Lead Security Engineer

Nubank was founded in 2013 to free people from a bureaucratic, slow, and inefficient financial system. Since then, through innovative technology and outstanding customer service, the company has been redefining people's relationship with money across Latin America. With operations in Brazil, Mexico, and Colombia, Nubank is today the largest digital banking platform in the world and one of the leading technology companies, reinventing the financial lives of over 60 million customers.

Nubank achieved this by offering a no-fee credit card, managed entirely via a mobile app, and a digital account free of taxes. Nubank also provides transparent personal loans, a business account for SMBs, and life insurance. In 2020, Nubank acquired digital broker Easynvest (now Nu invest), becoming the leader in self-directed digital investments in Brazil.

Over the years, Nubank has raised around US$2 billion from renowned investors such as Berkshire Hathaway, Sequoia, DST, Tencent, Tiger, Kaszek, Founders Fund, Dragoneer, TCV, Redpoint, Ribbit, GIC, Whale Rock, Invesco, QED, and Capital Group.

Today, Nubank is a global company with offices in São Paulo (Brazil), Mexico City (Mexico), Buenos Aires (Argentina), Bogotá (Colombia), Durham (USA), and Berlin (Germany). It was founded in São Paulo by Colombian David Vélez and co-founded by Brazilian Cristina Junqueira and American Edward Wible. For more information, visit www.nubank.com.br.

The Lead Security Engineer will be responsible for:

1. Leading the design, implementation, and support of multi-country endpoint security solutions for on-premises and cloud infrastructures, developing scalable automation for large-scale deployments and security operations.
2. Defining, developing, and maintaining security policies and best practices for emerging endpoint technologies, ensuring thorough documentation for technical and non-technical audiences.
3. Ensuring comprehensive endpoint security configuration across diverse systems using OS-specific tools and platforms, aligned with best practices and evolving threats.
4. Assessing and mitigating risks related to endpoint security, contributing to broader information protection strategies.
5. Leading security reviews and audits on endpoint security, guiding internal teams through compliance and vulnerability discussions.
6. Managing incident response and operational issues related to endpoint security tooling, responding proactively to threats and anomalies.
7. Evaluating build versus buy options for security systems, providing expert analysis considering trade-offs to optimize security and operational efficiency.

What we are looking for:

• Expert-level knowledge of Windows, macOS, and Linux operating systems, focusing on endpoint security protocols and identity/authentication mechanisms.
• Proven experience with application layer technologies supporting critical services and ensuring secure data exchanges.
• Strong background in security research, analysis, and visualization, leveraging IAM, security operations, and analytics platforms.
• Extensive expertise in cloud (AWS, GCP, Azure) and on-premise security best practices, enabling secure hybrid infrastructures.
• Broad knowledge of holistic security considerations, including physical security, system, and application security.
• Proficiency with automation tools (Terraform, Ansible, Puppet) for security hardening and configuration management.
• Experience in security incident management, including rapid diagnosis, containment, and remediation.
• Ability to lead technical discussions, foster collaboration, and guide teams on security strategies.
• Strong communication skills to articulate security challenges and solutions to diverse audiences.
• Ability to analyze endpoint vulnerabilities and implement mitigation strategies.
• Capable of making fast, data-driven decisions during security incidents.
• Keen awareness of emerging threats and attack methods targeting endpoints.

Preferred Qualifications:

• Experience scripting or programming in any language.
• Understanding of monitoring tools like Kibana or Prometheus.
• Experience with ticketing, whiteboarding, collaboration dashboards, and Google Docs.
• Interest in security operations and coordinating with incident response and defensive teams.
• Experience working on global projects with distributed infosec teams.

Hybrid work model: Nu Way of Working

• Health, dental, and life insurance
• Transportation assistance
• 30 days paid vacation
• Equity options
• Discounted parking and bike parking with showers
• NuCare wellness program
• Partnerships with Gympass/Wellhub
• Extended maternity/paternity leave
• Child care allowance
• Onsite health center

At Nubank, we are committed to building a diverse and inclusive workplace that reflects and empowers our customers. We value gender, ethnicity, race, religion, sexual orientation, and other identities, ensuring no barriers to talented individuals joining us.