Director, IT-Compliance & Security - Financial Services
Job Title: Director, IT-Compliance & Security - Financial Services
Location: Germany (Flexible/Hybrid options available)
Role Overview:
The 'Director, IT-Compliance & Security' will oversee consultancy engagements related to IT governance, risk management, security, and compliance in the financial services sector. You will be responsible for leading complex projects, advising clients on critical regulatory and operational challenges, and driving compliance with key regulations. You will also provide strategic direction to a growing team of specialists and collaborate closely with senior management to shape service offerings, business development, and client relationships.
Key Responsibilities:
- Leadership & Advisory: Lead strategic projects for key financial services clients, advising on IT governance, compliance, and security in the context of regulatory requirements.
- Regulatory Expertise: Serve as a trusted advisor to clients on evolving regulatory frameworks, guiding them on compliance with local and European regulations impacting financial institutions' IT security, risk management, and operational resilience.
- Project Delivery: Oversee the delivery of high-impact consultancy projects, ensuring alignment with client objectives, regulatory requirements, and best practices in IT security and compliance.
- Stakeholder Management: Build and maintain strong relationships with senior stakeholders within financial institutions, regulatory bodies, and other key industry players, contributing to business development and long-term client success.
- Business Development: Identify opportunities for expanding service offerings, leading proposals, and supporting the acquisition of new clients or engagements.
- Thought Leadership: Contribute to the firm's thought leadership in IT compliance and security within the financial services sector, through white papers, industry seminars, and speaking engagements.
- Risk Management: Advise clients on IT risk management frameworks, including business continuity, disaster recovery, and cybersecurity measures to protect sensitive financial data and ensure compliance with regulatory mandates.
Required Qualifications & Experience:
- Experience: 10+ years in IT compliance, risk management, or IT security, with a strong focus on financial services and regulatory compliance.
- Regulatory Knowledge: Expertise in DORA, BAIT, VAIT, MaRisk, and NIS-2 regulations and their practical implementation within the financial services industry.
- Consulting Experience: Experience working in a senior role at a top-tier consultancy or within a comparable advisory/consulting environment, with a track record of leading projects in IT governance and security.
- Project Management: Proven ability to manage large, complex projects with multiple stakeholders, ensuring timely delivery within budget and to the highest standards of quality.
- Leadership Skills: Experience leading and developing teams of consultants, including coaching, mentoring, and fostering a collaborative working environment.
- Client-Facing Skills: Strong interpersonal and communication skills, with the ability to present complex regulatory and technical information to senior clients and stakeholders in a clear and impactful manner.
- Language Skills: Fluent in German and English (both written and spoken) - knowledge of additional languages is a plus.
Desirable Skills & Competencies:
- Advanced Certifications: Relevant certifications in IT security, risk management, or compliance (e.g., CISSP, CISM, CISA, ISO 27001, etc.) are highly desirable.
- Industry Networks: Established relationships within the financial services sector, regulatory bodies, or industry forums (e.g., BaFin, ECB, EBA) would be advantageous.
- Technical Knowledge: In-depth understanding of IT systems, cybersecurity frameworks, and risk management methodologies within financial institutions.
- Strategic Vision: Ability to think strategically about regulatory challenges, client needs, and emerging trends in IT compliance and security.