Goverance Risk & Compliance SR
Valletta (Remote)
dLocal
Simplify your cross-border payment operations in high-growth markets. Send and receive funds locally, reaching new customers. One easy integration, unlimited secure transactions.By joining us you will be a part of an amazing global team that makes it all happen, in a flexible, remote-first dynamic culture with travel, health and learning benefits, among others. Being a part of dLocal means working with 1000+ teammates from 30+ different nationalities and developing an international career that impacts millions of people’s daily lives. We are builders, we never run from a challenge, we are customer-centric, and if this sounds like you, we know you will thrive in our team.
About the Job
Are you passionate about information security and ready to take on the toughest challenges in fintech?At dLocal, our mission is to provide secure, reliable, and seamless payment solutions across emerging markets. It's a bold, ambitious goal that demands the best information security professionals—those who are not only experts in their field but also deeply passionate about safeguarding digital ecosystems.
We are looking for someone who lives and breathes security, who understands that compliance is more than just a checklist, and who is driven by the challenge of building resilient systems that can withstand the ever-evolving threat landscape. You’ll be part of a team that ensures trust in every transaction by adhering to the highest global standards and navigating the complexities of local regulations.
What will I be doing?
- Lead and manage compliance efforts, ensuring alignment with international standards while addressing local regulatory requirements and maintaining strong relationships with regulators
- Foster a security-first culture by integrating security and compliance principles into daily operations, decision-making processes, and company-wide initiatives
- Oversee comprehensive compliance programs across emerging markets, conducting audits, risk assessments, and addressing regulatory gaps
- Translate complex and evolving regulatory requirements into clear business strategies, operational practices, and scalable technical solutions.
- Act as a trusted partner to our merchants, ensuring their operations remain secure, compliant, and aligned with evolving regulatory requirements, providing guidance and support when needed
- Align compliance initiatives with broader risk management objectives, ensuring that security and regulatory requirements support sustainable business growth
- Lead the design and execution of robust incident response plans, ensuring quick and effective resolution of compliance and security incidents
- Serve as the main point of contact for local and international regulators, building strong relationships and ensuring ongoing compliance with new regulations
- Provide strategic guidance to executive leadership on emerging compliance risks, ensuring security and regulatory priorities align with business objective
- Maintain accurate and timely compliance reporting, supported by comprehensive documentation to facilitate audits, regulatory reviews, and internal governance
What skills do I need?
- 5+ years of experience in information security, IT compliance, or equivalent roles within fintech, payments, or financial services, managing complex compliance programs across multiple jurisdictions
- Bachelor’s degree in a technical field or equivalent professional experience.Proven expertise in security frameworks and regulatory standards, with hands-on experience implementing, reviewing, or auditing frameworks such as PCI DSS, ISO 27001, SOC 1-2, SOX, and NIST
- Mandatory experience with European regulatory frameworks, including DORA (Digital Operational Resilience Act), PSD2 (Payment Services Directive), and other relevant standards such as GDPR or eIDAS, ensuring compliance and resilience in a European context
- Strong regulatory knowledge with prior experience working closely with auditors, external regulators, and managing compliance initiatives from start to finish
- Demonstrated project management skills, capable of leading high-impact projects, balancing operational goals with robust security and compliance measures, and delivering results in fast-paced, dynamic environments
- Exceptional communication skills, both written and spoken, with the ability to translate complex compliance requirements into actionable business strategies and engage with stakeholders at all levels
- Leadership and collaboration abilities, with a track record of successfully managing cross-functional teams, working closely with product engineering groups, and fostering a security-first culture
- Analytical and strategic thinker, adept at navigating ambiguous situations, prioritizing tasks, multitasking, and meeting deadlines with minimal supervision
- Customer service orientation combined with a problem-solving mindset, focusing on precision, accuracy, and clarifying ambiguity to support secure business growth
- Professional certifications such as CISA, CISM, CISSP, CRISC, or other relevant information security and compliance credentials
- Experience in emerging markets, with a strong understanding of regulatory frameworks and compliance challenges in Europe, Latin America, Asia, and Africa
- Proficiency in additional languages, particularly Spanish and/or Portuguese, to support collaboration across diverse regions
- Hands-on experience with RegTech solutions and cloud security compliance, leveraging automation tools to streamline compliance processes in regulated environments
- Technical expertise in payment systems infrastructure, with knowledge of security requirements for cross-border transactions and global expansion initiatives
What Will Make You Stand Out:
Besides the tailored benefits we have for each country, dLocal will help you thrive and go that extra mile by offering you:- Remote work: work from anywhere or one of our offices around the globe!*- Flexibility: we have flexible schedules and we are driven by performance.- Fintech industry: work in a dynamic and ever-evolving environment, with plenty to build and boost your creativity.- Referral bonus program: our internal talents are the best recruiters - refer someone ideal for a role and get rewarded.- Learning & development: get access to a Premium Coursera subscription.- Language classes: we provide free English, Spanish, or Portuguese classes.- Social budget: you'll get a monthly budget to chill out with your team (in person or remotely) and deepen your connections!- dLocal Houses: want to rent a house to spend one week anywhere in the world coworking with your team? We’ve got your back!
*For people based in Montevideo (Uruguay) applying to non-IT roles, 55% monthly attendance to the office is required
What happens after you apply?Our Talent Acquisition team is invested in creating the best candidate experience possible, so don’t worry, you will definitely hear from us. We will review your CV and keep you posted by email at every step of the process!
Also, you can check out our webpage, Linkedin, Instagram, and Youtube for more about dLocal!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Automation CISA CISM CISSP Cloud Compliance CRISC FinTech GDPR Governance Incident response ISO 27001 NIST PCI DSS PSD2 Risk assessment Risk management SOC SOC 1 SOX
Perks/benefits: Career development Flex hours Health care Startup environment Travel
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.