Nubank was founded in 2013 with the mission of fighting complexity to empower people in their daily lives by reinventing financial services.

Local

Belo Horizonte - MG

Hybrid 2-3 times/week

Act as a technical reference in security, certifications, and internal controls.
Define strategies, support risk-based decision-making, and ensure that security and compliance requirements are effectively embedded into processes, systems, and products.
Identify control gaps and improvement opportunities in technical procedures required for certification and recertification processes.
Develop and maintain strong partnerships with business and technical leaders to orchestrate audits, assessments, and remediation plans.
Collaborate with technical teams to define action plans that ensure adherence to regulatory requirements and internal policies.
Conduct assessments of internal controls, ensuring adherence to internal policies, legal requirements, and industry standards.
Identify gaps and improvement opportunities in the internal controls landscape and lead control reviews, ensuring timely resolution of issues.
Work closely with Risk teams to align on the mitigation of identified risks.
Support responses to audit requests, regulatory inquiries, and due diligence from business partners.
Partner with Engineering, Product, IT, and global teams to integrate compliance and security requirements into processes and systems.
Define and monitor KRIs and KPIs, delivering forward-looking, data-driven insights to senior management and Committees.
Drive continuous improvement and scale, simplifying processes and strengthening Nubank's Security Maturity as the company grows globally.

Solid experience in information security, with strong knowledge of frameworks such as PCI-DSS, ISO 27000 family, NIST, and similar.
Prior experience with security certification processes and/or internal controls, compliance, and audit support.
Excellent executive communication skills, capable of translating complex topics into clear, actionable insights for senior leadership and committees.
Experience operating in regulated and global environments, including interaction with auditors and regulators.
Bachelor's degree in Engineering, Technology, Security Information, Risk Management or related fields.
Familiarity with using AI and automation to enhance security compliance use cases.
Knowledge of the regulatory landscape relevant to financial services, such as SOx, BACEN, CVM, CNBV, ANBIMA, SEC, and related regulations.
Hands-on experience with cloud environments (e.g., AWS, GCP) and implementing security controls in these contexts.
Advanced English (written and verbal) required.

Hybrid 2-3 times/week

Today, we are one of the largest digital banking platforms in the world, serving millions of customers across Brazil, Mexico, and Colombia.

Senior Security Engineer