Senior Security Engineer - Regulatory Requirements

About Nubank

Nubank was founded in 2013 to free people from a bureaucratic, slow and inefficient financial system. Since then, through innovative technology and outstanding customer service, the company has been redefining people's relationships with money across Latin America. With operations in Brazil, Mexico, and Colombia, Nubank is today one of the largest digital banking platforms and technology-leading companies in the world.

Today, Nubank is a global company, with offices in São Paulo (Brazil), Mexico City (Mexico), Buenos Aires (Argentina), Bogotá (Colombia), Durham (United States), and Berlin (Germany). It was founded in 2013 in Sao Paulo, by Colombian David Vélez, and cofounded by Brazilian Cristina Junqueira and American Edward Wible. For more information, visit www.nubank.com.br .

About the team

The Governance, Risk and Compliance (GRC) team enables Nubank to ensure compliance with legal, regulatory, and internal requirements, while continuously identifying, classifying, and monitoring risks, and providing strategic insights and performance evaluation to leadership.

GRC squad is responsible for collaborating with multidisciplinary teams to drive alignment between our technology security strategy and Nubank's overall objectives. We ensure that identified risks are mitigated, empowering risk-based decision-making by leadership both within and beyond the IT and Security Business Unit.

As a Senior Security Engineer, you will:

• Analyze and interpret new IT and Security regulatory requirements across various geolocations in which the company operates.
• Stay up-to-date with regulatory changes and emerging trends, assessing their impact on IT and Security processes.
• Collaborate with technical teams to design and implement solutions that ensure compliance with regulatory mandates.
• Develop and maintain comprehensive documentation and internal policies, including regulatory impact assessments, project plans, and compliance reports.
• Engage with cross-functional teams to provide guidance and expertise on regulatory requirements and compliance strategies.
• Identify gaps and improvement opportunities within the internal controls landscape.
• Work closely with the Risk teams to align on mitigation of identified risks.
• Prepare and present detailed reports on assessment findings, risks, and recommendations to senior management.
• Work in a multidisciplinary and global team, interacting with teams mainly in Brazil, Mexico, and Colombia.

We are looking for a professional who has:

• Prior experience with internal controls, risk, and compliance initiatives.
• Knowledge of international banking regulations and compliance standards, focusing on IT and Security requirements.
• Experience in regulatory analysis, or a related field within the banking or financial services industry.
• Proven expertise in designing and implementing compliance processes, coupled with a comprehensive understanding of the regulatory landscape, including but not limited to SOx, BACEN, CVM, CNBV, SFC, Banxico, ANBIMA, SEC, and other relevant regulations.
• Familiarity with diverse cybersecurity domains and concepts such as PCI-DSS, ISO 27k family, NIST, ITIL, COBIT and similar frameworks.
• Excellent communication and interpersonal skills, capable of articulating complex regulatory concepts to diverse audiences.
• Proficiency in technical assessment, with the ability to effectively collaborate with engineers, business process owners, and other stakeholders.
• Advanced English proficiency for both written and spoken communication.
• Parking partnership - discounted parking in our office
• Free bike parking with showers available
• NuCare - Our mental health and wellness assistance program
• Extended maternity and paternity Leaves
• Child care allowance
• Onsite Health Center - Medical support for every Nubanker in our office

Diversity & Inclusion

At Nubank, we want to be sure that we're building a more diverse and inclusive workplace that reflects the customers we serve and seek to empower. That's why we hire based on equality. We consider gender, ethnicity, race, religion, sexual orientation, and other identity markers as enriching elements to our company while ensuring neither of them represent a barrier when recruiting fantastic talent.

*

indicates a required field

First Name *

Last Name *

Preferred First Name

Email *

Phone

Resume/CV

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

LinkedIn Profile

Website

Do you have prior experience with internal controls, risk, and compliance initiatives? * Select...

Do you have knowledge of international banking regulations and compliance standards, focusing on IT and security requirements? * Select...

Do you have proven expertise in designing and implementing compliance processes, coupled with a comprehensive understanding of the regulatory landscape, including but not limited to SOx, BACEN, CVM, CNBV, SFC, Banxico, ANBIMA, SEC, and other relevant regulations? * Select...

Are you familiar with diverse cybersecurity domains and concepts such as PCI-DSS, ISO 27k family, NIST, ITIL, COBIT, and similar frameworks? * Select...

Are you proficient in technical assessment, with the ability to effectively collaborate with engineers, business process owners, and other stakeholders? * Select...