Work for

Head of Cloud Security

Job type:Permanent
Town/City:Frankfurt
Region:Hessen
Sector:Cyber Security
Client Company Type:In-House
Job ref:7050
Post Date:October 30, 2025
Apply NowCreate Job Alert

Meet Our Recruiter

Josh Mooney

Managing Consultant - Cyber Security
+44 208 157 2515
+49 89 4750 2146
+44 7441 346 212
josh.mooney@mamgruppe.com
Contact on WhatsApp

About the Role

Head of Cloud Security
Location: Frankfurt – Hybrid

A role that inspires you

You will define and lead the cloud security strategy for a major international organisation, ensuring secure and compliant operations across AWS, Azure, and GCP. Reporting directly to the CISO, you will strengthen governance, embed security across digital operations, and guide a high-performing team in a complex, highly regulated environment.

This is an opportunity to shape the future of cloud security, influence strategic decisions, and protect critical business operations on a global scale.

What you’ll be doing

You will:
• Develop and execute a comprehensive global cloud security strategy aligned with business and regulatory objectives.
• Build, lead, and mentor a high-performing cloud security team covering architecture, engineering, and governance.
• Design and maintain secure cloud architectures and standardized security baselines.
• Oversee integration of security tooling (CSPM, CWPP, SIEM) and ensure continuous compliance with regulatory frameworks such as BaFin, DORA, and ISO 27001.
• Lead cloud threat detection, incident response, and post-incident reviews.
• Serve as the primary contact for cloud security matters across business units and with regulators.
• Promote best practices and security awareness among technical teams and senior stakeholders.

Your work will directly impact the organisation’s ability to operate securely in the cloud while meeting regulatory and business expectations.

What you bring

You are an experienced cloud security leader with a proven record of securing complex environments:
• Degree in Computer Science, Information Security, or a related field.
• 8+ years in cybersecurity, including 5+ years in cloud security leadership roles.
• Deep expertise in AWS, Azure, and GCP security.
• Strong knowledge of financial sector regulations (BaFin MaRisk/BAIT, DORA, PCI-DSS, ISO 27001).
• Hands-on experience with CSPM, CIEM, SIEM, DevSecOps, and Zero Trust architectures.
• Professional certifications such as CCSP, CISSP, CISM, or cloud security specialties preferred.
• Fluent in English and German, with excellent leadership and stakeholder management skills.

What’s on offer

• Competitive compensation package with performance-related bonuses.
• Hybrid working model with offices in Frankfurt’s financial district.
• Support for professional development and security certifications.
• Dynamic, collaborative, and innovation-driven work environment.
• Opportunity to shape and lead a critical security function within a global organisation.

About the opportunity

This position is being managed exclusively by MAM Gruppe, a specialist recruitment partner connecting world-class professionals with leading organisations across Germany.
All applications are handled with the strictest confidentiality.

More Jobs from this Recruiter

Frankfurt, Hessen

Cloud Security Expert

Cloud Security Expert  Location: Frankfurt A role that inspires you Join a forward-looking organisation as Cloud Security Expert within the Second Line of Defence. In this independent oversight function, you will assess, challenge, and strengthen cloud security frameworks, ensuring that cloud environments are resilient, compliant, and aligned with enterprise-wide risk governance standards. Key Responsibilities: Act as a Second Line of Defence function providing independent oversight of cloud security risks. Define and maintain cloud security policies, standards, and control frameworks. Conduct independent risk assessments of cloud architectures, configurations, and deployments (e.g. AWS, Azure, GCP). Review and challenge First Line cloud implementations and security controls. Assess risks related to identity and access management, data protection, encryption, and network security in cloud environments. Ensure alignment with regulatory and cybersecurity requirements. Establish monitoring, reporting, and escalation mechanisms for cloud-related risks. Support incident oversight and review root-cause analyses from a governance perspective. Provide expert guidance and training on secure cloud adoption practices. Your Profile: Degree in computer science, cyber security, or a related technical discipline. Several years of experience in cloud security, cyber risk, or security governance. Strong knowledge of major cloud platforms (AWS, Azure, or GCP) and cloud security principles. Experience with security frameworks and control standards (e.g. ISO 27001, NIST, CIS). Familiarity with regulatory requirements in regulated environments is advantageous. Analytical mindset with the ability to independently assess and challenge technical implementations. Strong communication and stakeholder management skills. Fluent English skills; German is an advantage. What’s on Offer? A high-impact Second Line role with organisation-wide visibility. Opportunity to shape cloud security governance and risk oversight. Collaboration with technical and risk teams in a modern cloud-driven environment. Long-term development within a strategically important security function.
Learn More
Frankfurt, Hessen

