Senior Technology and Security Risk Analyst

Coinbase
Phoenix, US

Job Description

Are you ready to challenge yourself and push the boundaries of what you're capable of?

At Coinbase, our mission is to empower economic freedom globally. It's a colossal and thrilling opportunity that demands our best efforts as we develop the cutting-edge onchain platform for the future of the global financial system.

To realize our mission, we are searching for a unique candidate. We seek someone who is genuinely passionate about our objectives and believes in the transformative potential of crypto and blockchain technology. We want an individual eager to make a significant impact on the world, who thrives under pressure and values collaboration with top-tier colleagues. This person actively seeks constructive feedback as a path to continuous improvement and is not afraid to tackle the company's most challenging problems head-on.

Our work environment is fast-paced and demanding, but if you're eager to shape the future alongside exceptional individuals who excel in their fields and expect the same from you, this is the place for you.

Coinbase is looking for a talented and analytical Senior Technology and Security Risk Analyst. In this role, you will be an integral part of the Coinbase Technology Risk & Controls team, focusing on enhancing and maturing our technology and security risk management program. Your team will define, quantify, manage, and communicate risks effectively, utilizing insights to inform crucial business decisions. As the subject matter expert in technology and security risk management operations, you will adapt these concepts for agile technical teams dispersed across different time zones.

Key Responsibilities:

  • Analyze various factors, including threat intelligence and risks, to develop threat models and risk scoring methodologies.
  • Enable risk-aware business outcomes: Help teams and leadership make informed, risk-based decisions by clearly conveying both quantitative and qualitative trade-offs.
  • Manage risks throughout the risk lifecycle: Identify, triage, analyze, and calculate inherent and residual risks in collaboration with experts and risk owners. Document risk treatment decisions and validate the execution of mitigation plans.
  • Report on risk posture: Support both synchronous and asynchronous reporting of findings, metrics, and mitigation recommendations to business leadership through regular updates.
  • Maintain an accurate risk register: Ensure quality and accuracy of data, support tooling, and implement process improvements to enhance risk management data and systems.
  • Communicate and train: Develop and execute training and communication plans to promote the technology and security risk program organization-wide.
  • Align with enterprise risk: Coordinate closely with Enterprise Risk Management to escalate significant risks through the enterprise risk register.
  • Engage globally: Collaborate with key stakeholders to broaden the risk framework across various Coinbase entities, products, and global markets. Work regularly with Governance, Risk and Compliance teams, Legal, and Compliance for effective assessments and regulatory reporting.
  • Support audits and regulatory inspections: Assist in compiling data for responses to audit and regulatory inquiries, both domestic and international.
  • Stay informed: Keep up-to-date with international regulations, emerging threats, and industry practices.
  • Conduct risk assessments: Carry out technology and security risk assessments across all environments, ensuring the team can communicate risks both qualitatively and quantitatively.

What We’re Looking For:

  • 5+ years of experience within a 1st or 2nd Line of Defense risk management function or Governance, Risk, and Compliance organization.
  • Knowledge of risk management and best practices: Familiarity with frameworks such as ISO 27001/5, NIST CSF, COBIT, ITIL, DORA, and FAIR.
  • Understanding of technology and security risks: Ability to dive into technology and security risk solutions, including quantitative risk assessments in various domains.
  • Comfort using project management tools (e.g., Jira, Archer) and data analytics tools for qualitative and quantitative analysis.
  • Strong communicator: Capability to draft clear project plans, hold teams accountable, and effectively document outcomes for diverse audiences.
  • Regulatory knowledge: Familiarity with key regulatory frameworks impacting technology organizations.
  • Aptitude for navigating ambiguity: Proven ability to prioritize strategic goals while managing multiple assessments simultaneously.
  • Commitment to continuous learning: Desire to learn and adapt processes unique to Coinbase’s challenges.
  • Exceptional organizational and project management skills in a dynamic environment.

Preferred Qualifications:

  • Experience in FinTech, traditional finance, consulting, or technical program management.
  • Knowledge of risk/control issues related to evolving technologies like crypto, cloud, and machine learning.
  • Certifications in inform

Skills & Requirements

Technical Skills

threat intelligencerisk scoring methodologiesrisk managementrisk treatment decisionsrisk registertraining and communicationregulatory reportingrisk assessmentscollaborationfeedbackproblem-solvingcommunicationcryptoblockchainfinancial systemtechnologysecurity

Salary

$150,000 - $250,000

year

Level

senior

Posted

3/20/2026

Apply Now

You will be redirected to Coinbase's application portal.