IT Risk Analyst

About Kraken

Our mission is to accelerate the adoption of cryptocurrency so that you and the rest of the world can achieve financial freedom and inclusion.  Founded in 2011 and with over 4 million clients, Kraken is one of the world's largest, most successful bitcoin exchanges and we're growing faster than ever. Our range of successful products are playing an important role in the mainstream adoption of crypto assets.  We attract people who constantly push themselves to think differently and chart exciting new paths in a rapidly growing industry. Kraken is a diverse group of dreamers and doers who see value in being radically transparent. Let's change the way the world thinks about money! Join the revolution!

We are looking for an IT Risk Analyst who will play a crucial role in assessing and identifying risk reduction or risk mitigation opportunities for applications, systems, and various processes in order to be compliant with various regulatory requirements and to mature our security posture. This role will work within a small but efficient team to examine IT Risk throughout the various departments. Suitable candidates should be familiar with various major global policies that affect financial technology organizations, and have experience in policy drafting as well as performing IT and Security risk assessments. As an IT Risk Analyst within the IT & Security team, the candidate will have a variety of responsibilities, including drafting/modifying policies and procedures, analyzing current policies for its compliance, performing risk assessments, maintaining the risk register, and assisting other team members in keeping Kraken a safe and secure environment for both the employees and clients.


    • Perform and review vendor reviews on application requests

    • Help to maintain risk registers for identified risks (specifically BCP/DR)

    • Draft new policies to ensure that Kraken is in compliant with all domestic and global regulatory requirements

    • Analyze current policies to ensure we stay in compliance with all domestic and global regulatory requirements

    • Organize and conduct meetings with application owner or/and administrators


    • Experience performing business impact analysis

    • Experience with business continuity planning and disaster recovery

    • Demonstrable ability to work autonomously and comfortable in a remote environment

    • Solid understanding of global and domestic policies that affect the cryptocurrency industry (ISO27001, SOC2, PCI, etc..)

    • Experience in performing risk assessments

    • Excellent understanding of IT processes and IT general controls

    • BS/Ba or equivalent work experience

    • Understand a variety of industry specific security testing methodologies

    • Ability to lead and direct discussions toward identifying the risks of falling out compliance

    • High level of intellectual curiosity to understand current state, identify issues and provide solutions, while advising on potential positive and negative implications of decisions

We’re powered by people from around the world with their own unique backgrounds and experiences. We value all Krakenites and their talents, contributions, and perspectives.

Check out all our open roles at We’re excited to see what you’re made of.  

Learn more about us:

Apply Now

Back to jobs