Director, Security and Technology M&A

About Kraken

Our mission is to accelerate the adoption of cryptocurrency so that you and the rest of the world can achieve financial freedom and inclusion. In our first decade, Kraken has risen to become one of the largest, most successful and respected crypto exchanges on the planet. 

We are changing the way the world thinks about finance and our range of successful products are playing a critical role in the mainstream adoption of crypto assets. We continue to trail-blaze into new territory with the introduction of Kraken Bank, providing a more seamless integration between crypto and the traditional financial system. This makes us the first crypto company (ever) to be awarded a U.S. state banking charter. 

Our diverse group of 2,000+ Krakenites are distributed all over the world as part of our 'remote first' culture, united by a shared passion for delighting customers, upholding crypto values and achieving our meaningful mission. We attract people who push themselves to improve, are radically transparent and think differently in order to unlock their potential. 

Crypto is a rapidly evolving industry and we’re just getting started. We’re growing fast and you're invited to join the revolution!

This role is remote, we are open to considering candidates in US timezones.

Kraken is seeking a Director of Security and Technology M&A. In this role you will lead an internal security and technology service team to conduct mergers & acquisitions (M&A) due diligence activities, including assessing risk posture of organizations under consideration, providing a recommendation for transaction execution, and beginning the planning of all integration activities surrounding personnel, infrastructure, and technology from a security and technology lens.

Roles and Responsibilities

    • Develop strategic security and technology M&A plans and roadmaps that are aligned to business strategies and requirements.

    • Develop new M&A playbooks based on Kraken security standards, procedures, and best-practices.

    • Collaborate with Security & Engineering Team members to develop all M&A requirements for all hardware and software computing platforms, environments and solutions including modifying, where required, existing policies, procedures and best practices to address M&A business strategies and requirements

    • Collaborate with the Security Teams, Engineering Teams, the Corporate Development Team, and other involved stakeholders on tailoring security & technology requirements to align to individual M&A transaction-specific requirements.

    • Build a team to perform approximately 80% of all reviews and testing and also coordinate Security Team members to conduct additional security analysis of platforms and environments using security M&A playbooks.

    • Provide guidance and hands-on experience to M&A project teams in design, development, and maintenance of M&A security solutions and processes that are both risk appropriate and help define risk prioritization.

    • Assess ISO 27001, SOC 1 and/or SOC 2 audit reports (or alternative sources) for security-related deficiencies and required "user controls" and suggest remediation controls.

    • Communicate with the Corporate Development Team and stakeholders on a continuous basis.

Required Qualifications

    • Bachelor's degree from an accredited university or college

    • Minimum of 15 years of experience in the Security industry

    • 15-20 years overall technology experience

    • 7 years in a technical or functional leadership role

    • Hands on experience in M&A activities

    • Strong working knowledge of IT service management (e.g., ITIL-related disciplines)

    • Strong working knowledge of Technologies for Backend, Frontend and Infrastructure engineering

    • Strong working knowledge of IT security and how it aligns and differs from cryptocurrency security 

    • Understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, NIST 800-53, IEC/ISA 62443, SOC2, PCI, SOX, etc.

    • One of the following certification(s) is required: CISM, CISSP, ITIL, CREST, or similar

Desired Characteristics

    • Strong oral and written communication skills.

    • Ability to document, plan, market, and execute programs. Established project management skills.

    • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one

    • Strong interpersonal and leadership skills, with an emphasis on the ability to effectively influence others

    • A team-focused mentality with the proven ability to work effectively with diverse stakeholders with divers requirements and priorities

    • An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner

    • Demonstrated ability to analyze and resolve problems.

    • Demonstrated ability to lead programs / projects.

We’re powered by people from around the world with their own unique backgrounds and experiences. We value all Krakenites and their talents, contributions, and perspectives.

Check out all our open roles at We’re excited to see what you’re made of.  

Learn more about us

Apply Now

Back to jobs