Devoteam Cyber Trust| DORA Consultant

Devoteam Cyber Trust is the cybersecurity arm of the Devoteam Group, operating with over 800 experts across EMEA. We aim to establish cybersecurity as an enabler of business success by offering an end‑to‑end approach to cyber resilience, applied security, and managed security services for large and medium‑sized companies across diverse sectors.

Job Description

We are seeking DORA Consultants or experienced professionals in DORA subjects (e. g. , ICT governance, risk management, incident response, third‑party risk management, and resilience testing). The DORA Consultant will be part of the team responsible for analysing, designing, implementing, and governing processes and technologies related to DORA compliance.

• Support the implementation of DORA (Digital Operational Resilience Act) to ensure compliance by mid‑January 2025.
• Perform system and process assessment, providing analysis and guidance.
• Support the design and delivery of potential solutions, new automations of assessments/templates, and workflows, and integrate them into the existing technology landscape.
• Oversee key work streams and approved process improvements.
• Work closely with all business functions to facilitate compliance with DORA requirements.
• Contribute to policies and procedures to ensure an effective internal governance and control framework.
• Support TPRM and outsourcing remediation programmes.
• Support cybersecurity governance and document management required for DORA.
• Support the establishment/alignment of the resilience testing framework.
• Support ICT risk management and the alignment of ICT incident response and reporting with DORA.

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Proven experience as a consultant or in a similar role.
• Previous working experience in financial services or consultancy for financial services.
• Experience with industry compliance frameworks such as ISO 27001, NIST, COBIT.
• Experience in regulatory compliance projects and ability to analyse regulatory documents.
• Experience in risk management practices.
• Knowledge of incident response practices.
• Knowledge of EU DORA or operation resilience projects and the EBA regulatory landscape.
• Excellent understanding of process and internal controls design.
• Good stakeholder management skills.
• Experience with automatic workflow tools and outsourcing/TPRM contexts is beneficial.
• Strong analytical, problem‑solving, ethical, communication, and teamwork skills.
• Fluency in written and spoken English is required.

Nice to have:

• Relevant certifications such as CISSP, CISM, CISA, or similar.
• Active participation in cybersecurity and DORA‑related communities, forums, or professional networks.

Additional Information

The Devoteam Group works for equal opportunities, promoting employees based on merit and actively fighting all forms of discrimination. All vacancies are open to people with disabilities.

What we offer:

• Professional development and talent monitoring.
• Commitment to employee development.
• Collaboration within a constantly growing and evolving company.
• Strong organisational culture: collaboration, sharing, flexibility, integrity, and low ego.

Would you like to join our team? Then send your CV.