Contract Cloud Security Operations Engineer - Quant Trading (Inside IR35, Hybrid): This is a unique opportunity for an experienced AWS-focused Cloud Security OPerations Engineer to join a leading Quant Trading firm on a contract/interim basis. The Cloud Security function, supports the secure day-to-day operation of the AWS cloud environments. This role is operationally focused, managing BAU cloud security activities, responding to business and infrastructure requests, monitoring alerts, and ensuring continuous compliance across the AWS estate. The role is effectively a DevSecOps role, the incoming Cloud Security Operations Engineer will be responsible for monitoring and maintaining the overall health of the cloud security posture across AWS environments, leveraging industry-standard CSPM tooling and related platforms to identify risk trends, control gaps, and configuration drift. You will design, implement, and continuously refine custom alerting rules and detection logic to enable effective threat detection and response across cloud workloads. Fulfil and review IAM access requests in accordance with least-privilege principles. Review and approve security-related change requests impacting AWS environments. Requirements: <ul><li>Practical experience operating and supporting AWS cloud environments.</li><li>Working knowledge of AWS IAM, roles, policies, and access control models.</li><li>Experience monitoring and responding to alerts from AWS security services.</li><li>Familiarity with cloud security posture management and vulnerability management practices.</li><li>Ideally you will have your AWS Certified Security – Specialty</li></ul>

AWS Cloud Security Operations Engineer

Contract Cloud Security Operations Engineer - Quant Trading (Inside IR35, Hybrid): This is a unique opportunity for an experienced AWS-focused Cloud Security OPerations Engineer to join a leading Quant Trading firm on a contract/interim basis. The Cloud Security function, supports the secure day-to-day operation of the AWS cloud environments. This role is operationally focused, managing BAU cloud security activities, responding to business and infrastructure requests, monitoring alerts, and ensuring continuous compliance across the AWS estate. The role is effectively a DevSecOps role, the incoming Cloud Security Operations Engineer will be responsible for monitoring and maintaining the overall health of the cloud security posture across AWS environments, leveraging industry-standard CSPM tooling and related platforms to identify risk trends, control gaps, and configuration drift. You will design, implement, and continuously refine custom alerting rules and detection logic to enable effective threat detection and response across cloud workloads. Fulfil and review IAM access requests in accordance with least-privilege principles. Review and approve security-related change requests impacting AWS environments. Requirements: <ul><li>Practical experience operating and supporting AWS cloud environments.</li><li>Working knowledge of AWS IAM, roles, policies, and access control models.</li><li>Experience monitoring and responding to alerts from AWS security services.</li><li>Familiarity with cloud security posture management and vulnerability management practices.</li><li>Ideally you will have your AWS Certified Security – Specialty</li></ul>

Contract Cloud Security Operations Engineer (Quant Trading, Inside IR35)

DORA ICT Expert (m/f/d) – Interface & Process Management DORA | NIS2 | ISO 27001 | ISO 22301 | IT Process Management | ITIL | IT Compliance | ICT Risk | Governance Our client, a major European enterprise operating within a highly regulated ICT environment, is seeking a DORA ICT Expert with a strong focus on Interface & Process Management. This role sits within a strategic, long-term DORA regulatory programme and plays a central role in ensuring sustainable compliance, governance alignment, and cross-functional coordination across international structures. Contract guaranteed until end of year Strong likelihood of long-term extension within a multi-year regulatory roadmap Key Responsibilities – Interface & Process Governance DORA Process Sustainability & KPI Management<ul><li>Development, implementation and monitoring of process key performance indicators (KPIs) to ensure sustainable DORA compliance</li><li>Tracking and reporting of regulatory process metrics</li><li>Continuous improvement of compliance processes</li></ul>Cross-Functional Interface Management<ul><li>Coordination with critical business units including: <ul><li>Service Management</li><li>Security Management</li><li>Procurement</li><li>Legal</li><li>Enterprise Architecture</li></ul></li><li>Close operational cooperation with internal coordination units and customer-facing teams (due diligence / assurance processes)</li><li>Structured stakeholder management within complex enterprise environments</li></ul>Governance & Documentation Compliance<ul><li>Support in creation and maintenance of action plans, governance standards, and regulatory documentation frameworks</li><li>Ensuring compliance with governance manuals and documentation requirements</li><li>Alignment of processes with DORA, NIS2 and ISO standards</li></ul>ICT Risk & Information Register Coordination<ul><li>Support in identifying and coordinating responsible stakeholders for: <ul><li>Information registers</li><li>ICT Risk Management</li><li>Contract & Subcontractor Management</li><li>Incident Management & Reporting</li></ul></li></ul>International Coordination<ul><li>Coordination of international compliance activities and regulatory measures</li><li>Alignment across cross-border organisational structures</li></ul>Training & Communication<ul><li>Support in preparation and implementation of DORA training initiatives</li><li>Development of communication measures to strengthen regulatory awareness</li></ul>Required Qualifications & Experience<ul><li>Degree in IT, Business Informatics, Information Security, or comparable</li><li>Several years of professional experience in: <ul><li>IT Process Management</li><li>IT Governance</li><li>IT Compliance</li><li>Regulatory Process Environments</li></ul></li><li>Strong knowledge of regulatory frameworks including: <ul><li>DORA (Digital Operational Resilience Act)</li><li>NIS2 Directive</li><li>ISO/IEC 27001</li><li>ISO 22301 (Business Continuity Management)</li></ul></li><li>Knowledge of: <ul><li>ITIL</li><li>IT Service Continuity Management (IT-SCM)</li><li>ESARIS</li><li>Compliance & governance processes</li></ul></li><li>Proven experience in interface management across multiple departments</li><li>Experience in international corporate structures</li><li>Strong stakeholder communication skills</li><li>Structured, process-oriented working style</li><li>Strong team collaboration capability</li></ul>Language Requirements<ul><li>Very good German and English language skills</li><li>Ability to operate in international regulatory environments</li></ul>Why This Role? This is a high-impact position within a large-scale DORA transformation programme, offering: <ul><li>Enterprise-level regulatory exposure</li><li>Cross-functional governance responsibility</li><li>International coordination experience</li><li>Long-term programme stability</li><li>Strong extension probability beyond the initial contract term</li></ul>

