About Us

Nu is one of the largest digital financial platforms in the world, with more than 122 million customers across Brazil, Mexico, and Colombia. Guided by our mission to fight complexity and empower people, we are redefining financial services in Latin America and this is still just the beginning of the purple future we're building.

Listed on the New York Stock Exchange (NYSE: NU), we combine proprietary technology, data intelligence, and an efficient operating model to deliver financial products that are simple, accessible, and human.

Our impact has been recognized by global rankings such as Time 100 Companies, Fast Company’s Most Innovative Companies, and Forbes World’s Best Bank. Visit our institutional page https://international.nubank.com.br/careers/  

About the Role

We are looking for an experienced engineer who thrives on solving "meta-problems"—fixing the tools and processes that other teams rely on. You will be responsible for designing and implementing high-leverage automation, managing enterprise tool rollouts (e.g., Postman, n8n), and defining the technical governance for our next-generation AI workflows.

Key Responsibilities

• Enterprise Automation & Platform Engineering:
  • Lead the implementation and maintenance of automation platforms (e.g., n8n) to orchestrate workflows across business units.
  • Design and optimize critical communication infrastructure (e.g., AWS SES, email delivery resilience) to ensure high availability for internal and transactional messaging.
• AI & "Vibe Coding" Governance:
  • Drive the technical strategy for AI adoption within engineering workflows.
  • Develop governance frameworks to ensure safe, compliant, and effective use of AI coding assistants and agents.
  • Build "Minimum Control Platforms" that balance developer freedom with security and operational risk requirements.
• Internal Tooling Standards:
  • Define and enforce usage standards for developer tools (e.g., Postman for API lifecycle), ensuring consistency across squads.
  • Conduct "Discovery Design" for new internal products, ensuring they are inclusive and scalable across different technical frameworks.
• Cross-Functional Technical Leadership:
  • Act as a technical reference for the domain, influencing architectural decisions beyond the immediate team. Mentor senior engineers and partner with stakeholders (ITSec, Privacy) to align technical solutions with company policies.

What are we looking for?

Technical Skills

• Solid Software Engineering Background: Proficiency in modern programming languages (Clojure, Java, or Python preferred) and distributed systems.

• Infrastructure & Cloud: Strong hands-on experience with AWS (specifically services like SES, Lambda, IAM) and Infrastructure-as-Code (Terraform/CloudFormation).

• Automation Mindset: Experience with workflow automation tools (n8n, Zapier, or custom orchestration engines) and API integration.

• AI/LLM Familiarity: Interest or experience in integrating LLMs/AI agents into developer workflows (e.g., Cursor, Copilot, internal AI agents).

• Advanced English

Behavioral & Strategic Skills

• Governance-Aware: You understand that "efficiency" must be balanced with "security." You can design systems that are safe by default without destroying developer velocity.
• Problem Solver: You are comfortable debugging opaque infrastructure issues (like email deliverability drops) one day and writing a strategic policy document the next.
• Multiplier: You enjoy documenting your work, creating "Golden Paths" for other engineers, and teaching others how to use the tools you build.

Our Benefits

• Chance of earning equity at Nubank
• Food/ Meal Card (Vale-Refeição and/or Vale Alimentação)
• Public Transportation Commuting Benefit (Vale-Transporte)
• NuCare – Psychological, Financial and Legal Assistance Program
• Life Insurance
• Medical Plan
• Dental Plan
• NuLanguage – Language Course Program
• Nucleo - Our learning platform of courses
• Extended Parental Leave
• Daycare Allowance
• Parental Consultancy
• Work-from-home Allowance
• Gym Partnerships
• 30 days of paid vacation
• Relocation Assistance Package, if applicable

Work Model for this Role

Our hybrid work model brings us to the office at least twice a week, on strategic days designed to maximize team connection and collaboration. For more details, visit https://building.nubank.com/nu-hybrid-work-model/

About us 

Nubank was founded in 2013 with the mission of fighting complexity to empower people in their daily lives by reinventing financial services. Today, we are one of the largest digital banking platforms in the world, serving millions of customers across Brazil, Mexico, and Colombia. For more information, visit our careers page: https://international.nubank.com.br/careers/ 

About the team 

The Governance, Risk and Compliance (GRC) team enables Nubank to remain compliant with legal, regulatory, and internal requirements, while continuously identifying, classifying, and monitoring risks and providing strategic insights and performance evaluation to leadership.

