Lead day‑to‑day operations for our Cyprus regulated entity. You will turn strategy into safe, scalable execution across client operations, technology, security and vendor management—building robust processes, clear accountability and audit‑ready evidence. This role suits a hands‑on operator with strong regulatory awareness and an engineering‑friendly mindset.

Job Responsibilities

Own end‑to‑end operations: client onboarding/servicing, IT/SRE, security administration, data and product operations; set KPIs/OKRs and deliver to plan
Chair the operating rhythm: incident reviews, change/advisory, capacity and roadmap forums; ensure decisions, actions and owners are documented
Implement operational resilience: continuity plans, disaster‑recovery tests, critical‑function mapping and runbook quality; align with DORA‑style expectations
Oversee outsourcing and vendor risk: due diligence, contracts/SLAs, ongoing monitoring and exit plans; maintain accurate registers
Ensure “security first” and “privacy by design” are embedded in processes, tooling and releases; coordinate with Security Engineering and Legal & Risk
Maintain policy and procedure suites with the first line; ensure staff training, attestations and control evidence are current and retrievable
Run a lean, measurable budget; prioritise automation and simplification; track unit costs and productivity
Partner with Product & Engineering to translate requirements into testable controls and MI dashboards; drive high‑quality releases
Provide clear, timely management information to senior leadership and the Board on operations, risk and remediation status
Build teams: hire, coach and set standards; foster an on‑site culture of ownership, transparency and continuous improvement

Three lines of defence (operating approach)

First line (owned by COO): day‑to‑day operations and primary controls, with evidence
Second line (partnering): Compliance, AML and Risk oversight; independent monitoring and advice
Third line (assured): independent internal audit (in‑house or outsourced) and follow‑up to closure

Key frameworks and topics

Operational resilience concepts (impact tolerances, testing, incident/classification)
Outsourcing and third‑party oversight
Conduct and communications standards (fair, clear, not misleading)
Change management and release governance; SDLC/CI‑CD awareness
Record‑keeping, MI/reporting and board‑pack preparation
People, performance and budget management

Qualifications

CySEC Advanced Certification in good standing (current; CPT maintained and verifiable)
8+ years’ leadership in operations within a regulated investment‑services environment or adjacent financial services
Proven track record building scalable processes, running incidents/changes and delivering measurable improvements
Strong understanding of AML/KYC, compliance monitoring, security and data protection at the operational level
Comfortable partnering with architects and senior engineers; able to specify requirements, controls and evidence precisely
Fit‑and‑proper profile for a senior role at a Cyprus regulated entity: integrity, competence, sound judgement and good repute
Excellent written and spoken English; crisp documentation and board‑level communication
Ability to work on‑site in Limassol; hands‑on leadership in an on‑site operating model

We encourage applications from all qualified candidates and provide reasonable accommodations on request (email [email protected]).

Other skills

Structured, data‑driven decision‑maker with a calm, delivery‑focused style
Pragmatic automation and simplification mindset; avoids unnecessary complexity
Strong stakeholder management across product, engineering, client operations and second/third line functions

Chief Operating Officer (COO)