Life Insurance
  • 401(k) plan with company match
  • Wellness Stipend
  • Mobile/Internet Reimbursement
  • Connections Stipend
  • Volunteer Time Off
  • Fertility Counseling and Benefits
  • Generous Time off/Leave Policy
  • Option to get paid in digital currency

Equal Opportunity & Privacy

Coinbase is an Equal Opportunity Employer and provides reasonable accommodations for individuals with disabilities. Global data privacy and applicant rights (e.g., GDPR, CCPA) apply depending on location. Coinbase may pilot AI tools for interview screening in select roles but will not use AI to make employment decisions.