Join our companies in their quest to drive powerful, positive, change that endures.

Business Risk & Control Officer

Stori Card

Stori Card

Mexico City, Mexico
Posted on Monday, May 6, 2024

About Stori

Stori is a fast-growing, venture-backed financial technology company, on a mission to democratize credit access for 400 million underbanked LatAm consumers. Stori currently operates in Mexico and has a global team with offices in Arlington Virginia, Mexico City, and Asia. We have quickly made our mark as one of the top digital banks in Mexico with more than two million applicants for our credit card product since launching.

Stori is one of the top-funded startups in the region with US$250 million raised to date. We are backed by top global venture capital funds, such as GGV Capital, GIC, Lightspeed Venture Partners, General Catalyst, Goodwater Capital, Mexico’s Tresalia Capital, Vision Plus Capital, BAI Capital and Source Code Capital; who have successfully invested in startups such as Affirm, Airbnb, Alibaba, Stripe, and TikTok.

Stori has a standout founder team among fintechs, leveraging 100+ years of accumulated experience in consumer finance, banking and technology across Mastercard, Intel, Capital One, Morgan Stanley, GE Capital, and HSBC in the U.S., Mexico and Asia. The team has launched and managed many multi-million-customer credit card products globally, providing a wide breadth of experience and knowledge to our team.

We welcome diversity of background, experience and thinking. Storians are passionate about our mission and take pride in the products we build. Our culture thrives off of a flat structure and an inclusive environment where all of our employees can be their authentic selves, with boundless opportunities for professional growth.

You will

  • Support/coordinate the business in managing and fulfilling its 1st Line Risk Management activities
  • Proactively identify risk areas and tackle relevant remediation activities
  • Create appropriate governance to facilitate the implementation, execution and monitoring of controls
  • Define and rate the risk environment
  • Challenge the design and implementation of controls, implement and own relevant new controls
  • Create appropriate reports for the leadership team to understand the full spectrum of risks
  • Add a risk perspective to strategy and product development
  • Drive and complete documentation activities to minimize single point sensitivities
  • Conduct process mapping
  • Coordinate audit and inspections actions and review/challenge both audit and the business
  • Being a liaison between Risk and Control 2nd line of defense roles and the business with the benefit that core business employees are not distracted from their business roles.
  • Responsible for escalating the operational losses within the timing defined by the Operational Risk guidelines.
  • Responsible of supporting the 2nd Line of defense on defining the significant risks and controls owned by the business during the annual exercise (or every time that is needed) to complete the Risk and Control Assessment (RCA)

Main responsibilities:

  • Manage control implementation projects
  • Provide information and indicators for IT and cybersecurity governance and risk assessments
  • Assess internal and third party IT and cybersecurity regulatory compliance
  • Provide information and evidence of compliance to auditors, regulators and governance (2nd line of defense) areas

What we are looking for:

  • Bachelor’s Degree
  • 4+ years of experience in a regulatory, compliance, risk or audit position related to IT and cybersecurity
  • Good knowledge of financial regulations (IT and cybersecurity)
  • Experience with risk assessments, information security assessments
  • Good knowledge of information security for financial services
  • Good knowledge of financial services and privacy regulations in Mexico
  • Experience with payment card industry (PCI) standard and certification process
  • Experience in managing multidisciplinary projects for implementing IT and cybersecurity implementations
  • Experience with interacting with auditors and financial regulators

Conversational English

What we offer

  • Make a positive impact on the lives of our customers via financial inclusion
  • Professional development opportunities
  • International exposure & work experience
  • Company swag
  • Legally required benefits