African Cyber Assurance Senior Partner - GRC & Regulatory at dLocal

dLocal is the #1 payments leader focused on emerging markets and helps some of the best companies in the world expand in emerging countries. Global brands such as Amazon and Google rely on us to increase conversion by eliminating complexity and managing their payments expansion effortlessly. As both a payments processor and a merchant of record where we operate, we make it simple and risk-free for our client partners to make inroads into the world’s fastest-growing, emerging markets.

We are recruiting to fill the position below:

Job Title: African Cyber Assurance Senior Partner - GRC & Regulatory

Location: Lagos
Job type: Full time (Hybrid)
Category: Technology – Infosec & Compliance

About Us & The Role

• We do not do "check-box" compliance, and we don't do corporate fluff. Within the Security Department, under the guidance of the CISO and security leadership, our GRC and Assurance team operates with a street-smart, pragmatic approach.
• We are looking for a versatile, self-driven African Cyber Assurance Partner based in Nigeria to lead our governance, risk, and compliance efforts across the continent. This role is a tactical bridge between complex regulatory mandates and actual operational security.
• You will navigate the intricate landscape of African financial authorities and regulators—with a primary focus on the Central Bank of Nigeria (CBN) while maintaining oversight of other regional regulators—translating their requirements into simple, actionable technical and business processes.

What You'll Do

• Regulatory Diplomacy & Regional Liaison: Act as the strategic lead for African financial authorities, serving as the primary point of contact for the Central Bank of Nigeria (CBN) while managing mandates across our broader African footprint. You will ensure dLocal remains the gold standard for regulated fintechs in the region.
• Hands-on Regional & Global Compliance Support: Provide versatile support for international regulations (e.g., SOX, DORA) and global standards (PCI DSS, ISO, SOC) alongside local African mandates. While exhaustive experience in every framework is not required, a basic understanding and a "roll up your sleeves" attitude are necessary to assist the team in advancing these initiatives based on workload.
• Pragmatic GRC (Real Security, Not Paper): Move beyond "just for compliance" to add genuine security value. You will audit and adjust our technology and processes to fit the African market, training local teams when necessary to ensure operational resilience.
• Technical Translation & Execution: Interpret dense requirements from regulators and third parties, translating them into plain English and actionable tasks for internal teams. You will bridge the gap between technical security and business owners.
• Anticipatory Market Intelligence: Stay ahead of the curve by regularly interacting with stakeholders across Africa to anticipate regulatory shifts before they happen, allowing the company to adapt without losing business velocity.
• Shift Left & First-Line Accountability: Partner with leadership to embed secure frameworks early in the business lifecycle. You will ensure that accountability for cyber risks sits with the business owners in the first line of defense.
• Global Scope, African Priority: While your immediate priority and primary focus is the African regulatory landscape, your scope is truly global. You are a core member of the global Cyber Assurance team. When the business demands it, you will pivot seamlessly to drive execution for major international frameworks - including PCI DSS, SOX, DORA, ISO 27001, and SOC2 - bringing the same strategic velocity to global mandates as you do to local ones.

What You Bring

• Proven Track Record: At least 8 years of verifiable experience in Cybersecurity, GRC, or IT Audit.
• Certified Expertise: You must hold at least one major industry certification: CISSP, CISM, CISA, or CRISC.
• Regulatory Foundations: Basic knowledge of international frameworks (SOX, DORA) and standards (PCI DSS, ISO, SOC), alongside a deep understanding of regional African regulations.

  • Local Presence: You must reside within Lagos - Nigeria to fulfill the requirement of responding locally to our primary regulator (CBN).

• Exceptional Communication: Fluent English (written and oral) is mandatory as the official language of the company.
• Street-Smart Versatility: A fast learner who can navigate complex corporate landscapes and negotiate with both technical and commercial leads.
• AI Fluency & Fast Execution: Comfortable using LLMs as your co-pilot to move at 10x speed, automating the administrative parts of governance.

How You'll Work

• You will operate with a high degree of autonomy, taking the CISO's vision and using your street smarts to figure out the "how" and execute. This is a senior role for someone who wants to make a visible impact and redefine pragmatic security governance in Africa.

What Do We Offer?
Besides the tailored benefits we have for each country, dLocal will help you thrive and go that extra mile by offering you:

• Flexibility: we have flexible schedules and we are driven by performance.
• Fintech industry: work in a dynamic and ever-evolving environment, with plenty to build and boost your creativity.
• Referral bonus program: our internal talents are the best recruiters - refer someone ideal for a role and get rewarded.
• Social budget: you'll get a monthly budget to chill out with your team (in person or remotely) and deepen your connections!
• dLocal Houses: want to rent a house to spend one week anywhere in the world coworking with your team? We’ve got your back!

Application Closing Date
Not Specified.

How to Apply
Interested and qualified candidates should:
Click here to apply online