The GRC squad collaborates with multidisciplinary teams to align our technology security strategy with Nubank’s overall business objectives, ensuring that identified risks are mitigated and that risk-based decision-making is enabled within and beyond the IT & Security Business Unit.

About the role

You will be responsible for acting as a technical reference in security, certifications, and internal controls, serving as a bridge between engineering, risk, audit, and business stakeholders.
You will define strategies, support risk-based decision-making, and ensure that security and compliance requirements are effectively embedded into processes, systems, and products.

Key responsibilities

• Act as a senior technical and governance reference across security, certifications, risk, and internal controls, influencing strategy.
• Identify control gaps and improvement opportunities in technical procedures required for certification and recertification processes  (e.g., ISO 27001, PCI-DSS).
• Develop and maintain strong partnerships with business and technical leaders to orchestrate audits, assessments, and remediation plans in a risk-based and scalable way.
• Collaborate with technical teams to define action plans that ensure adherence to regulatory requirements and internal policies.

• Conduct assessments of internal controls, ensuring adherence to internal policies, legal requirements, and industry standards.
• Identify gaps and improvement opportunities in the internal controls landscape and lead control reviews, ensuring timely resolution of issues.
• Work closely with Risk teams to align on the mitigation of identified risks.
• Support responses to audit requests, regulatory inquiries, and due diligence from business partners.

• Partner with Engineering, Product, IT, and global teams to integrate compliance and security requirements into processes and systems.

• Define and monitor KRIs and KPIs, delivering forward-looking, data-driven insights to senior management and Committees.
• Drive continuous improvement and scale, simplifying processes and strengthening Nubank’s Security Maturity as the company grows globally.

Qualification Requirements

• Solid experience in information security, with strong knowledge of frameworks such as PCI-DSS, ISO 27000 family, NIST, and similar.
• Prior experience with security certification processes and/or internal controls, compliance, and audit support.
• Excellent executive communication skills, capable of translating complex topics into clear, actionable insights for senior leadership and committees.
• Experience operating in regulated and global environments, including interaction with auditors and regulators.
• Bachelor’s degree in Engineering, Technology, Security Information, Risk Management or related fields.
• Familiarity with using AI and automation (e.g., machine learning, generative AI, or LLM-based tooling) to enhance security compliance use cases.
• Knowledge of the regulatory landscape relevant to financial services, such as SOx, BACEN, CVM, CNBV, ANBIMA, SEC, and related regulations.
• Hands-on experience with cloud environments (e.g., AWS, GCP) and implementing security controls in these contexts.
• Advanced English (written and verbal) required.

Nice to have Requirements

• Relevant certifications such as CRISC, CISA, Security+, CISSP, or CISM are considered a strong plus.

International experience is highly desirable.

Our Benefits

• Chance of earning equity at Nubank
• Food/ Meal Card (Vale-Refeição and/or Vale Alimentação)
• Public Transportation Commuting Benefit (Vale-Transporte)
• NuCare – Psychological, Financial and Legal Assistance Program
• Life Insurance
• Medical Plan
• Dental Plan
• NuLanguage – Language Course Program
• Nucleo - Our learning platform of courses
• Extended Parental Leave
• Daycare Allowance
• Parental Consultancy
• Work-from-home Allowance
• Gym Partnerships
• 30 days of paid vacation
• Relocation Assistance Package, if applicable

Work Model for this Role

Hybrid 2-3 times/week: Our hybrid work model brings us to the office at least twice a week, on strategic days designed to maximize team connection and collaboration. For more details, visit https://building.nubank.com/nu-hybrid-work-model/

About us 

Nubank was founded in 2013 with the mission of fighting complexity to empower people in their daily lives by reinventing financial services. Today, we are one of the largest digital banking platforms in the world, serving millions of customers across Brazil, Mexico, and Colombia. For more information, visit our careers page: https://international.nubank.com.br/careers/ 

About the team 

The Governance, Risk and Compliance (GRC) team enables Nubank to remain compliant with legal, regulatory, and internal requirements, while continuously identifying, classifying, and monitoring risks and providing strategic insights and performance evaluation to leadership.

