Work for

Head of Cloud Security

Job type:Permanent
Town/City:Frankfurt
Region:Hessen
Sector:Cyber Security
Client Company Type:In-House
Job ref:7050
Post Date:October 30, 2025
Apply NowCreate Job Alert

Meet Our Recruiter

Josh Mooney

Managing Consultant - Cyber Security
+44 208 157 2515
+49 89 4750 2146
+44 7441 346 212
josh.mooney@mamgruppe.com
Contact on WhatsApp

About the Role

Head of Cloud Security
Location: Frankfurt – Hybrid

A role that inspires you

You will define and lead the cloud security strategy for a major international organisation, ensuring secure and compliant operations across AWS, Azure, and GCP. Reporting directly to the CISO, you will strengthen governance, embed security across digital operations, and guide a high-performing team in a complex, highly regulated environment.

This is an opportunity to shape the future of cloud security, influence strategic decisions, and protect critical business operations on a global scale.

What you’ll be doing

You will:
• Develop and execute a comprehensive global cloud security strategy aligned with business and regulatory objectives.
• Build, lead, and mentor a high-performing cloud security team covering architecture, engineering, and governance.
• Design and maintain secure cloud architectures and standardized security baselines.
• Oversee integration of security tooling (CSPM, CWPP, SIEM) and ensure continuous compliance with regulatory frameworks such as BaFin, DORA, and ISO 27001.
• Lead cloud threat detection, incident response, and post-incident reviews.
• Serve as the primary contact for cloud security matters across business units and with regulators.
• Promote best practices and security awareness among technical teams and senior stakeholders.

Your work will directly impact the organisation’s ability to operate securely in the cloud while meeting regulatory and business expectations.

What you bring

You are an experienced cloud security leader with a proven record of securing complex environments:
• Degree in Computer Science, Information Security, or a related field.
• 8+ years in cybersecurity, including 5+ years in cloud security leadership roles.
• Deep expertise in AWS, Azure, and GCP security.
• Strong knowledge of financial sector regulations (BaFin MaRisk/BAIT, DORA, PCI-DSS, ISO 27001).
• Hands-on experience with CSPM, CIEM, SIEM, DevSecOps, and Zero Trust architectures.
• Professional certifications such as CCSP, CISSP, CISM, or cloud security specialties preferred.
• Fluent in English and German, with excellent leadership and stakeholder management skills.

What’s on offer

• Competitive compensation package with performance-related bonuses.
• Hybrid working model with offices in Frankfurt’s financial district.
• Support for professional development and security certifications.
• Dynamic, collaborative, and innovation-driven work environment.
• Opportunity to shape and lead a critical security function within a global organisation.

About the opportunity

This position is being managed exclusively by MAM Gruppe, a specialist recruitment partner connecting world-class professionals with leading organisations across Germany.
All applications are handled with the strictest confidentiality.

More Jobs from this Recruiter

Frankfurt, Hessen

Director ICT / Information Security

Director ICT / Information Security Location: Frankfurt A role that inspires you Take on a senior leadership role within a large, regulated financial services group as Director ICT / Information Security. You will shape the organisation’s ICT risk strategy, strengthen cyber resilience, and ensure robust governance and regulatory compliance across a complex, international environment. Key Responsibilities: Lead and develop specialist teams and team leads in a national and international setting. Define and implement ICT risk strategy, governance structures, and continuous monitoring frameworks. Oversee cyber and information security risk management, including incident response. Enhance processes, controls, and methodologies to strengthen ICT risk mitigation. Ensure compliance with regulatory requirements and support supervisory audits. Report material ICT risks to senior management and oversee mitigation measures. Monitor risk performance through KPIs and structured escalation processes. Coordinate cross-functional stakeholders and manage key internal and external interfaces. Provide conceptual guidance to the First Line of Defence on security controls and requirements. Manage personnel and budget resources effectively. Your Profile: Master’s degree in (Business) Informatics, Mathematics, Natural Sciences, or a related IT discipline; alternatively, a relevant vocational qualification with substantial professional and leadership experience. Extensive experience in ICT risk management within a regulated environment. Proven leadership capability in managing specialist teams and complex initiatives. Strong understanding of governance frameworks, regulatory requirements, and audit processes. Ability to combine strategic vision with operational delivery. Excellent stakeholder management and communication skills. What’s on Offer? A high-impact leadership role within a regulated financial services environment. Strategic influence on group-wide ICT risk and cyber security governance. Close collaboration with senior management and supervisory stakeholders. Long-term career perspective within a stable, international organisation.
Learn More
Munich, Bayern

