Senior Analyst, Technology Risk

coinbaseRemotegreenhouse
Posted Date:

September 25, 2025

Employment Type:

Not specified

Work Arrangement:

Remote

Skills & Technologies

Security & Privacypreferred

Contact Information

Job Description

Ready to be pushed beyond what you think you’re capable of?

At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform — and with it, the future global financial system.

To achieve our mission, we’re seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company’s hardest problems.

Our work culture is intense and isn’t for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there’s no better place to be.

While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported.

Coinbase is looking for a creative and analytical Senior Analyst of Technology Risk. You will serve as a member of the Coinbase Technology Risk & Controls team and support the implementation and maturity of our technology and security risk management program. Your risk team will define, quantify, manage, and communicate risks, and use outcomes to inform business decisions. You will serve as the subject matter expert in technology risk management operations, and will make these applicable and usable for fast-moving technical teams located across global time zones.

What you’ll be doing (ie. job duties):

    • Analysis of multiple variables, including but not limited to, threat intelligence and risks, to inform threat models/risk scoring methodologies.
    • Enable risk informed business outcomes: Enable teams and leadership to make risk-based decisions by clearly communicating quantitative and qualitative tradeoffs.
    • Manage risks throughout the risk lifecycle: Intake, triage, analyze, and calculate (inherent/residual) risk in collaboration with subject matter experts and risk owners. Facilitate agreement and documentation of risk treatment decisions; pressure testing treatment decisions and validating execution of mitigation plans across stakeholders as required. Participate in continuous monitoring or risk treatment.
    • Reporting on risk posture: Support synchronous and asynchronous reporting on findings, metrics, and recommend mitigations to business leadership. This includes ad hoc and scheduled meetings with leadership and business risk owners.
    • Maintain source of truth risk register: Quality control of data, tooling support, and implementing automation/process improvements to establish a baseline and iteratively improve risk management data and tooling.
    • Communications and training: Support develop, execution, and maintenance of communication and training plans to roll out the technology risk program across the organization. Maintain team runbooks, team intra-web pages, and risk register metrics dashboards.
    • Enterprise risk alignment: Work in lockstep with Enterprise Risk Management to escalate risks through the enterprise risk register and report relevant metrics to senior leadership as determined necessary.
    • Global Engagement: Collaborate with stakeholders to help scale the program’s risk framework across Coinbase entities, products, and geographies/markets. Regularly collaborate with GRC teams, Legal and Compliance for risks, assessments, and reporting to meet regulatory requirements.
    • Support audit and regulatory inspections: Support data compilation to respond to US and international audit/regulator inquiries.
    • Maintain an industry pulse: Maintain awareness of international regulation, emerging threats, forecasts, policies, and benchmarks
    • Execute risk assessments: Execute technical risk assessments across our production and corporate environments, enabling the team to communicate risk in both qualitative and quantitative terms.

What we look for in you (ie. job requirements):<