Risk & Internal Controls Analyst
Building the Future of Crypto
Our Krakenites are a world-class team with crypto conviction, united by our desire to discover and unlock the potential of crypto and blockchain technology.
What makes us different?
Kraken is a mission-focused company rooted in crypto values. As a Krakenite, you’ll join us on our mission to accelerate the global adoption of crypto, so that everyone can achieve financial freedom and inclusion. For over a decade, Kraken’s focus on our mission and crypto ethos has attracted many of the most talented crypto experts in the world.
Before you apply, please read the Kraken Culture page to learn more about our internal culture, values, and mission. We also expect candidates to familiarize themselves with the Kraken app. Learn how to create a Kraken account here.
As a fully remote company, we have Krakenites in 70+ countries who speak over 50 languages. Krakenites are industry pioneers who develop premium crypto products for experienced traders, institutions, and newcomers to the space. Kraken is committed to industry-leading security, crypto education, and world-class client support through our products like Kraken Pro, Desktop, Wallet, and Kraken Futures.
Become a Krakenite and build the future of crypto!
Proof of work
The team
We are seeking a highly analytical and detail-oriented IT Risk Analyst to join our growing Risk Management and SOX Compliance team. In this role, you will support the identification, assessment, and monitoring of technology-related risks and Information Technology General Controls (“ITGC”), across the organization. You will work closely with Information Security, IT, Compliance, and Internal Audit to strengthen our technology risk posture and ensure alignment with regulatory requirements, industry best practices, and enterprise risk appetite.
The opportunity
Lead IT initiatives to support the SOX roadmap and advance program maturity
Assist with scoping of IT systems and create and deliver training to owners in preparation for SOX audit
Lead the development of SOC 1 reports in coordination with cross functional stakeholders
Lead the coordination of SOC 1 audits inclusive of, but not limited to:
External Auditor requests;
Coordinate management responses to identified issues; and
Preparation of reporting.
Lead and perform security control gap assessments over IT control environment and design and track remediation efforts to completion
Assess SOX implications of new products, update relevant controls, and communicate requirements to product organization and other stakeholders
Perform impact analysis for control deficiencies identified over SOX environment and partner with owning teams to design remediation plan
Provide ongoing reporting to stakeholders and leadership on above responsibilities and communicate progress and escalations management
Build close relationships with stakeholder teams including Security, IT, Infrastructure, Engineering, Data, and Finance to advise on SOX requirements and ensure excellence in control ownership
Create and improve procedural documentation, including process documentation, data flow diagrams, and uplifting control narrative templates
Work closely with internal and external auditors to educate them about a complex technology control environment
Oversee quality of audit initiatives, identify and analyze process gaps, provide guidance and expertise to team members
Develop creative solutions to prove risk mitigation and solve for complex audit problems faced by the crypto industry
Identify opportunities to address systemic program challenges, recommend solutions and drive issue resolution
Assist in implementation to automate the audit evidence collection process via AuditBoard.
Skills you should HODL
Minimum of 2+ years of security/IT compliance or equivalent experience
Strong knowledge and hands-on experience in Internal Controls over Financial Reporting, SOX 404 frameworks, and testing to support compliance
Prior experience at a Big 4 accounting firm
Experience leading compliance initiatives from start to finish
Proven understanding and audit experience of cloud technologies, AWS preferred
Ability to effectively and autonomously accomplish outcomes across cross-functional teams in ambiguous situations with minimal supervision
Strong oral and written communication skills
Ability to multitask, direct cross functional work, and hold others accountable to committed deadlines in a fast paced environment
Ability to communicate with technical/non-technical stakeholders to align on shared outcomes
Nice to haves
BA or BS in a technical field or equivalent experience
Security certifications e.g. CISA, CISSP, CISM or other relevant certifications
Experience auditing in crypto space
#LI-Remote
This job is accepting ongoing applications and there is no application deadline.
Please note, applicants are permitted to redact or remove information on their resume that identifies age, date of birth, or dates of attendance at or graduation from an educational institution.
We consider qualified applicants with criminal histories for employment on our team, assessing candidates in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance.
Kraken is powered by people from around the world and we celebrate all Krakenites for their diverse talents, backgrounds, contributions and unique perspectives. We hire strictly based on merit, meaning we seek out the candidates with the right abilities, knowledge, and skills considered the most suitable for the job. We encourage you to apply for roles where you don't fully meet the listed requirements, especially if you're passionate or knowledgable about crypto!
As an equal opportunity employer, we don’t tolerate discrimination or harassment of any kind. Whether that’s based on race, ethnicity, age, gender identity, citizenship, religion, sexual orientation, disability, pregnancy, veteran status or any other protected characteristic as outlined by federal, state or local laws.
