African Cyber Assurance Senior Partner – GRC & Regulatory

Regulatory Diplomacy & Regional Liaison: Act as the strategic lead for African financial authorities, serving as the primary point of contact for the Central Bank of Nigeria (CBN) while managing mandates across our broader African footprint. You will ensure dLocal remains the gold standard for regulated fintechs in the region.

Hands-on Regional & Global Compliance Support: Provide versatile support for international regulations (e.g., SOX, DORA) and global standards (PCI DSS, ISO, SOC) alongside local African mandates. While exhaustive experience in every framework is not required, a basic understanding and a "roll up your sleeves" attitude are necessary to assist the team in advancing these initiatives based on workload.

Pragmatic GRC (Real Security, Not Paper): Move beyond "just for compliance" to add genuine security value. You will audit and adjust our technology and processes to fit the African market, training local teams when necessary to ensure operational resilience.

Technical Translation & Execution: Interpret dense requirements from regulators and third parties, translating them into plain English and actionable tasks for internal teams. You will bridge the gap between technical security and business owners.

Anticipatory Market Intelligence: Stay ahead of the curve by regularly interacting with stakeholders across Africa to anticipate regulatory shifts before they happen, allowing the company to adapt without losing business velocity.

Shift Left & First-Line Accountability: Partner with leadership to embed secure frameworks early in the business lifecycle. You will ensure that accountability for cyber risks sits with the business owners in the first line of defense.

Global Scope, African Priority: While your immediate priority and primary focus is the African regulatory landscape, your scope is truly global. You are a core member of the global Cyber Assurance team. When the business demands it, you will pivot seamlessly to drive execution for major international frameworks - including PCI DSS, SOX, DORA, ISO 27001, and SOC2 - bringing the same strategic velocity to global mandates as you do to local ones.

Proven Track Record: At least 8 years of verifiable experience in Cybersecurity, GRC, or IT Audit.

Certified Expertise: You must hold at least one major industry certification: CISSP, CISM, CISA, or CRISC.

Regulatory Foundations: Basic knowledge of international frameworks (SOX, DORA) and standards (PCI DSS, ISO, SOC), alongside a deep understanding of regional African regulations.

Local Presence: You must reside within Lagos - Nigeria to fulfill the requirement of responding locally to our primary regulator (CBN).

Exceptional Communication: Fluent English (written and oral) is mandatory as the official language of the company.

Street-Smart Versatility: A fast learner who can navigate complex corporate landscapes and negotiate with both technical and commercial leads.

AI Fluency & Fast Execution: Comfortable using LLMs as your co-pilot to move at 10x speed, automating the administrative parts of governance.