Kraken is a leading financial infrastructure platform focused on advancing an open, global financial system. They are seeking an M&A Collaboration & Security Platforms Engineer to manage the integration of collaboration tools across acquired companies, ensuring a secure and compliant environment. The role involves overseeing Google Workspace, Slack, and Zoom, and requires collaboration with various teams to streamline processes during acquisitions.
Responsibilities:
- Drive collaboration-platform integration end-to-end for each acquisition, scoping, planning, executing, and closing out migrations of users, Slack channels, Google Workspace Drive, mailboxes, and configurations from acquired companies into the Payward environment
- Assess acquired-company collaboration stacks during and after diligence: what they run, how it's configured, what the security and compliance gaps are, and what it takes to consolidate
- Rationalize overlapping tools across brands, decide what migrates, what sunsets, and what stays, and see those calls through
- Build repeatable playbooks, tooling, and automation so each successive integration is faster and cleaner than the last
- Coordinate cutover timelines and TSA-driven dependencies with Corporate Development, Legal, and the acquired teams
- Own Google Workspace, Slack, and Zoom at multi-entity enterprise scale, architecture, governance, licensing, configuration, and day-to-day operations across the brand portfolio
- Build and maintain integrations between collaboration tools and the broader identity and security stack (Okta, Global Relay, eDiscovery tooling, archiving platforms)
- Define and enforce cross-brand platform governance standards; build automation that makes the secure path the easy path
- Collaborate with HRIS and IAM teams to manage clean onboarding and offboarding across platforms and entities
- Own email security infrastructure across brands, filtering, quarantine, impersonation defenses, and DMARC/SPF/DKIM hygiene, and raise the bar as new entities and threats arrive
- Manage a large, multi-registrar, multi-brand domain portfolio (Cloudflare, MarkMonitor, and others); lead DNS migrations, audits, and consolidation as brands come in
- Respond to phishing campaigns, insider threat signals, and anomalous domain activity with speed and precision
- Lead legal hold management, eDiscovery queries, and data productions across email, Slack, and Google Drive, across multiple entities
- Architect and maintain compliant archiving infrastructure (Global Relay, Smarsh, Virtru) as new businesses are onboarded and legacy ones sunset
- Produce and defend evidence for regulatory and audit obligations (17a-4, ISO, external auditors), working directly with Legal and Compliance
- Design and maintain DLP rules, group access controls, and data access policies across collaboration platforms and entities
- Lead insider threat reduction initiatives, access revocation, high-risk extension management, public channel governance, during and after integrations, when risk is highest
- Own platform-level incident response: investigation, containment, and post-incident improvement
- Evaluate, onboard, consolidate, and sunset SaaS tools across the collaboration and security stack as the portfolio grows
- Lead vendor relationships, procurement, and renewals; make build-vs-buy-vs-sunset calls and see them through
- Build automation that reduces manual toil and improves governance at scale
Requirements:
- 4–6 years of hands-on experience administering Google Workspace and Slack at companies with 1,000+ users, including complex migrations and governance work
- Demonstrated experience owning or leading a technology migration in an M&A or systems-consolidation context, ideally more than one. This is the heart of the role
- Solid email security experience: filtering, quarantine, DMARC/SPF/DKIM, impersonation defense, threat response
- DNS administration and domain portfolio management at meaningful scale
- Direct experience with compliance and legal workflows, legal holds, eDiscovery, regulatory data productions, and compliant archiving platforms
- You operate end-to-end: scope the problem, design the solution, execute it, and close it out cleanly, especially under the time pressure of a deal
- You're comfortable making decisions under ambiguity, acquired environments are always messy, and defending them with clear reasoning
- You understand that clean infrastructure is a security control, not an operational nicety
- You work well across functions: Legal, Compliance, IT, Security, Corporate Development, and the acquired teams you're integrating
- You communicate proactively, no backchannels, no surprises; stakeholders know where things stand
- You manage multiple concurrent integrations without losing threads
- You automate and systematize recurring work; you build things that outlast you, documentation, tooling, governance frameworks others can operate
- You take ownership: if something's broken, you fix it
- Experience integrating multiple acquired companies' collaboration stacks into a single parent environment
- Experience with Global Relay, Smarsh, Virtru, or comparable archiving platforms, including onboarding and architecture decisions
- Familiarity with Okta and its integration patterns with Google Workspace and Slack
- Experience managing a large domain portfolio across multiple registrars and DNS providers
- Exposure to eDiscovery and legal hold tooling
- Comfort in a regulated industry, financial services, crypto, fintech, where compliance isn't optional