Lead Security Engineer (GRC)

<h2><strong>About us&nbsp;</strong></h2> <p>Nubank was founded in 2013 with the mission of fighting complexity to empower people in their daily lives by reinventing financial services. Today, we are one of the largest digital banking platforms in the world, serving millions of customers across Brazil, Mexico, and Colombia. For more information, visit our careers page: <a href="https://international.nubank.com.br/careers/">https://international.nubank.com.br/careers/</a>&nbsp;</p> <h2><strong>About the team&nbsp;</strong></h2> <p>The Governance, Risk and Compliance (GRC) team enables Nubank to remain compliant with legal, regulatory, and internal requirements, while continuously identifying, classifying, and monitoring risks and providing strategic insights and performance evaluation to leadership.</p> <p>The GRC squad collaborates with multidisciplinary teams to align our technology security strategy with Nubank’s overall business objectives, ensuring that identified risks are mitigated and that risk-based decision-making is enabled within and beyond the IT &amp; Security Business Unit.</p> <h2><strong>About the role</strong></h2> <p>You will be responsible for acting as a technical reference in security, certifications, and internal controls, serving as a bridge between engineering, risk, audit, and business stakeholders.<br>You will define strategies, support risk-based decision-making, and ensure that security and compliance requirements are effectively embedded into processes, systems, and products.</p> <h2><strong>Key responsibilities</strong></h2> <ul> <li>Act as a senior technical and governance reference across security, certifications, risk, and internal controls, influencing strategy.</li> <li>Identify control gaps and improvement opportunities in technical procedures required for certification and recertification processes&nbsp; (e.g., ISO 27001, PCI-DSS).</li> <li>Develop and maintain strong partnerships with business and technical leaders to orchestrate