The GRC squad collaborates with multidisciplinary teams to align our technology security strategy with Nubank’s overall business objectives, ensuring that identified risks are mitigated and that risk-based decision-making is enabled within and beyond the IT & Security Business Unit.

About the role

You will be responsible for acting as a technical reference in security, certifications, and internal controls, serving as a bridge between engineering, risk, audit, and business stakeholders.
You will define strategies, support risk-based decision-making, and ensure that security and compliance requirements are effectively embedded into processes, systems, and products.

Key responsibilities

• Act as a senior technical and governance reference across security, certifications, risk, and internal controls, influencing strategy.
• Identify control gaps and improvement opportunities in technical procedures required for certification and recertification processes  (e.g., ISO 27001, PCI-DSS).
• Develop and maintain strong partnerships with business and technical leaders to orchestrate audits, assessments, and remediation plans in a risk-based and scalable way.
• Collaborate with technical teams to define action plans that ensure adherence to regulatory requirements and internal policies.

• Conduct assessments of internal controls, ensuring adherence to internal policies, legal requirements, and industry standards.
• Identify gaps and improvement opportunities in the internal controls landscape and lead control reviews, ensuring timely resolution of issues.
• Work closely with Risk teams to align on the mitigation of identified risks.
• Support responses to audit requests, regulatory inquiries, and due diligence from business partners.

• Partner with Engineering, Product, IT, and global teams to integrate compliance and security requirements into processes and systems.

• Define and monitor KRIs and KPIs, delivering forward-looking, data-driven insights to senior management and Committees.
• Drive continuous improvement and scale, simplifying processes and strengthening Nubank’s Security Maturity as the company grows globally.

Qualification Requirements

• Solid experience in information security, with strong knowledge of frameworks such as PCI-DSS, ISO 27000 family, NIST, and similar.
• Prior experience with security certification processes and/or internal controls, compliance, and audit support.
• Excellent executive communication skills, capable of translating complex topics into clear, actionable insights for senior leadership and committees.
• Experience operating in regulated and global environments, including interaction with auditors and regulators.
• Bachelor’s degree in Engineering, Technology, Security Information, Risk Management or related fields.
• Familiarity with using AI and automation (e.g., machine learning, generative AI, or LLM-based tooling) to enhance security compliance use cases.
• Knowledge of the regulatory landscape relevant to financial services, such as SOx, BACEN, CVM, CNBV, ANBIMA, SEC, and related regulations.
• Hands-on experience with cloud environments (e.g., AWS, GCP) and implementing security controls in these contexts.
• Advanced English (written and verbal) required.

Nice to have Requirements

• Relevant certifications such as CRISC, CISA, Security+, CISSP, or CISM are considered a strong plus.

International experience is highly desirable.

Our Benefits

• Chance of earning equity at Nubank
• Food/ Meal Card (Vale-Refeição and/or Vale Alimentação)
• Public Transportation Commuting Benefit (Vale-Transporte)
• NuCare – Psychological, Financial and Legal Assistance Program
• Life Insurance
• Medical Plan
• Dental Plan
• NuLanguage – Language Course Program
• Nucleo - Our learning platform of courses
• Extended Parental Leave
• Daycare Allowance
• Parental Consultancy
• Work-from-home Allowance
• Gym Partnerships
• 30 days of paid vacation
• Relocation Assistance Package, if applicable

Work Model for this Role

Hybrid 2-3 times/week: Our hybrid work model brings us to the office at least twice a week, on strategic days designed to maximize team connection and collaboration. For more details, visit https://building.nubank.com/nu-hybrid-work-model/