Cyber Security Governance SME - ECB Remediation/Regulatory Compliance

Cyber Security Governance SME - ECB Remediation/Regulatory Compliance (Contract)

London (Hybrid - 2-3 days per week onsite) | 6 - 12-month contract | Inside IR35

Bring your expertise to life at Projective Group

Projective Group is looking for an experienced Cyber Security Governance SME to join one of our banking clients on a critical ECB remediation programme. The focus of this role is to strengthen the bank's technology and information security governance framework and align policies, standards, and control measures with ECB expectations and wider regulatory requirements, including DORA, PRA, and FCA.

You will operate as a subject matter expert across cyber governance, risk management, and regulatory compliance, advising programme leads and senior stakeholders on the uplift of governance frameworks, control design, and oversight processes. The ideal candidate will combine deep financial services experience with a strong understanding of regulatory technology expectations.

Key responsibilities:

• Review, develop and embed governance frameworks, policies, and control standards aligned to ECB and other regulatory requirements.

• Translate complex regulatory guidance into practical governance and control measures for technology and information security.

• Provide assurance and oversight across governance, risk management, and compliance workstreams.

• Support the design and implementation of metrics, reporting, and escalation processes to evidence compliance and control effectiveness.

• Partner with risk, compliance, and technology teams to strengthen overall governance maturity.

• Act as a trusted advisor to programme leadership and control owners, ensuring consistent alignment to ECB and DORA frameworks.

• Support ECB remediation programme milestones by contributing to audit readiness, documentation, and evidence packs.

Required experience:

• Proven experience in cyber security, information security governance, or technology risk roles within banking or financial services.

• Strong knowledge of ECB supervisory frameworks and related regulations such as DORA, PRA/FCA SS1/21, and EBA ICT and Security Guidelines.

• Experience of policy and control framework development, governance remediation, and regulatory assurance.

• Excellent communication and stakeholder engagement skills, able to influence at senior and executive levels.

• Relevant certifications such as CISM, CGEIT, CISSP, or ISO 27001 Lead Implementer/Auditor are desirable.

What's in it for you

• 6 to 12-month contract with potential extension.

• Hybrid working model - London office 2-3 days per week.

• Opportunity to shape ECB and DORA-aligned governance frameworks for a global banking client.

About Projective Group

At Projective Group, we partner with leading financial organisations to address their most challenging problems and deliver innovative solutions. Specialising in Risk & Compliance, Data, Payments, and Transformation, we help financial services businesses thrive in a rapidly evolving regulatory landscape.

If you are ready to apply your governance expertise to a truly meaningful project, we would love to hear from you.

Cyber Security Governance | Information Security Governance | ECB Remediation | DORA Compliance | Technology Risk | Regulatory Compliance | Governance Risk and Compliance | Banking | Financial Services | Policy Development | Risk Management | ISO 27001 | FCA | PRA | EBA | Cyber Risk | Governance Consultant | Contract | Inside IR35 | Hybrid London