Stay in the know
About the job
Apply for this position
Risk & Internal Controls Analyst
Building the Future of Crypto
Our Krakenites are a world-class team with crypto conviction, united by our desire to discover and unlock the potential of crypto and blockchain technology.
What makes us different?
Kraken is a mission-focused company rooted in crypto values. As a Krakenite, you’ll join us on our mission to accelerate the global adoption of crypto, so that everyone can achieve financial freedom and inclusion. For over a decade, Kraken’s focus on our mission and crypto ethos has attracted many of the most talented crypto experts in the world.
Before you apply, please read the Kraken Culture page to learn more about our internal culture, values, and mission. We also expect candidates to familiarize themselves with the Kraken app. Learn how to create a Kraken account here.
As a fully remote company, we have Krakenites in 70+ countries who speak over 50 languages. Krakenites are industry pioneers who develop premium crypto products for experienced traders, institutions, and newcomers to the space. Kraken is committed to industry-leading security, crypto education, and world-class client support through our products like Kraken Pro, Desktop, Wallet, and Kraken Futures.
Become a Krakenite and build the future of crypto!
Proof of work
The team
We are seeking a highly analytical and detail-oriented IT Risk Analyst to join our growing Risk Management and SOX Compliance team. In this role, you will support the identification, assessment, and monitoring of technology-related risks and Information Technology General Controls (“ITGC”), across the organization. You will work closely with Information Security, IT, Compliance, and Internal Audit to strengthen our technology risk posture and ensure alignment with regulatory requirements, industry best practices, and enterprise risk appetite.
The opportunity
Lead IT initiatives to support the SOX roadmap and advance program maturity
Assist with scoping of IT systems and create and deliver training to owners in preparation for SOX audit
Lead the development of SOC 1 reports in coordination with cross functional stakeholders
Lead the coordination of SOC 1 audits inclusive of, but not limited to:
External Auditor requests;
Coordinate management responses to identified issues; and
Preparation of reporting.
Lead and perform security control gap assessments over IT control environment and design and track remediation efforts to completion
Assess SOX implications of new products, update relevant controls, and communicate requirements to product organization and other stakeholders
Perform impact analysis for control deficiencies identified over SOX environment and partner with owning teams to design remediation plan
Provide ongoing reporting to stakeholders and leadership on above responsibilities and communicate progress and escalations management
Build close relationships with stakeholder teams including Security, IT, Infrastructure, Engineering, Data, and Finance to advise on SOX requirements and ensure excellence in control ownership
Create and improve procedural documentation, including process documentation, data flow diagrams, and uplifting control narrative templates
Work closely with internal and external auditors to educate them about a complex technology control environment
Oversee quality of audit initiatives, identify and analyze process gaps, provide guidance and expertise to team members
Develop creative solutions to prove risk mitigation and solve for complex audit problems faced by the crypto industry
Identify opportunities to address systemic program challenges, recommend solutions and drive issue resolution
Assist in implementation to automate the audit evidence collection process via AuditBoard.
Skills you should HODL
Minimum of 2+ years of security/IT compliance or equivalent experience
Strong knowledge and hands-on experience in Internal Controls over Financial Reporting, SOX 404 frameworks, and testing to support compliance
Prior experience at a Big 4 accounting firm
Experience leading compliance initiatives from start to finish
Proven understanding and audit experience of cloud technologies, AWS preferred
Ability to effectively and autonomously accomplish outcomes across cross-functional teams in ambiguous situations with minimal supervision
Strong oral and written communication skills
Ability to multitask, direct cross functional work, and hold others accountable to committed deadlines in a fast paced environment
Ability to communicate with technical/non-technical stakeholders to align on shared outcomes
Nice to haves
BA or BS in a technical field or equivalent experience
Security certifications e.g. CISA, CISSP, CISM or other relevant certifications
Experience auditing in crypto space
#LI-Remote
This job is accepting ongoing applications and there is no application deadline.
Please note, applicants are permitted to redact or remove information on their resume that identifies age, date of birth, or dates of attendance at or graduation from an educational institution.
We consider qualified applicants with criminal histories for employment on our team, assessing candidates in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance.
Kraken is powered by people from around the world and we celebrate all Krakenites for their diverse talents, backgrounds, contributions and unique perspectives. We hire strictly based on merit, meaning we seek out the candidates with the right abilities, knowledge, and skills considered the most suitable for the job. We encourage you to apply for roles where you don't fully meet the listed requirements, especially if you're passionate or knowledgable about crypto!
As an equal opportunity employer, we don’t tolerate discrimination or harassment of any kind. Whether that’s based on race, ethnicity, age, gender identity, citizenship, religion, sexual orientation, disability, pregnancy, veteran status or any other protected characteristic as outlined by federal, state or local laws.
Stay in the know