FreeHire

nubank

Third Party Risk Management Expert

Show

About Nu

Nu is the leading digital bank in Latin America, serving 135 million customers across Brazil, Mexico, and Colombia. The company has been leading an industry transformation by leveraging data and proprietary technology to develop innovative products and services.

Guided by its mission to fight complexity and empower people, Nu caters to customers’ complete financial journey, promoting financial access and advancement with responsible lending and transparency. The company is powered by an efficient and scalable business model that combines low cost to serve with growing returns.

Nu’s impact has been recognized in multiple awards, including Time 100 Most Influential Companies, Fast Company’s Most Innovative Companies, and Forbes World’s Best Banks.
Visit our institutional page: https://www.nu.com/2026-en

About Us

Nu is one of the largest digital financial platforms in the world, with more than 122 million customers across Brazil, Mexico, and Colombia. Guided by our mission to fight complexity and empower people, we are redefining financial services in Latin America and this is still just the beginning of the purple future we're building.
Listed on the New York Stock Exchange (NYSE: NU), we combine proprietary technology, data intelligence, and an efficient operating model to deliver financial products that are simple, accessible, and human.
Our impact has been recognized by global rankings such as Time 100 Companies, Fast Company’s Most Innovative Companies, and Forbes World’s Best Bank. Visit our institutional page https://international.nubank.com.br/careers/

About the role

At Nubank, we challenge the status quo to strengthen our ownership of risk management, aligning global and local processes with our strategic objectives. The Third Party Risk Management Expert role plays an essential part in this context, responsible for coordinating and monitoring the risks associated with vendors that support Nubank's operations globally.

The main objective is to ensure that third parties critical to the business are properly assessed, monitored, and managed, promoting operational continuity, information security, and regulatory compliance. This function will also connect business areas, Procurement, and risk assessment teams, ensuring that the third-party lifecycle happens in a secure, efficient, and standardized way. The role has global scope, covering the locations where Nubank operates and future expansion geographies, with direct interface with different regulatory regimes and active banking licenses.

  • Defining global guidelines for third-party risk management.

  • Architecting and evolving Nubank's global TPRM model, including qualification methodology, criticality criteria, and control framework by risk domain.

  • Evaluating and deciding on the adequacy of vendor controls, triggering enhanced due diligence processes based on the regulatory context of each jurisdiction.

  • Leading the expansion of the TPRM framework into new geographies, ensuring the model is adapted to local regulatory requirements from pre-launch.

  • Governing and guiding the development of an AI-powered vendor qualification platform, being responsible for process design and human validation of generated recommendations.

  • Determining and maintaining Nubank's TPRM RACI, ensuring clarity of roles and responsibilities across involved areas.

  • Defining the minimum requirements and baseline of TPRM controls to be followed across all geographies, ensuring global consistency and alignment.

  • Conducting continuous monitoring of critical third parties, tracking indicators, incidents, and action plans.

  • Consolidating information on third parties and their risks, providing a global and integrated view for Nubank's forums and governance.

  • Collaborating with risk domains and stakeholders to define and review controls, processes, and vendor assessment criteria.

  • Generating and monitoring Key Risk Indicators that represent third-party risk status globally.

  • Representing TPRM as a 2nd Line of Defense function before regulators and auditors (BCB, CNBV, SFC, FFIEC/OCC, FMA), acting as the technical point of contact for exams and questions on vendor methodology and controls.

  • Coordinating RCSA processes and executing Risk Assessment & Internal Control Testing (RA&ICT) activities within the TPRM scope.

What we are looking for

  • Is autonomous and interested in working in a dynamic environment with constant interaction across different areas and countries.

  • Has analytical thinking and curiosity to deeply understand how third parties operate and their business impact.

  • Has prior experience with third-party risk management and familiarity with risk frameworks.

  • Has strong communication skills and the ability to translate technical risk into clear messages for different audiences.

  • Is data-driven, with the ability to analyze metrics and propose evidence-based solutions.

  • Has solid ability to influence without formal authority, capable of challenging methodologies and practices across business areas, risk domains, and regulatory stakeholders in multiple geographies.

  • Has proven experience managing complex, multidisciplinary projects, with the ability to orchestrate simultaneous deliverables in highly ambiguous contexts with multiple regulators.

  • Is familiar with AI applied to risk management, including critical evaluation of model outputs, human-in-the-loop process design, and governance of automations in regulated contexts.

  • Has advanced English.

  • It is a plus if the candidate has familiarity with Business Continuity and Crisis Management frameworks.

Benefits

  • Chance of earning equity at Nubank

  • Food/ Meal Card (Vale-Refeição and/or Vale Alimentação)

  • Public Transportation Commuting Benefit (Vale-Transporte)

  • NuCare – Psychological, Financial and Legal Assistance Program

  • Life Insurance

  • Medical Plan

  • Dental Plan

  • NuLanguage – Language Course Program

  • Nucleo - Our learning platform of courses

  • Extended Parental Leave

  • Daycare Allowance

  • Parental Consultancy

  • Work-from-home Allowance

  • Gym Partnerships

  • 30 days of paid vacation

  • Relocation Assistance Package, if applicable

Work Model for this RoleHybrid 2-3 times/week: Our hybrid work model brings us to the office at least twice a week, on strategic days designed to maximize team connection and collaboration. For more details, visit https://building.nubank.com/nu-hybrid-work-model/

By submitting an application, I acknowledge that I have read and understand the Nubank Candidate Privacy Notice.

Nubank Candidate Privacy Notice (English / Portuguese / Spanish).