Cloud Security Expert

Cloud Security Expert  Location: Frankfurt A role that inspires you Join a forward-looking organisation as Cloud Security Expert within the Second Line of Defence. In this independent oversight function, you will assess, challenge, and strengthen cloud security frameworks, ensuring that cloud environments are resilient, compliant, and aligned with enterprise-wide risk governance standards. Key Responsibilities: Act as a Second Line of Defence function providing independent oversight of cloud security risks. Define and maintain cloud security policies, standards, and control frameworks. Conduct independent risk assessments of cloud architectures, configurations, and deployments (e.g. AWS, Azure, GCP). Review and challenge First Line cloud implementations and security controls. Assess risks related to identity and access management, data protection, encryption, and network security in cloud environments. Ensure alignment with regulatory and cybersecurity requirements. Establish monitoring, reporting, and escalation mechanisms for cloud-related risks. Support incident oversight and review root-cause analyses from a governance perspective. Provide expert guidance and training on secure cloud adoption practices. Your Profile: Degree in computer science, cyber security, or a related technical discipline. Several years of experience in cloud security, cyber risk, or security governance. Strong knowledge of major cloud platforms (AWS, Azure, or GCP) and cloud security principles. Experience with security frameworks and control standards (e.g. ISO 27001, NIST, CIS). Familiarity with regulatory requirements in regulated environments is advantageous. Analytical mindset with the ability to independently assess and challenge technical implementations. Strong communication and stakeholder management skills. Fluent English skills; German is an advantage. What’s on Offer? A high-impact Second Line role with organisation-wide visibility. Opportunity to shape cloud security governance and risk oversight. Collaboration with technical and risk teams in a modern cloud-driven environment. Long-term development within a strategically important security function.

AI Security Expert Location: Frankfurt A role that inspires you Join a forward-thinking organisation as AI Security Expert within the Second Line of Defence. In this independent oversight role, you will define and challenge the security standards for artificial intelligence solutions, ensuring robust risk governance and regulatory compliance while enabling responsible AI innovation across the organisation. Key Responsibilities: Act as a Second Line of Defence function providing independent oversight of AI security risks. Define and maintain security standards and control frameworks for AI and machine learning systems. Conduct independent risk assessments covering AI models, data pipelines, and algorithmic integrity. Review and challenge First Line implementations regarding AI-related security controls. Assess risks such as model manipulation, data poisoning, adversarial attacks, and misuse scenarios. Ensure alignment with regulatory requirements (e.g. AI Act, GDPR, cybersecurity frameworks). Establish monitoring and reporting mechanisms for AI-related security risks. Provide expert guidance and training on secure and compliant AI development practices. Your Profile: Degree in computer science, cyber security, AI, or a related technical discipline. Several years of experience in cyber security, risk management, or governance, with exposure to AI environments. Strong understanding of AI security risks and regulatory developments. Experience in control frameworks, risk methodologies, or oversight functions is an advantage. Analytical mindset with the ability to assess and challenge complex technical implementations. Strong stakeholder management and communication skills. Fluent English skills; German is an advantage. What’s on Offer? A high-impact Second Line role at the intersection of AI, security, and risk governance. Opportunity to shape AI security standards at organisational level. Collaboration with technical and risk experts in an innovation-driven environment. Long-term development in a rapidly evolving technology domain.

Director ICT / Information Security Location: Frankfurt A role that inspires you Take on a senior leadership role within a large, regulated financial services group as Director ICT / Information Security. You will shape the organisation’s ICT risk strategy, strengthen cyber resilience, and ensure robust governance and regulatory compliance across a complex, international environment. Key Responsibilities: Lead and develop specialist teams and team leads in a national and international setting. Define and implement ICT risk strategy, governance structures, and continuous monitoring frameworks. Oversee cyber and information security risk management, including incident response. Enhance processes, controls, and methodologies to strengthen ICT risk mitigation. Ensure compliance with regulatory requirements and support supervisory audits. Report material ICT risks to senior management and oversee mitigation measures. Monitor risk performance through KPIs and structured escalation processes. Coordinate cross-functional stakeholders and manage key internal and external interfaces. Provide conceptual guidance to the First Line of Defence on security controls and requirements. Manage personnel and budget resources effectively. Your Profile: Master’s degree in (Business) Informatics, Mathematics, Natural Sciences, or a related IT discipline; alternatively, a relevant vocational qualification with substantial professional and leadership experience. Extensive experience in ICT risk management within a regulated environment. Proven leadership capability in managing specialist teams and complex initiatives. Strong understanding of governance frameworks, regulatory requirements, and audit processes. Ability to combine strategic vision with operational delivery. Excellent stakeholder management and communication skills. What’s on Offer? A high-impact leadership role within a regulated financial services environment. Strategic influence on group-wide ICT risk and cyber security governance. Close collaboration with senior management and supervisory stakeholders. Long-term career perspective within a stable, international organisation.

Senior Manager Information Security FS Location: Munich A role that inspires you Join a regulated financial services environment as Senior Manager Information Security, where you will play a key role in strengthening information security governance and protecting critical systems and data. You will work closely with senior stakeholders to design, implement, and oversee security frameworks aligned with regulatory and business requirements. Key Responsibilities: Lead and further develop the information security framework within a financial services environment. Define and oversee security policies, standards, and controls in line with regulatory expectations. Conduct risk assessments and security reviews across systems, applications, and processes. Oversee incident management, response, and remediation activities. Advise senior management on information security risks and mitigation strategies. Coordinate internal and external audits and regulatory reviews. Collaborate closely with IT, risk, compliance, and business teams. Drive continuous improvement of security processes and controls. Your Profile: Degree in information security, IT, or a related discipline. Several years of experience in information security within a regulated environment. Strong knowledge of security frameworks and standards (e.g. ISO 27001). Experience working with regulatory requirements and supervisory authorities. Confident stakeholder management and communication skills. Structured, pragmatic, and solution-oriented working style. Fluent English skills; German is an advantage. What’s on Offer? A senior role with high visibility in a regulated financial services environment. Opportunity to shape and strengthen information security governance. Close collaboration with senior stakeholders and decision-makers. Long-term professional development in a stable, international organisation.