Senior Manager Information Security FS

Senior Manager Information Security FS Location: Munich A role that inspires you Join a regulated financial services environment as Senior Manager Information Security, where you will play a key role in strengthening information security governance and protecting critical systems and data. You will work closely with senior stakeholders to design, implement, and oversee security frameworks aligned with regulatory and business requirements. Key Responsibilities: Lead and further develop the information security framework within a financial services environment. Define and oversee security policies, standards, and controls in line with regulatory expectations. Conduct risk assessments and security reviews across systems, applications, and processes. Oversee incident management, response, and remediation activities. Advise senior management on information security risks and mitigation strategies. Coordinate internal and external audits and regulatory reviews. Collaborate closely with IT, risk, compliance, and business teams. Drive continuous improvement of security processes and controls. Your Profile: Degree in information security, IT, or a related discipline. Several years of experience in information security within a regulated environment. Strong knowledge of security frameworks and standards (e.g. ISO 27001). Experience working with regulatory requirements and supervisory authorities. Confident stakeholder management and communication skills. Structured, pragmatic, and solution-oriented working style. Fluent English skills; German is an advantage. What’s on Offer? A senior role with high visibility in a regulated financial services environment. Opportunity to shape and strengthen information security governance. Close collaboration with senior stakeholders and decision-makers. Long-term professional development in a stable, international organisation.
Learn More
Offenbach am Main, Hessen

Business Continuity Management Subject Matter Expert

Business Continuity Management Subject Matter Expert Location: Frankfurt A role that inspires you Join an international organisation as a Business Continuity Management Subject Matter Expert, where you will play a key role in strengthening organisational resilience and operational stability. You will act as the central expert for business continuity topics, working closely with senior stakeholders to ensure preparedness for disruptions across critical business functions. Key Responsibilities: Act as the subject matter expert for business continuity management across the organisation. Develop, maintain, and continuously improve the business continuity management framework. Conduct business impact analyses and risk assessments across critical functions. Design, implement, and test business continuity and crisis management plans. Advise senior management on resilience, continuity risks, and mitigation measures. Coordinate business continuity exercises, simulations, and training programmes. Ensure alignment with regulatory requirements and recognised standards (e.g. ISO 22301). Collaborate with risk management, IT, security, and operational teams. Support incident response and post-incident reviews to drive continuous improvement. Your Profile: Degree in business administration, risk management, IT, or a related discipline. Several years of experience in business continuity management, operational resilience, or risk management. Strong knowledge of BCM frameworks, methodologies, and standards. Experience conducting business impact analyses and continuity testing. Confident communication skills and experience advising senior stakeholders. Structured, pragmatic, and solution-oriented working style. Fluent English skills; German skills are an advantage. What’s on Offer? A key expert role with high visibility across the organisation. Opportunity to shape and mature business continuity and resilience capabilities. Close collaboration with senior stakeholders and international teams. Long-term professional development in a stable, regulated environment.
Learn More
Offenbach am Main, Hessen

Managing Director ICT Third Party Risk

Managing Director ICT Third Party Risk Location: Frankfurt A role that inspires you Join a complex, internationally active organisation as Managing Director ICT Third Party Risk, taking strategic responsibility for the management and oversight of ICT and technology-related third-party risks. In this senior role, you will work closely with executive stakeholders to strengthen operational resilience, regulatory compliance, and risk governance across critical external service providers. Key Responsibilities: Hold overall responsibility for ICT third-party risk management at group level. Define and implement the ICT third-party risk framework, policies, and governance standards. Oversee risk assessments, due diligence, and ongoing monitoring of critical technology vendors. Ensure compliance with regulatory requirements and supervisory expectations (e.g. DORA, outsourcing guidelines). Advise executive management on third-party risk exposure and mitigation strategies. Coordinate cross-functional teams across risk, IT, security, procurement, and legal. Oversee incident management, escalation, and remediation related to ICT service providers. Drive continuous improvement of third-party risk processes and controls. Your Profile: Degree in IT, risk management, business administration, or a related discipline. Extensive experience in ICT third-party risk, outsourcing, operational resilience, or technology risk. Strong understanding of regulatory frameworks and supervisory expectations. Proven experience advising senior management or board-level stakeholders. Strategic mindset combined with a pragmatic, hands-on approach. Excellent communication and stakeholder management skills. Fluent English skills; German is an advantage. What’s on Offer? A senior leadership role with high visibility and strategic impact. Opportunity to shape group-wide ICT third-party risk governance. Close collaboration with executive management and international stakeholders. Long-term career perspective within a stable, regulated environment.
Learn More
View All

Latest Blogs

View all blogs