Senior Security Engineer (Cybersecurity)

TL;DR

Senior Security Engineer (Cybersecurity): Assessing and mitigating security gaps within the organization and designing action plans, with an accent on information security policies, risk management, and regulatory compliance. Focus on understanding business requirements, aligning with risk teams, and defining security guidelines for a global team.

Location: Hybrid (2-3 times/week) in Brazil, Sao Paulo. This role requires office attendance.

Company

Nu is one of the largest digital financial platforms in the world, with more than 122 million customers across Brazil, Mexico, and Colombia, redefining financial services in Latin America.

What you will do

• Assess security gaps and design action plans across various technologies and business contexts.
• Develop policies and procedures for information security and risk management, especially for third-parties.
• Support compliance with security and privacy regulatory requirements, providing technical guidance.
• Collaborate with cross-functional teams to translate business requirements into technical specifications.
• Work closely with Risk teams to align on identified risk mitigation.
• Define business security guidelines and best practices for employees.

Requirements

• Proven experience in designing and implementing security controls.
• Familiarity with various cyber and business security domains and concepts.
• Strong inclination towards data-driven decision-making.
• Experience with Third-Party Risk Management (TPRM).
• Ability to analyze business processes and identify information security risks.
• Experience with risk analysis techniques (identification, assessment, prioritization, qualitative/quantitative).

Nice to have

• Experience with large-scale distributed environments.
• Good understanding of cybersecurity principles and risk management frameworks (NIST, ISO 27001, PCI-DSS, SOC 2 Type II).
• Excellent communication and problem-solving skills.
• Previous consulting or advisory experience.

Culture & Benefits

• High-impact scope with opportunities to shape foundational advisory capabilities.
• Growth and learning opportunities across the stack and complex technical challenges.
• Collaborative environment valuing ownership, transparency, psychological safety, and continuous improvement.
• Equity at hirify.global, Food/Meal Card, Public Transportation Benefit.
• NuCare (Psychological, Financial, Legal Assistance), Life/Medical/Dental Plan.
• Language courses, learning platform, extended parental leave, daycare/parental allowance.
• Work-from-home allowance, gym partnerships, 30 days paid vacation, relocation assistance package (if applicable).