Company Overview
CEX.IO Europe is a Virtual Asset Service Provider (VASP) licensed by the Banco de España and is currently upgrading its authorisation under the EU Markets in Crypto‑Assets Regulation (MiCAR) as a Crypto‑Asset Service Provider (CASP) in Spain. As we move from the national transitional regime to the full EU MiCAR passporting framework, the Board ensures supervisory continuity, robust governance, and strategic resilience.
Role Overview
We are seeking a seasoned Director & Chief Risk Officer (CRO) to join the Board. This dual‑hatted role combines Board‑level fiduciary duties with executive responsibility for the enterprise‑wide risk management function. The successful candidate will shape strategy and risk appetite while leading the Risk Department to ensure security, compliance, and operational integrity across all crypto service offerings.
Candidates with experience in Electronic Money Institutions (EMIs) – e‑money token frameworks, safeguarding regimes, and PSD2 operational resilience – are especially well‑suited for this role, as their expertise directly supports MiCAR requirements for Asset‑Referenced Tokens (ARTs) and EMTs.
This role is subject to joint EBA/ESMA guidelines on suitability; individual knowledge, good repute, and time commitment are licence conditions.
Key Responsibilities Board Level Duties (Second Line Oversight & Strategy)
* Collaborate with the Board to define the company’s enterprise‑wide risk appetite, covering operational, financial, cyber, and strategic risks in line with MiCAR and DORA requirements
* General day‑to‑day running of the Company alongside the Board, steering the business strategically and compliantly
* Present and justify the Risk Management Framework to the Board Risk Committee for approval, ensuring alignment with Spanish and EU regulatory standards
* Advise the Board on conflicts of interest regarding qualifying shareholders and shared resources, preventing prejudicial influence on the company’s sound management
* Provide regular risk reports to the Board Risk Committee, highlighting key risk indicators (KRIs) and emerging trends in the crypto‑asset sector
Executive Management Duties (First Line — Execution and Leadership)
* Develop, implement, and maintain the comprehensive risk management framework and policies across the organisation
* Identify, prioritise, and assess risks across the organisation, including emerging threats in banking, technology, and crypto asset sectors (e.g., custody risks, settlement risks, blockchain‑specific threats)
* Act as the primary point of contact for the Banco de España, CNMV, and external auditors regarding risk management matters and compliance with industry standards
* Oversee execution of business continuity and crisis management plans to ensure the Company remains structured under stress, guaranteeing continuity of crypto‑asset services as per DORA
* Mentor and lead the risk management team, fostering a proactive culture of risk awareness and continuous improvement
Essential Experience & Qualifications
* Bachelor’s degree in Finance, Risk Management, Economics, Business, or Law; advanced certifications (e.g., FRM, PRM, CFA) are preferred
* 5+ years in senior risk roles within financial market infrastructure, payment systems, EMIs, crypto‑assets, or major financial institutions; deep understanding of financial, operational, and financial‑crime risks
* Deep understanding of Spanish regulatory landscape (Banco de España, CNMV) and the EU MiCAR framework; direct experience with EMI authorisation or oversight under PSD2/ e‑money directive is desirable; knowledge of DORA and cyber resilience is beneficial
* Familiarity with technical aspects of crypto‑assets (DLT, custody, tokenomics, blockchain analytics)
* Native Spanish speaker; English proficiency required
Knowledge & Skills
* Strategic systems thinking: connecting micro risks (e.g., transaction delays) with macro systemic impacts (e.g., liquidity crunches)
* Innovative pragmatism: balancing regulatory compliance with technological innovation and business growth
* Leadership: proven track record of leading multi‑jurisdictional teams and constructively challenging executive counterparts
* Communication: fluent Spanish for local operations; English for inter‑group communications
* Fit and Proper compliance: maintain a clean criminal record, commit full‑time executive dedication to CEX.IO Europe S.L., and address governance gaps identified in the Board’s skills matrix
Core Competencies
* High levels of integrity, independence, and accountability
* Ability to maintain structure and clarity under stress
Success Criteria
Within the first 12 months, the Director & CRO will have:
* Successfully assisted in managing the risk workstream for the complete MiCAR authorisation dossier to the CNMV and the EMI authorisation with the Banco de España
* Implemented the updated Risk Management Framework and Suitability policy across the organisation
* Established a suite of Key Risk Indicators (KRIs) tailored to the crypto‑asset business model
* Built and mentored a high‑performing risk team capable of managing the firm’s growth within the MiCAR framework
* Ensured the firm’s crisis management and business continuity plans are tested and fully compliant with DORA requirements
#J-18808-Ljbffr