Risk & Internal Controls Associate

Summary

Join Kraken as a Risk and Internal Controls Analyst and play a foundational role in our Risk Management team. This role offers broad exposure to risk and controls across the business, supporting SOX compliance. You will maintain risk registers, track control performance, collect audit evidence, and support risk assessments. Based in Europe (ideally Ireland or UK), you will contribute to internal controls support (SOX), enterprise risk management activities, and maintain the GRC system. This is a fully remote position within a fast-paced, innovative environment. The position requires experience in risk management, internal audit, or SOX compliance, a bachelor's degree in a relevant field, and knowledge of ERM frameworks and SOX requirements. Kraken is a mission-focused company committed to accelerating global crypto adoption.

Requirements

• 1-2+ years of experience in a risk management, internal audit, or SOX compliance role
• Bachelor's degree in a relevant field (e.g., Risk Management, Business, Finance, Accounting)
• Knowledge of ERM frameworks (e.g., COSO) and risk management best practices, including risk appetite, KRIs, and RCSAs
• Knowledge of SOX 404 requirements, ICFR, SOC reports, and the documentation/testing needed to support compliance
• Ability to multitask, prioritize, and deliver high-quality results in a fast-paced, ambiguous environment
• Exceptional communication and interpersonal skills, with a track record of collaborating across departments and influencing stakeholders
• Strong organizational and time-management skills, with a proactive and action-oriented mindset
• Resilience and grit, with the ability to navigate challenges and adapt in a growth-oriented environment

Responsibilities

• Assist in maintaining risk and control documentation (e.g., RCMs, process flows, narratives) for both business and IT controls
• Help coordinate evidence collection and control attestations across functional and technical control owners
• Support quarterly SOX updates, including IT General Controls (ITGCs), and track remediation of deficiencies
• Prepare audit-ready documentation to support control testing for both internal and external audits
• Support internal reporting processes and respond to audit and compliance document requests
• Help update the enterprise and departmental risk registers
• Assist in risk assessments and RCSAs (Risk & Control Self-Assessments)
• Support in monitoring and tracking Key Risk Indicators (KRIs)
• Participate in root cause analysis for risk incidents and control failures
• Help maintain the Governance Risk and Compliance (GRC) system

Preferred Qualifications

• Familiarity with IT controls is preferable
• Experience with GRC systems is preferable
• Knowledge of cryptocurrency markets and related technical products