Consultant compliance & regulatory readiness (CSSF et DORA) H/F

Stellenbeschreibung:

Position Overview

As a Senior Consultant in Compliance & Regulatory Readiness, you will support leading financial institutions in Luxembourg in meeting the stringent requirements imposed by the CSSF and the EU DORA regulation. Your role focuses on assessing regulatory gaps, designing remediation plans, and ensuring operational and digital resilience across private banking environments.

Key Responsibilities

Regulatory Compliance & Gap Analysis
Conduct comprehensive gap assessments against major CSSF circulars (e.g., 12/552, 20/750, 20/806) and DORA requirements.
Translate regulatory requirements into actionable policies, processes, and control frameworks.
Map technical and IT controls to regulatory obligations (control‑to‑rule traceability).

Remediation & Readiness Programs

Develop and execute regulatory remediation roadmaps aligned with supervisory expectations.
Prepare clients for CSSF audits, regulatory reviews, and ongoing supervisory engagements.
Support the implementation of incident notification workflows compliant with CSSF and DORA (24‑hour reporting).

Risk, ICT & Resilience

Assist with ICT governance, access control, vulnerability management, third‑party risk, and BCP/DR requirements under CSSF 20/750.
Contribute to TLPT (Threat‑Led Penetration Testing) initiatives under DORA.
Define and embed KPIs/KRIs aligned with regulatory controls.

Project Leadership & Stakeholder Management

Lead regulatory workstreams with cross‑functional teams across IT, Risk, Ops, and Compliance.
Collaborate with multinational stakeholders, ensuring clear communication and proactive risk management.

Required Skills & Experience

Technical & Regulatory Expertise