Join the Base10 family

Open opportunities with founders believing purpose is key
to profits and companies solving problems for the 99%

Internal Controls Analyst SOx



São Paulo, SP, Brazil
Posted on Tuesday, September 12, 2023

SOx Internal Controls Analyst | Risk Management

About the area
The SOx-Business team is responsible to carry out the development of strategies, methodologies, and processes to enable compliance to all Nu Holdings and its companies with SOx Act, designing and overseeing control implementations, periodically testing its effectiveness, supporting Nubankers control-owners on the control-self assessment campaign, and recommending proper control redesigns or remediations in order to improve control environment. We work alongside several areas from the first line of defense to deliver a control environment that is appropriate to Nubank Group. In our interactions with those teams we conduct assessment interviews, provide guidance on the implementation of internal controls framework, follow up on the implementation of external audit recommendations and other activities pertaining to the second line of defense. In sum, the SOx team plays a relevant role in supporting Nubank's Management on issuing the annual opinion on the Internal Controls over Financial Reporting.

About the role

Be part of the SOx Team to contribute for improvements in the Internal Controls environment at Nubank. The goal is to ensure compliance with the guidelines in accordance with the adopted international frameworks and assisting/guiding the other areas (such as Controllership, Credit Card, Lending, Tax, FP&A and other business area) in order to assure the correct and efficient execution of the internal controls according with the Nubank Internal Control's Methodology.


As a SOx Analyst you will:

  • Manage the company's internal control environment by reviewing and monitoring the processes and controls that support the Financial Statements, including strong interactions with Products, Finance and Controllership Team;
  • Map the processes/controls, through the execution of a walkthrough, in order to verify if the design and operation of the controls is effective and efficient;
  • Support all the Business and Support areas of the Company in the identification and review of risks with financial impact and define controls and flows to mitigate them;
  • Ensure the accomplishment of the proposed deadlines through the creation of service level agreements (SLA) and partnerships with the areas involved in the process;
  • Ensure preventive identification and correct application of new rules and regulations that impact the internal control environment, through updates and training;
  • Follow up the results of internal and external audits, as well as validate reports resulting from these processes, aiming to meet the standards and adapting the group's companies to good practices of internal controls (ensuring the definition and implementation of action plans to remediate the deficiencies of controls identified by the auditors);
  • Promote synergy between the areas involved in the processes, internal and external audit, through meetings, training, workshops in order to ensure adherence to good corporate governance practices.


  • Knowledge with mapping and understanding the process chain, including mapping the processes in an end-to-end way (where the outputs are the following deliverables: narratives, flows and Risk Control Matrix);
  • Experience identifying risks inherent to the processes and construction of mitigation controls also looking at the financial statement;
  • Experience analyzing whether control mitigates business risks and follows the company's methodology;
  • Be familiar with accounting terms, Financial Statements and IFRS accounting standards;
  • Experience working in Big 4/ auditing firms;
  • Experience working (or attending) financial institutions, fintechs and/or IPs ("instituição de pagamentos");
  • Knowledge of programming language to extract and manipulate data (SQL or others)
  • Advanced English skills;