Freelance DORA ICT Expert (m/f/d) – Interface & Process Management DORA | NIS2 | ISO 27001 | ISO 22301 | IT Process Management | ITIL | IT Compliance | ICT Risk | Governance

DORA ICT Expert (m/f/d) – Case Lead & Evidence Management IT Compliance | DORA | NIS2 | ISO 27001 | Regulatory Governance | Audit & Evidence Management About the Opportunity Our client is one of Europe’s leading enterprise technology environments, operating within a highly regulated, international ICT landscape. The organisation plays a critical role in digital infrastructure and operational resilience, with strong long-term investment in regulatory compliance, governance, and security excellence. This is a strategic role within a major DORA implementation and supervisory readiness programme, offering real ownership, visibility, and long-term impact. The contract is guaranteed until the end of this year, with a strong likelihood of extension as part of a multi-year regulatory roadmap expected to run beyond 2027. If you are an experienced IT compliance or regulatory professional who thrives in structured, high-accountability environments, this is an opportunity to position yourself at the core of European ICT regulatory transformation. Key Responsibilities Operational Case & Inquiry Management<ul><li>End-to-end operational control of regulatory inquiries and compliance checks</li><li>Collection, validation, and compilation of audit-proof evidence</li><li>Deadline management, tracking, and structured reporting</li><li>Administration and governance of the central DORA Data Room</li></ul>Request & Workstream Control<ul><li>Recording incoming regulatory requests</li><li>Professional assignment and stakeholder coordination</li><li>Clarification of scope and regulatory timelines</li><li>Creation and maintenance of structured work plans</li></ul>Regulatory Evidence Management (RTS / ITS)<ul><li>Collection of required regulatory data fields including: <ul><li>Customer data</li><li>ICT service data</li><li>Location data</li><li>Subcontracting and third-party information</li><li>Incident details</li></ul></li><li>Quality assurance and structured version control</li><li>Ensuring completeness and audit-readiness of documentation</li></ul>Contract & Subcontracting Transparency<ul><li>Maintenance of subcontractor and third-party register views</li><li>Change tracking and documentation governance</li><li>Preparation of regulatory flow-down verifications</li></ul>Incident Management & Reporting Support<ul><li>Data collection for regulatory incident reports</li><li>Lessons Learned tracking</li><li>Support of DORA-aligned reporting processes</li></ul>Audit & Testing Support<ul><li>Preparation of structured documentation packages</li><li>Interview preparation and coordination</li><li>Findings backlog management</li><li>Retest tracking and closure documentation</li></ul>Supervisory Authority Interaction<ul><li>Preparation of oversight and supervisory reports</li><li>Scheduling and coordination of inspections</li><li>Action tracking through to formal closure</li></ul>Required Qualifications & Experience<ul><li>Completed degree in IT, Business Informatics, Information Security, or comparable</li><li>Several years of professional experience in: <ul><li>IT Compliance</li><li>IT Audit</li><li>Information Security Management</li><li>Regulatory Governance</li></ul></li><li>Strong knowledge of regulatory frameworks, particularly: <ul><li>DORA (Digital Operational Resilience Act)</li><li>NIS2 Directive</li><li>ISO/IEC 27001</li></ul></li><li>Experience working with GRC, CMDB, and ITSM tools</li><li>Strong reporting and analytical capabilities including: <ul><li>Power BI</li><li>Microsoft Excel</li><li>AI-supported data analysis</li></ul></li><li>Proven experience in evidence management</li><li>Basic understanding of ICT contracts and subcontracting chains</li><li>Familiarity with incident processes and audit routines</li><li>Experience in complex enterprise environments with strong stakeholder/interface management</li></ul>Skills & Competencies<ul><li>Analytical, structured, and process-oriented mindset</li><li>Strong communication skills</li><li>Assertiveness and stakeholder confidence</li><li>High documentation discipline</li><li>Ability to operate in regulated, deadline-driven environments</li></ul>Language Requirements<ul><li>Very good German and English language skills (English required for communication with European Supervisory Authorities)</li></ul>Why Apply?<ul><li>Long-term regulatory programme environment</li><li>High visibility within a critical DORA transformation initiative</li><li>Enterprise-scale ICT environment</li><li>Contract guaranteed until year-end with strong extension probability beyond 2027</li><li>Opportunity to work at the forefront of European digital operational resilience</li></ul>

Freelance - DORA ICT Expert (m/f/d) – Case Lead & Evidence Management IT Compliance | DORA | NIS2 | ISO 27001 | Regulatory Governance | Audit & Evidence Management - Mostly Remote

​As Xcede' Talent Director and Head of our UK Permanent Team, Ben is an expert at placing senior technology managers across leading IT organisations globally. Utilising his 15 years of technology, infrastructure, and financial services staffing experience, Ben is responsible for driving the delivery of the team across a global client base that operates at the cutting edge of the IT industry. Ben is also still a hands-on consultant, sourcing the top talent to fill roles at the more senior end of the market, placing C-Level, Programme Director and Programme Manager candidates through to Project Management and ITIL Service Delivery.

AWS Cloud Security Operations Engineer

APPLY FOR THIS JOB

Ben Davis

Latest Jobs