Tech Stack

Description

You will act as a senior technical and governance reference for security, certifications, and internal controls at Nubank, serving as a bridge between engineering, risk, audit, and business stakeholders. You will define strategies, support risk-based decision-making, and ensure security and compliance requirements are embedded into processes, systems, and products.

Requirements

• Solid experience in information security with knowledge of PCI-DSS, ISO 27000, NIST frameworks
• Experience with security certification processes and internal controls, compliance, and audit support
• Excellent executive communication skills
• Experience in regulated and global environments
• Advanced English (written and verbal)

Responsibilities

• Act as senior technical and governance reference for security, certifications, risk, and internal controls
• Identify control gaps and improvement opportunities in certification processes (ISO 27001, PCI-DSS)
• Orchestrate audits, assessments, and remediation plans with business and technical leaders
• Conduct assessments of internal controls ensuring adherence to policies and regulations
• Define and monitor KRIs and KPIs, delivering data-driven insights to senior management