Who are we
WHO ARE WE
At Coinmerce, a Dutch-founded European cryptocurrency platform, we’re on a mission to make cryptocurrency simple, secure, and accessible for everyone. Transparency is our core value, and our open-door policy supports collaboration, innovation, and team spirit in our Schiphol-Rijk office. With over 90 talented colleagues, we’re shaping the future of crypto together—are you ready to join us?
What We Offer
Innovative Work: Be part of a team advancing new technology within the crypto industry;
Modern Workspace: Enjoy our new office located at Schiphol-Rijk;
Daily Perks: Free lunch, fresh fruit and weekly Friday drinks at our company bar;
Team Events: Engage in monthly team events and bonding activities;
Commuting & Pension: Receive commuting allowance and a solid pension plan;
Benefits & Wellness: 25 vacation days, monthly chair massages, and access to our company gym and Alleo benefit program;
Extra Perks: A €250 home-office setup budget after completing your probation period.
About the role
As an IT Risk Officer at Coinmerce, you will play a critical role in ensuring the security, resilience, and regulatory compliance of our technology infrastructure. In a fast-paced environment where we provide crypto brokerage, custody, market-making, and lending services, managing IT risk is essential to maintaining operational stability and protecting client assets.
You will be responsible for identifying, assessing, and mitigating IT and cyber risks while aligning with regulatory frameworks such as DORA (Digital Operational Resilience Act) and other applicable industry standards. You will collaborate closely with IT, Security, Compliance, and the Trading team to implement robust controls and monitoring mechanisms to prevent disruptions and safeguard critical systems. This role requires a deep understanding of both IT risk management and the unique challenges of the crypto industry, including cybersecurity threats, third-party risk, and operational resilience.
Responsibilities
Develop and maintain the IT risk management framework in alignment with DORA and industry best practices.
Conduct IT risk assessments, identify vulnerabilities, and recommend mitigations to ensure the resilience of crypto trading and brokerage systems.
Oversee third-party risk management, ensuring vendors and service providers meet security and compliance standards.
Work with IT and Security teams to enhance incident response and business continuity planning.
Monitor and report on key IT risk indicators (KRIs) and ensure proactive risk management.
Provide guidance on IT governance, policies, and regulatory compliance related to digital assets.
What You Bring
3+ years of experience in IT risk management, cybersecurity, or operational risk within financial services, fintech, or crypto industries.
Strong understanding of IT governance frameworks (e.g., ISO 27001 or NIST) and regulatory requirements such as DORA, MiCA and GDPR.
Experience in identifying, assessing, and mitigating risks related to crypto custody, trading platforms, and blockchain infrastructure.
Knowledge of cloud security, network security, and incident management in high-frequency trading or crypto environments.
Familiarity with third-party risk management and vendor due diligence processes.
Strong analytical and communication skills to translate technical risks into business impact.
Ability to work independently in a fast-paced, high-risk environment with evolving regulatory landscapes.
Proficiency in risk assessment techniques and security frameworks
Nice to Haves
Certifications such as CISM, CISSP, CRISC, or CISA.
Experience working with crypto exchanges, DeFi protocols, or Web3 security.
Knowledge of smart contract auditing and blockchain security.
Familiarity with SOC 2 and IT control frameworks for crypto companies.
