1 to 25 of 179 Risk Assessment Jobs

Opportunity Overview sitemap_outline CORPORATE TITLE Associate language OFFICE LOCATION(S) London assignment JOB FUNCTION Liquidity Risk account_balance DIVISION Risk Division RISK Our Risk division develops comprehensive processes to monitor, assess, and manage the risk of expected and unexpected events that may have an adverse impact on the firm. Risk professionals execute critical … day-to-day risk management activities, lead projects and contribute to the ongoing advancement of a robust risk management program. FINANCE RISK (FR) Finance Risk is the independent risk management function responsible for overseeing the firm's accrual rates and liquidity risk. We work closely with Global Banking and Markets, Asset and Wealth Management and … Platform Solutions, as well as the broader Risk organization to provide independent risk assessment and oversight of the firm's risk taking. Key functions include: Risk Oversight: Monitor, govern, and challenge Corporate Treasury execution activities, including accrual rates risk management, liability management, cash & collateral management, funds transfer pricing, balance sheet usage, liquidity and funding More ❯

maintained throughout the project lifecycle working alongside both internal and external suppliers. • Qualification and quantification of business benefits relating to requirements for change and improved business processes, including impact assessment of change requests to scope and requirements. • Ensure the quality & timeliness of the analysis, requirements, specifications & acceptance criteria produced with the security engineering function to guide the strategy around … risks they need to address and the correct selection and implementation of controls. • work directly with multiple IT infrastructure and application development projects and teams to apply standard technical risk assessment methods to identify and prioritize risks for remediation • Review architecture and design documents to help ensure the correct implementation of security technology controls • contribute to the development … of improved risk assessment approaches • contribute to the systemization of the delivery of security advisory services Experience: Knowledge of risk management concepts including risk assessment and risk treatment techniques and methodologies, including: • Risk Assessment methods and frameworks (IRAM2, OCTAVE, NIST, ISO 27005 etc) • Information Security Management System frameworks and standards and their More ❯

Position: Servicenow IRM Senior Solution Architect Location: Chicago, IL (Day 1 Onsite) Duration: Long Term Job description: Lead the design, architecture, and implementation of complex ServiceNow Integrated Risk Management (IRM) and Governance, Risk, and Compliance (GRC) solutions. Provide subject matter expertise on risk-related capabilities, including risk identification, assessment, mitigation, and monitoring. Translate business objectives … architectural standards and best practices. Experience Level 5+ years of hands-on experience with the ServiceNow IRM including extensive work focused GRC processes. 10+ years of professional experience in risk management, GRC, or a related field, demonstrating a deep understanding of risk-related processes. Proven track record of success in architecting and delivering significant ServiceNow IRM implementations for … large enterprises. Expertise in core IRM capabilities such as Issue Management, Incident Management, Loss Events, Controls Testing, Risk Identification, Risk and Control Self-Assessments (RCSA), and Emerging Risk programs. Qualifications: Deep functional and technical understanding of the ServiceNow IRM suite, including Risk capabilities such as Issue/Incident Management, Loss Events, etc. In-depth knowledge of More ❯

help shape the future of finance, Paynetics is where your work will make a difference on a global scale. Paynetics UK is seeking an experienced and pragmatic Third Party Risk Manager to design, implement, and oversee the firm’s third party and outsourcing risk management framework. This role is pivotal in ensuring compliance with FCA outsourcing and operational … management in financial services, combined with the ability to deliver practical oversight and advice in a fast-paced environment. What you'll do: 1. UK Outsourcing and Third Party Risk Framework • Lead the design, development, and maintenance of Paynetics UK’s Third Party Risk Management Framework, ensuring compliance with FCA rules (SYSC 8, operational resilience, DORA, and PRA … SS2/21 where applicable). • Define risk appetite, governance structures, and control standards for outsourcing and vendor management. • Ensure proportionate oversight and due diligence aligned with the materiality of services and regulatory requirements. • Maintain an up-to-date Outsourcing and Third Party Register, ensuring that risk assessments and contract records remain current and accurate. 2. Group-Level More ❯

help shape the future of finance, Paynetics is where your work will make a difference on a global scale. Paynetics UK is seeking an experienced and pragmatic Third Party Risk Manager to design, implement, and oversee the firm’s third party and outsourcing risk management framework. This role is pivotal in ensuring compliance with FCA outsourcing and operational … management in financial services, combined with the ability to deliver practical oversight and advice in a fast-paced environment. What you'll do: 1. UK Outsourcing and Third Party Risk Framework • Lead the design, development, and maintenance of Paynetics UK’s Third Party Risk Management Framework, ensuring compliance with FCA rules (SYSC 8, operational resilience, DORA, and PRA … SS2/21 where applicable). • Define risk appetite, governance structures, and control standards for outsourcing and vendor management. • Ensure proportionate oversight and due diligence aligned with the materiality of services and regulatory requirements. • Maintain an up-to-date Outsourcing and Third Party Register, ensuring that risk assessments and contract records remain current and accurate. 2. Group-Level More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

