Key skills
AnalyticsLeadershipRisk ManagementCommunication
About this role
Role Overview
- Run CBPL’s entity‑level risk framework in line with CBPL Risk Policy, Methodology and Appetite, covering financial, operational, technology, outsourcing, conduct and regulatory risks.
- Lead and challenge RCSAs, incident/issue management, KRIs/KCIs and risk‑appetite monitoring for CBPL, including MiFID‑related change as the licence is pursued.
- Provide 2LoD risk challenge on products, change initiatives and governance, and prepare clear, decision‑useful risk MI for the CBPL Risk Committee, Board and key working groups.
- Oversee CBPL’s outsourcing and intra‑group risk (GSAs/SLAs, exit plans, third‑party concentration, resilience) and support operational resilience work on important business services.
- Support CBPL’s ICARA, prudential planning and regulatory engagement with country‑level risk input, scenarios and remediation tracking.
- Help design, enhance and embed Coinbase’s global Operational Risk Management framework (RCSA, incident and loss data, key controls, KRIs, scenario analysis, business resiliency).
- Own or co‑own one or more global ORM program areas (e.g. incident management, non‑financial risk assessment, resilience, third‑party risk, loss analytics), coordinating virtual squads across entities.
- Act as a trusted 2LoD partner to global product and operations teams, reviewing new products and change for operational‑risk impacts with a particular focus on items affecting CBPL and the UK footprint.
- Enhance operational‑risk MI and dashboards for senior management and Board‑level forums, bringing CBPL insight into the enterprise view of operational risk.
- Champion a strong risk culture across CBPL and Global ORM, clarifying 1LoD/2LoD roles, encouraging early escalation and embedding UK regulatory expectations in everyday decisions.
- Coach first‑line and functional leaders on prudential, operational, outsourcing and conduct risk in a simple, practical way.
- Role‑model Coinbase culture and leadership principles, including clear written and verbal communication, ownership mindset and bias for action.
Requirements
- 7–10+ years of risk‑management experience in UK‑regulated financial services, with strong exposure to operational and enterprise risk.
- Deep understanding of core risk‑management and operational‑risk concepts, including risk governance, three lines of defence, RCSA, incidents/issues, KRIs/KCIs, risk appetite and stress testing.
- Practical experience engaging with UK regulation (e.g. SYSC, MiFIDPRU/IFPR, operational resilience, outsourcing, conduct and Consumer Duty) and applying it to risk frameworks.
- Prior experience working in or closely with 2LoD functions, engaging Boards, senior management, regulators and internal audit.
- Demonstrated ability to design and implement risk processes and procedures for effective risk management at both entity and group level.
- Strong organisation, project and time‑management skills; able to manage multiple workstreams, prioritise effectively and deliver high‑quality output under tight deadlines.
- Proven track record of building effective relationships with business partners, peers and senior leaders across global, matrixed organisations.
- Comfortable operating in a fast‑paced, high‑growth, technology‑led environment with changing priorities.
Benefits
- Benefits (including medical, dental, and vision)