Quanloop is building and running a security‑sensitive investment platform. We are hiring a Head of Compliance in Limassol to lead the compliance function and to build a clear, workable compliance programme in a firm that is pending authorisation as an investment firm. This role requires the CySEC Advanced Certificate and the CySEC AML Certificate (evidence required).

This is an office‑first role based in Limassol and is hired locally.

You will lead Compliance, AML governance (via the MLRO), and DORA governance (via the DORA Program Manager), working closely with ICT Risk & Resilience and the wider business. You will be accountable for standards that hold up under scrutiny and for making them usable in day‑to‑day delivery.

Role snapshot

• Working model: Office‑first (on‑site).
• Hiring basis: Local hiring for the Limassol office location.
• Language: English‑first working language.
• Reporting line: Line reporting into executive leadership, with functional reporting to the Risk Committee/Board as required.

What you’ll be responsible for

• Own and lead the compliance programme end‑to‑end, including policies, monitoring, training, governance routines and reporting.
• Lead the MLRO function and ensure AML governance is clear, consistent and operationally workable (execution sits with Operations; governance sits with you).
• Own DORA governance via the DORA Program Manager, ensuring the programme is coherent, evidence-led and aligned with technology execution.
• Lead ICT risk and resilience governance via the ICT Risk & Resilience Lead (DORA, BC/DR), ensuring coordination between compliance expectations and technology execution.
• Ensure regulatory and internal obligations are translated into standards teams can follow in practice, not only documents.
• Drive a disciplined approach to approvals and records: clear decisions, clear owners, and evidence that is maintained as part of normal work.
• Partner closely with the CTO and Head of Infrastructure on technology and security-sensitive controls, and with Operations on client workflows.
• Build and manage the compliance team, including hiring priorities, role clarity and performance expectations.
• Escalate material risks appropriately and ensure governance bodies receive clear, timely information.

What success looks like in the first 3–6 months

• The compliance programme is structured and workable: clear ownership, clear routines, and fewer ad‑hoc decisions.
• DORA governance and ICT resilience work run predictably, with evidence collection and follow‑ups that do not rely on heroics.
• AML governance expectations are clear and practical for Operations to execute.
• Stakeholders know how to engage Compliance early and what “good” looks like, reducing late rework and surprises.

What we’re looking for

• CySEC Advanced Certificate (evidence required).
• CySEC AML Certificate (evidence required).
• Proven experience leading a compliance function in financial services or other high‑scrutiny environments.
• Strong governance judgement: able to be firm on essentials while keeping standards practical for delivery teams.
• Experience building and running a compliance programme (policies, monitoring, training, reporting, approvals, evidence).
• Strong understanding of AML governance and how to structure MLRO oversight in a way that works operationally.
• Solid working knowledge of operational resilience expectations (including DORA), and ability to lead cross-functional governance without creating bureaucracy.
• Clear written and spoken communication in English, with strong documentation discipline.
• Office-first mindset and ability to lead on site in Limassol.

How to apply

Apply with your CV (LinkedIn optional). A short note is welcome, but not required.