Risk Officer
from 🇨🇦 Canada
We are seeking a skilledRisk Officerin Bermuda to oversee the risk operations of our Bermuda-regulated entity.
This role focuses entirely on the daily management of our enterprise-wide risk framework. You will bridge the gap between strategic risk appetite and day-to-day execution, ensuring our operations remain resilient, secure, and fully compliant with theBermuda Monetary Authority (BMA) regulations and the Digital Asset Business Act (DABA) framework.
Given the regulatory landscape, candidates with solid backgrounds in digital asset custody, traditional banking safeguarding frameworks, or regulatedpayment systems are highly encouraged to apply.
Key Responsibilities
- ERM Governance: Maintain, operationalize, and continuously update the comprehensive Enterprise Risk Management (ERM) framework, policies, and risk registers in line with BMA expectations.
- Digital asset risk and custody: Conduct regular risk assessments targeting financial, operational, cyber, and crypto-specific threats (e.g., cryptographic key management, custody risks, settlement risks, and smart contract/blockchain-specific vulnerabilities).
- Client asset safeguarding: Monitor and enforce robust controls around the "control of assets" and custody of client assets, ensuring strict compliance with BMA segregation, pooling, and reconciliation rules.
- Daily monitoring: Monitor and track daily Key Risk Indicators (KRIs), flagging emerging trends and vulnerabilities to the management team before they impact operations.
- Board and regulatory reporting: Report directly to the Board of Directors on risk framework suitability, effectiveness, and emerging threats, collaborating with the Board to define and manage the company’s risk appetite.
- BMA liaison support: Assist in preparing risk documentation, evidence, and annual prudential returns for the Bermuda Monetary Authority (BMA) and external auditors.
- Business resilience and cybersecurity: Support the execution, testing, and annual auditing of business continuity, disaster recovery, wind-down plans, and technology/cyber risk programs to ensure full alignment with theBMA’s Operational Cyber Risk Management Code of Practice.
- Capital and liquidity oversight: Monitor local net asset and capital adequacy requirements to ensure the entity remains compliant with BMA prudential standards at all times.
Essential Experience and Qualifications
- Bachelor’s degree in Finance, Risk Management, Economics, Business, or Law. Professional risk management or financial credentials (e.g., FRM, PRM) are a significant advantage.
- 3–5+ years of solid experience in senior or mid-level risk management roles within digital asset business (DAB) platforms, digital asset custody providers, payment services, or traditional financial institutions.
- Strong working knowledge of Bermuda's Digital Asset Business Act (DABA) and the BMA’s regulatory requirements. (Familiarity with aligning international standards like DORA/MiCAR to BMA expectations is a plus).
- Practical understanding of digital asset mechanics (DLT, custody protocols, secure development lifecycles, and blockchain analytics tools).
- Based in Bermuda (or willing to relocate) to support our physical presence and local management requirements under the BMA.







