8 of 8 ISO 31000 Jobs in the UK

business. Assess current maturity and deliver a transformation roadmap that unifies fragmented processes into a single, clear model aligned to Trainline's risk appetite. Maintain key standards such as ISO 27001, ISO 22301, and PCI DSS, while ensuring they add real business value. Manage and develop the Risk and Compliance team, setting clear goals and cultivating an inclusive … the business. A proven record of leading and developing high performing teams, setting clear goals and cultivating accountability and continuous improvement. Deep understanding of enterprise and cyber risk frameworks (ISO 27005, ISO 31000, NIST CSF) and how to communicate risk appetite in business terms. Excellent communication skills, with the ability to present complex risk and compliance information More ❯

the programme, ensuring compliance, transparency, and informed decision-making. Key Responsibilities Lead on the design, implementation, and management of risk frameworks across the programme. Apply recognised standards such as ISO 31000 and Management of Risk (MoR) principles to build a comprehensive risk strategy. Facilitate the identification, assessment, and monitoring of risks at both project and enterprise levels. Develop … the primary point of contact for programme risk. Key Skills & Experience Proven experience in business risk management within complex programmes or enterprise environments. Strong knowledge and practical application of ISO 31000 risk management standards. Demonstrable experience creating and applying Management of Risk (MoR) frameworks. Track record in designing and embedding risk management processes in large-scale … transformation or change programmes. Ability to produce clear and concise risk reporting for senior stakeholders. Excellent stakeholder management, communication, and influencing skills. Risk management certification (e.g., MoR Practitioner, IRM, ISO31000 certification) desirable but not essential. More ❯

with security assessments and contract reviews. Skills & Experience - Essential Strong experience in Information Security across complex environments (e.g., outsourced, telecoms, energy). Solid grasp of risk management methodologies (ISO27005, ISO31000). Excellent communication skillsable to engage with technical and non-technical stakeholders. Ability to work independently and collaboratively in a fast-paced environment. Skills & Experience - Desirable Recognised certifications: CISSP, CISM More ❯

consulting, audit, or industry/operations) Experience in planning and operating security risk/issue management-related processes and services Experience in Risk Management aligned with certification requirements (ISO27001, ISO31000, or similar) Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, etc.) Experience in service build-up is a plus Security Governance/Risk Management certification (CISSP, CGEIT More ❯

start to finish. Bonus points if you bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or SABSA. Why QBE? At My Best? At QBE, we want our people to feel rewarded and inspired to perform More ❯

level Experience supporting cloud hosted solutions alongside a Site-Reliability-Engineering/Managed Services team Proven experience working to processes aligned to ISO9001 (quality management), ISO27001 (information security) and ISO31000 (risk management) How to apply To apply, submit a covering letter explaining why you would love to work for Alcidion and your CV to . Statement of posting You must More ❯

including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST More ❯

including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST More ❯