.About the Role:We are a leading fintech company in Mexico, at the forefront of revolutionizing financial services through technology and innovation in Latin America. We are seeking a dynamic and experienced IT Risk Specialist to support the execution of the IT Risk programs and activities within the Non Financial Risk squad in Nu Mexico. This role combines strategic oversight of IT risk management, ensuring our organization is well-positioned to navigate and fight the complexities of the environment.Key Responsibilities:Perform, oversee and provide advisory on the identification, assessment, and mitigation of IT risks, incorporating innovative risk management practices and technology solutions.Evaluate existing IT systems, applications (e.G., microservices, webapps, mobile apps, etc.), IT third-party vendors such as SAAS, professional IT services, BPOs, APIs, and telecommunications infrastructure to support the implementation of Risk and Control Self Assessment Program (RCSA).Conduct independent control tests to verify the effectiveness of the IT control environment of the company, identify and document IT control gaps, and recommend risk mitigants.Establish and connect action plans for risk mitigation with the risk governance methodology of the firm.Execute technology risk assessments on new products & features according to the internal standard methodologies, policies and general practices.Generate and submit regulatory reports on IT risk for senior management, regulatory bodies and relevant committees.Provide oversight and subject matter expertise in IT and cybersecurity risk during the implementation of new IT systems, telecommunication infrastructure, and third-party services, as well as on relevant changes in existing technology and infrastructures supporting business products in Mexico.Monitor Engineering, Data and Cybersecurity incidents, perform independent analysis of root causes and risks, propose action plans to improve the control environment, analyze incident information to generate reports and metrics, and connect the action plans with the risk governance methodology of the firm.Support the monitoring of emerging IT & cyber risks, new threats, and infrastructure and application vulnerabilities.Enhance and maintain robust frameworks and policies for IT risk management and IT third-party risk management, aligned with global standards and meeting local regulatory requirements.Serve as a key advisor to risk leadership and internal stakeholders on IT risk matters, ensuring transparent communication and effective stakeholder management.Stay ahead of evolving regulatory guidelines, technological advancements, and industry best practices in risk management, applying insights to strengthen our risk posture.Requirements:Minimum of 5 years of experience in cybersecurity or IT Risk Management.Bachelors' degree in Engineering, Computer Science, Information Technology, a Risk Management related field, or equivalent experience