[Remote] Head of Technology Risk & CISO at Addi

Colombia

Apply Now
Addi Logo
Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Fintech, Banking, Financial ServicesIndustries

Requirements

  • Experience establishing and leading a 2nd Line of Defense Technology Risk & Cybersecurity function
  • Ability to act as CISO for a regulated entity
  • Expertise in driving robust governance frameworks with independent risk oversight
  • Knowledge of compliance requirements (SFC/SIC)
  • Skills in aligning technology and security practices with defined risk appetite
  • Proficiency in developing and maintaining ISO 27001-aligned security governance frameworks
  • Capability to define quantitative and qualitative technology- and security-risk appetite statements
  • Experience translating risk appetite into measurable metrics and thresholds (e.g., control expectation levels, residual risk limits, incident tolerance, recovery time objectives)
  • Background in benchmarking and reporting risk posture against thresholds
  • Expertise in maintaining technology-risk taxonomy and standardized risk-assessment methodology integrated with enterprise risk management

Responsibilities

  • Establish and lead Addi's 2nd Line of Defense Technology Risk & Cybersecurity function
  • Develop and maintain a comprehensive Technology & Security Risk Framework approved by the Board, aligned with risk appetite and 3LoD model
  • Strengthen existing ISO 27001-aligned security governance framework with continuous control testing and regulatory readiness
  • Define and maintain clear technology- and security-risk appetite statements reflecting strategic objectives and regulatory expectations
  • Translate risk appetite into measurable risk metrics and thresholds
  • Benchmark and report actual risk posture against defined thresholds and targets
  • Identify, assess, and challenge technology risks using a clear taxonomy and standardized methodology
  • Independently challenge first-line risk identification, assessment, and mitigation plans
  • Lead quarterly independent oversight cycles covering critical processes, systems, and third-party vendors, delivering "challenge" reports to CRO and governance bodies
  • Conduct high-impact deep dives, control reviews, structured self-assessments, and workshops with technology and security teams
  • Develop and maintain a consolidated KRI/KPI dashboard for technology and security risk, integrated into enterprise-level reporting
  • Monitor, report, and escalate technology risk posture

Skills

Cybersecurity
Technology Risk
CISO
Risk Management
Governance
Regulatory Compliance
Information Security

Addi

Buy now, pay later service in Latin America

Website

About Addi

Addi provides a buy now, pay later service that allows customers to make purchases and pay in installments without interest, additional costs, or paperwork. The company's technology enables seamless and transparent digital commerce in Latin America.

Bogotá, ColombiaHeadquarters
2018Year Founded
$250.4MTotal Funding
DEBTCompany Stage
Fintech, Financial ServicesIndustries
501-1,000Employees

Benefits

Remote work: Work from anywhere in the world. And if you want to share some time, you can visit our offices in Bogotá or São Paulo.
Health insurance: Your health comes first, that's why we give 100% coverage for you and 50% for the close relatives you want.
Learn and grow: We love that everyone learns new things, that's why you can participate in our English and Portuguese classes
Flexible schedule: What interests us? Your achievements and goal completion, not the time you spend at your desk.
Own Addi: If it's real. You have the possibility to own a part of Addi by buying shares.

Risks

Increased competition from BNPL providers like Kueski in Latin America.
Regulatory scrutiny in Colombia and Brazil may impact Addi's operations.
Economic instability in Latin America could affect consumer spending and repayments.

Differentiation

Addi offers interest-free installment payments at point of purchase in partner stores.
Addi integrates a marketplace into its app for seamless shopping and financing.
Addi utilizes AI-driven credit scoring for faster, accurate credit decisions.

Upsides

Addi secured a $100M credit line to expand BNPL services in Colombia.
Addi's marketplace launch enhances its integrated financial ecosystem.
Growing consumer preference for digital wallets aligns with Addi's digital solutions.

Related Jobs

Washington
Remote iconRemote

Chief Information Security Officer (CISO), Workday Government

Workday
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
United States
Remote iconRemote

Director, Information Security (Remote, US)

Openly
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
Connecticut
Remote iconRemote

Manager, Third Party Security

CVS Health
Salary not specified
Remote
Remote iconRemote

Cybersecurity Consultant / vCISO

Strata Information Group
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
Remote
Remote iconRemote

Senior Information Security Specialist-SECRET CLEARANCE REQUIRED

Latitude AI
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Head of Security

OpenSea
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years), Senior (5 to 8 years)
Remote
Remote iconRemote

Director of Security

KoBold Metals
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
United States
Remote iconRemote

Security Program Manager

OpenAI
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)

Land your dream remote job 3x faster with AI

Try Jobo Free