AI Security Expert

AI Security Expert Location: Frankfurt A role that inspires you Join a forward-thinking organisation as AI Security Expert within the Second Line of Defence. In this independent oversight role, you will define and challenge the security standards for artificial intelligence solutions, ensuring robust risk governance and regulatory compliance while enabling responsible AI innovation across the organisation. Key Responsibilities: Act as a Second Line of Defence function providing independent oversight of AI security risks. Define and maintain security standards and control frameworks for AI and machine learning systems. Conduct independent risk assessments covering AI models, data pipelines, and algorithmic integrity. Review and challenge First Line implementations regarding AI-related security controls. Assess risks such as model manipulation, data poisoning, adversarial attacks, and misuse scenarios. Ensure alignment with regulatory requirements (e.g. AI Act, GDPR, cybersecurity frameworks). Establish monitoring and reporting mechanisms for AI-related security risks. Provide expert guidance and training on secure and compliant AI development practices. Your Profile: Degree in computer science, cyber security, AI, or a related technical discipline. Several years of experience in cyber security, risk management, or governance, with exposure to AI environments. Strong understanding of AI security risks and regulatory developments. Experience in control frameworks, risk methodologies, or oversight functions is an advantage. Analytical mindset with the ability to assess and challenge complex technical implementations. Strong stakeholder management and communication skills. Fluent English skills; German is an advantage. What’s on Offer? A high-impact Second Line role at the intersection of AI, security, and risk governance. Opportunity to shape AI security standards at organisational level. Collaboration with technical and risk experts in an innovation-driven environment. Long-term development in a rapidly evolving technology domain.
Learn More
Frankfurt, Hessen

Director ICT / Information Security

Director ICT / Information Security Location: Frankfurt A role that inspires you Take on a senior leadership role within a large, regulated financial services group as Director ICT / Information Security. You will shape the organisation’s ICT risk strategy, strengthen cyber resilience, and ensure robust governance and regulatory compliance across a complex, international environment. Key Responsibilities: Lead and develop specialist teams and team leads in a national and international setting. Define and implement ICT risk strategy, governance structures, and continuous monitoring frameworks. Oversee cyber and information security risk management, including incident response. Enhance processes, controls, and methodologies to strengthen ICT risk mitigation. Ensure compliance with regulatory requirements and support supervisory audits. Report material ICT risks to senior management and oversee mitigation measures. Monitor risk performance through KPIs and structured escalation processes. Coordinate cross-functional stakeholders and manage key internal and external interfaces. Provide conceptual guidance to the First Line of Defence on security controls and requirements. Manage personnel and budget resources effectively. Your Profile: Master’s degree in (Business) Informatics, Mathematics, Natural Sciences, or a related IT discipline; alternatively, a relevant vocational qualification with substantial professional and leadership experience. Extensive experience in ICT risk management within a regulated environment. Proven leadership capability in managing specialist teams and complex initiatives. Strong understanding of governance frameworks, regulatory requirements, and audit processes. Ability to combine strategic vision with operational delivery. Excellent stakeholder management and communication skills. What’s on Offer? A high-impact leadership role within a regulated financial services environment. Strategic influence on group-wide ICT risk and cyber security governance. Close collaboration with senior management and supervisory stakeholders. Long-term career perspective within a stable, international organisation.
Learn More
Munich, Bayern

Senior Manager Information Security FS

Senior Manager Information Security FS Location: Munich A role that inspires you Join a regulated financial services environment as Senior Manager Information Security, where you will play a key role in strengthening information security governance and protecting critical systems and data. You will work closely with senior stakeholders to design, implement, and oversee security frameworks aligned with regulatory and business requirements. Key Responsibilities: Lead and further develop the information security framework within a financial services environment. Define and oversee security policies, standards, and controls in line with regulatory expectations. Conduct risk assessments and security reviews across systems, applications, and processes. Oversee incident management, response, and remediation activities. Advise senior management on information security risks and mitigation strategies. Coordinate internal and external audits and regulatory reviews. Collaborate closely with IT, risk, compliance, and business teams. Drive continuous improvement of security processes and controls. Your Profile: Degree in information security, IT, or a related discipline. Several years of experience in information security within a regulated environment. Strong knowledge of security frameworks and standards (e.g. ISO 27001). Experience working with regulatory requirements and supervisory authorities. Confident stakeholder management and communication skills. Structured, pragmatic, and solution-oriented working style. Fluent English skills; German is an advantage. What’s on Offer? A senior role with high visibility in a regulated financial services environment. Opportunity to shape and strengthen information security governance. Close collaboration with senior stakeholders and decision-makers. Long-term professional development in a stable, international organisation.
Learn More
View All

Latest Blogs

View all blogs