Chief Risk Officer (CRO)

About Coinmetro

Coinmetro is the primary regulated operational entity of the Coinmetro Group within the European market. We are currently in the process of obtaining a license from the Malta Financial Services Authority (MFSA) under the MiCA framework, with a view to starting operations in July 2026.

We have maintained a strict, no-nonsense compliance culture since we started in 2018. We do not cut corners. Right now, we are taking that existing foundation and adapting it to meet the specific requirements of Malta and the MFSA. You will not be inheriting a perfectly tailored Maltese compliance machine from day one; you will be the one building and executing the operational framework to ensure we launch with an airtight standard that meets all regulatory expectations.

The Role

You will ensure our operations align with the Board-approved Risk Appetite Statement and oversee the identification, assessment, and mitigation of risks across the enterprise.

Core Responsibilities

• Develop, implement, and maintain Coinmetro's overall Risk Management Framework and Risk Appetite Policy.
• Maintain the corporate risk registers, actively tracking all identified risks against established Key Risk Indicators and risk acceptance levels.
• Chair the Risk Committee to assess inherent and residual risks, and present updated risk registers directly to the Board.
• Manage the escalation process for near-breaches and breaches of risk thresholds, and coordinate mandatory notifications to competent authorities when required by law.
• Coordinate comprehensive enterprise-wide and thematic risk assessments, evaluating operational, financial crime, product, and technology risks.

Requirements

• Proven executive experience in risk management within the crypto-asset, fintech, or broader financial services sector.
• Demonstrated ability to design and maintain enterprise risk registers and key risk indicator (KRI) tracking systems.
• Strong governance background with experience reporting directly to a Board of Directors and chairing risk committees.
• Comprehensive understanding of the operational and regulatory risks specific to CASPs under the MiCA framework.
• Comfortable with a hybrid/remote setup, maintaining strong executive oversight.

How to Apply

Please skip the traditional cover letter. Submit your CV or fill out your profile on the application platform, and include your answers to these two questions:

1. In two sentences, explain what action you would take if a core product feature repeatedly generates near-breach alerts against our Risk Appetite Statement, but the business unit insists it is a false-positive issue.
2. Briefly describe how you prioritize overlapping operational and financial crime risks when resource constraints prevent addressing both simultaneously.