interact with people at all levels effectively. Team Player: Flexible and adaptable approach, able to collaborate with colleagues. Health & Safety: Sound understanding of Health & Safety regulations , environmental impacts, and risk assessments. Reporting: Capable of providing detailed and summarised reports on operational activities. Qualifications: Hold a recognised mechanical services qualification . Character & Attributes: Resilient Under Pressure: Able to work effectively … control circuits . Lone Working: Familiarity with lone working requirements. Compliance: Ability to adhere to all required regulations . Desirable Experience: Building Management Systems (BMS): Experience working with BMS. Risk Assessment: Risk Assessment and Method Statement (RAMS) training. Multi-Discipline Work: Willingness and ability to work outside core discipline when required. Personal Specification: Education & Experience: Knowledge More ❯

digital estate, encompassing enterprise IT, operational technology (OT), and research platforms. This role sits within the Information & Cyber Security Group and provides subject matter expertise in security architecture, cyber risk governance, and assurance frameworks. This is a cross-functional role with both advisory and hands-on responsibilities, focusing on security assurance, risk management and supporting architecture reviews, vulnerability … management, risk assessments, cyber defence posture, driving technical assurance, and embedding risk-aligned security controls across IT and OT systems and secure-by-design practices. You will work across hybrid environments including cloud, infrastructure, applications, and OT systems. You will be responsible for designing and advising on security architecture patterns, reviewing and maintaining risk registers, leading assurance … Cyber Essentials (CE and CE+) while supporting the secure operation of core services. The role requires strong stakeholder engagement, technical depth, and a sound understanding of UK-specific cyber risk frameworks. You will help shape and maintain a secure posture across UKAEA. A degree in Cybersecurity, Information Technology, or a STEM subject (or equivalent experience). Essential o Security More ❯

companies On-site facilities (depending on location) e. g. canteen and cafeteria, fitness studio, on-site kindergarten, company medical service and other health-related services Your main tasks Performing risk or business impact analysis (on embedded systems, industrial systems (OT), IT and Cloud systems) for medium to big consulting projects including financial quantification of cyber risk and impact … qualification. The overall required knowledge and experience may have been acquired in other ways. Fundamental knowledge and experience in the above listed tasks Deep understanding of major security and risk management frameworks (ISO 27001, ISO 27005, ISO 31000, NIST CSF, EBIOS RM, FAIR) Understanding of security technologies, controls, and best practices Ability to develop and maintain security policies, procedures … and standards Proven experience leading risk assessment projects and security initiatives, strong experience with risk assessment methodologies and qualitative risk analysis, knowledge of quantitative risk analysis and the associated calculation methods is a plus Knowledge of regulatory requirements across industries (Export Control, GDPR, NIS2, Defense, EASA Regulations) and experience with GRC platforms and risk More ❯

quantify, and govern AI agents operating with autonomy in production environments. If you've been following the trajectory from static models to agentic systems—and the corresponding explosion in risk surface area—you know why this matters now. About governr governr is the AI risk platform for regulated enterprises. We provide complete AI visibility, real-time risk eval and quantification, and audit-ready compliance docs for enterprises deploying agentic AI. We've built the industry's most comprehensive AI risk assessment framework: We're currently in active discussions with tier-1 financial institutions and have secured design partners with leading firms navigating the shift from analytical AI to agentic systems. The market timing is … critical: enterprises are deploying agents at scale, regulators are demanding governance frameworks, and existing Third-Party Risk Management (TPRM) platforms have near-zero AI-risk depth. We have an estimated 18-24 month competitive window before large incumbents build comparable capabilities to stay relevant. The Role As an Agentic Developer at governr, you'll build the core systems More ❯

quantify, and govern AI agents operating with autonomy in production environments. If you've been following the trajectory from static models to agentic systems—and the corresponding explosion in risk surface area—you know why this matters now. About governr governr is the AI risk platform for regulated enterprises. We provide complete AI visibility, real-time risk eval and quantification, and audit-ready compliance docs for enterprises deploying agentic AI. We've built the industry's most comprehensive AI risk assessment framework: We're currently in active discussions with tier-1 financial institutions and have secured design partners with leading firms navigating the shift from analytical AI to agentic systems. The market timing is … critical: enterprises are deploying agents at scale, regulators are demanding governance frameworks, and existing Third-Party Risk Management (TPRM) platforms have near-zero AI-risk depth. We have an estimated 18-24 month competitive window before large incumbents build comparable capabilities to stay relevant. The Role As an Agentic Developer at governr, you'll build the core systems More ❯

Regional Risk and Quality Assurance Manager (f/m/d) Full or part time Empowering You - to feel our passion for technology As NTT DATA Business Solutions, we are more than just a company. We are a team of passionate people who drive innovation - from advisory and implementation to managed services and beyond. With SAP at our core … and initiatives to improve our consulting business aiming at increasing consulting quality, streamlining approaches across countries and developing consultants in their respective fields. Within GFC, the Global Quality and Risk Unit (GQR) is in charge of defining, implementing and enforcing Risk Management processes within all NTT DATA Business Solutions companies. The Risk and Quality Assurance team effectively … monitors risks throughout the various project phases in an operative manner. You as the Regional Risk and Quality Assurance Manager will directly manage Risk, Quality Assurance processes for selected projects, and you will directly engage with and coordinate FTEs. Implementation and execution of Risk and Quality Assurance Management for selected Consulting projects: Execution of risk assessments More ❯

providing strategic guidance on delivery timelines and client priorities. Expert Advisory & Consulting Post-Adaptation Strategy: Deliver high-level consulting and advice on post-adaptation strategies, helping clients transition from risk assessment to actionable, long-term resilience plans. Regulatory Guidance: Serve as an expert on emerging sustainability regulations, including TCFD, CSRD, and IFRS S2, guiding clients through compliance related … to physical risk. Physical Risk Assessment: Oversee or conduct high-level physical risk assessments, scenario modeling, and vulnerability analysis for clients. Product Co-Development Product Input: Leverage deep client needs and market expertise to co-develop the next generation of our SaaS product. Translating Expertise: Translate client challenges and emerging market needs into clear, functional requirements for More ❯

think innovatively, and listen to each other and customers in meaningful ways. Moody's is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, we're advancing AI to move from insight to action-enabling intelligence that not only understands complexity but responds to it. We decode risk to unlock … into actions, and uphold trust through integrity. The Director, Tech Advisory is a senior leader within Moody's Insurance Business Unit, responsible for shaping the future of insurance analytics, risk management, and workflow transformation. You will lead a high performing team of technical architects, specialists, and developers, delivering innovative solutions that redefine client risk workflows and unlock new … and market innovators - you will design and demonstrate cutting edge architectures, proof of concept analytics, and migration strategies that help clients realize the full potential of Moody's Intelligent Risk Platform (IRP) and broader risk and data offerings. This is both a strategic and hands on role: you will champion best practices, enforce technical and architectural standards, and More ❯

Status: Inside Rate: £500 - £600 Lenghth: Initial 6 months, scope for extension Must have Active MOD DV Clearance In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 … and the NIST Cyber Security Framework. Produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide accurate and pragmatic remediation/risk management guidance/advice … in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic and interpersonal skills. Have a good understanding of modern IT technologies and services, such as Cloud Computing, AI (ISO42001), Mobile Computing, IT Security, Infrastructure technologies, Zero Trust, Data at Rest/In Transit Cryptography More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD or Public Sector as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 and the NIST Cyber Security Framework. Work with multi-disciplinary teams, helping to ensure that … products are delivered in a secure manner that is aligned with the wider business risk appetite. Produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide … accurate and pragmatic remediation/risk management guidance/advice in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic and interpersonal skills. Good level of knowledge of the cyber security industry in public and private sector. Have a good understanding of modern More ❯

this role could be perfect for you. Key Responsibilities: Policy Simplification Review: Engage in the review and revision of Markets Owned Documents to ensure clarity and compliance. Content Review & Risk Assessment: Support the evaluation of non-hierarchy documents, identifying potential risks and escalating them for further review. Document Oversight: Manage the Markets Document Repository, ensuring all non-hierarchy … documents are properly tracked and maintained. Risk Identification: Proactively identify potential risks associated with documentation and escalate as necessary. Report Maintenance: Create and maintain reports for control, tracking, and analysis purposes, ensuring secure retention of all documents. centralised Authoring Support: Provide assistance for the centralised Authoring process for Inventory Documents, as required. Policy Playbook Updates: Execute updates to the … looking for candidates who possess strong attention to detail, excellent organisational skills, and the ability to manage multiple projects simultaneously. The ideal candidate will have experience in document management, risk assessment, and policy development. If you are ready to take on this exciting challenge and make a difference within a leading organisation, we encourage you to apply today. More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC (phone number removed More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC (phone number removed More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party’s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you’ll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

months Central Government experience in the last 5 years is strongly preferred. As an Aker Lead Security Architect, you will be a recognised subject matter expert in security, risk management and compliance with demonstrable experience in highly regulated industries, specifically UK Government and/or Defence. You will build effective working relationships with delivery team members and Aker customers … testing (e.g ITHC) of solutions on the public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series, NIST … CSF, and CSA Identify and deliver appropriate controls based on industry standards (e.g. CCM) to drive cloud and customer security solutions framework based on business risk and cloud native threats. Provide oversight and guidance on government security procedures and processes. Continually evaluate new threats in the cloud, to identify the impact on IT and the business to develop and More ❯