1 to 25 of 136 Risk Assessment Jobs

Opportunity Overview sitemap_outline CORPORATE TITLE Associate language OFFICE LOCATION(S) London assignment JOB FUNCTION Liquidity Risk account_balance DIVISION Risk Division RISK Our Risk division develops comprehensive processes to monitor, assess, and manage the risk of expected and unexpected events that may have an adverse impact on the firm. Risk professionals execute critical … day-to-day risk management activities, lead projects and contribute to the ongoing advancement of a robust risk management program. FINANCE RISK (FR) Finance Risk is the independent risk management function responsible for overseeing the firm's accrual rates and liquidity risk. We work closely with Global Banking and Markets, Asset and Wealth Management and … Platform Solutions, as well as the broader Risk organization to provide independent risk assessment and oversight of the firm's risk taking. Key functions include: Risk Oversight: Monitor, govern, and challenge Corporate Treasury execution activities, including accrual rates risk management, liability management, cash & collateral management, funds transfer pricing, balance sheet usage, liquidity and funding More ❯

Position: Servicenow IRM Senior Solution Architect Location: Chicago, IL (Day 1 Onsite) Duration: Long Term Job description: Lead the design, architecture, and implementation of complex ServiceNow Integrated Risk Management (IRM) and Governance, Risk, and Compliance (GRC) solutions. Provide subject matter expertise on risk-related capabilities, including risk identification, assessment, mitigation, and monitoring. Translate business objectives … architectural standards and best practices. Experience Level 5+ years of hands-on experience with the ServiceNow IRM including extensive work focused GRC processes. 10+ years of professional experience in risk management, GRC, or a related field, demonstrating a deep understanding of risk-related processes. Proven track record of success in architecting and delivering significant ServiceNow IRM implementations for … large enterprises. Expertise in core IRM capabilities such as Issue Management, Incident Management, Loss Events, Controls Testing, Risk Identification, Risk and Control Self-Assessments (RCSA), and Emerging Risk programs. Qualifications: Deep functional and technical understanding of the ServiceNow IRM suite, including Risk capabilities such as Issue/Incident Management, Loss Events, etc. In-depth knowledge of More ❯

Cyber Security Standards. Amend existing procedures based on OT security review findings, embedding improvements in the global CSMS. Collaborate with site Information Security Managers to integrate changes and support risk assessment refreshes. Coordinate and prioritise risk treatment activities in line with updated procedures. Support the OT Security Programme Manager in delivering control uplifts, including documentation updates. Performance … security strategy with programme objectives. Adoption and integration of policies, standards, and procedures across sites. Reduction in identified OT security risks. Clear documentation of technical and business requirements for risk mitigation. 2. Gap Analysis & Risk Assessment Lead gap assessments against the OT cyber security standard and global OT risk framework. Define risk mitigation requirements in … in the project lifecycle. Support assurance reviews for new and existing projects to confirm compliance with reference architectures and security standards. Liaise with project teams and vendors to ensure risk considerations are embedded from design to deployment. Performance Indicators Percentage of projects evaluated and approved on time. Successful incorporation of Security by Design principles. Time to resolve deviations from More ❯

Job Description An exciting opportunity has arisen for an experienced risk professional to join our high performing Risk Team at our award winning investment platform. This role is ideal for someone who enjoys working closely with Technology functions and wants to make a real impact on how enterprise risk is understood, managed and embedded across a growing … FTSE 250 business. As the primary Risk Team business partner for our Technology Services division, you will play a key role in supporting the delivery of our enterprise wide risk management framework. You will help ensure risks are identified, assessed and managed effectively, and contribute to a strong risk culture across the organisation. What the role involves … Partner with Technology Services to embed the Group Risk Management Framework. Support the ongoing development of the framework across AJ Bell. Promote a positive risk culture and provide education and guidance on risk processes. Participate in risk forums to help strengthen first line risk maturity. Support and challenge risk owners on risk and More ❯

Cyber Security Supply Chain Analyst Location: Remote Contract: Inside IR35 Day rate: Up to £670 per day Duration: 6 Months Start date: ASAP Key skills: Supply Chain, Risk Management, TPRM process, NCSC CAF framework We have an opportunity with one of the UK's biggest Retailers who have a network of branches nationwide. MI & Data Automation Analyst, you will … and wider business functions responsible for facilitating supplier onboarding, operational management and offboarding activities, to review, establish and drive adoption of a revised target operating model for supplier security risk management. The goal is to ensure that the Client has a robust and continually managed enterprise-wide supplier cyber risk assessment process to reduce exposure to potential … compromise of security, compliance or operational integrity of its supply chain. Principal accountabilities: - Key point of contact and subject matter expertise for third-party risk guidance - Oversee the review of target supply chain risk assessment processes, establishing agreed recommendations and operating model in accordance with the National Cyber Security Centre Cyber Assessment Framework principles - Product and More ❯

At Smart, our mission is to transform retirement, savings and financial wellbeing, across all generations, around the world. THE ROLE The Risk & Assurance Business Partner plays a pivotal role in overseeing and managing Smart's risk, compliance, and assurance activities across the organisation. This role combines strategic oversight of the Risk & Assurance function, corporate insurance programmes, and … with operational and governance responsibilities. The successful candidate will act as a trusted partner to the business, supporting decision-making through insightful analysis, ensuring regulatory and audit compliance, managing risk exposures, and maintaining clear and transparent communication with internal stakeholders, the Board, and external clients. Key responsibilities: Risk & Assurance Manage the Risk & Assurance budget, including planning, forecasting … and monitoring to ensure efficient resource allocation and alignment with priorities Serve as Secretary to the Group Risk and Governance Committee (GRCC), ensuring timely preparation and distribution of papers, accurate minutes, and prompt action follow-up Prepare clear, concise, and well-structured papers and presentations for the Audit & Risk Committee and Board, translating complex technical and compliance information More ❯

Job Title: Cyber Risk Specialist-RCSA Job Location: Farmington Hills, MI 48331 Onsite Requirements: 3+ years of Cyber Risk 3+ years of RCSA Job Description: Risk Control Self-Assessment Second Line of Defense Execution - Cyber Security Domain Responsibilities: NIST Cybersecurity Framework & FFIEC Information Security Handbook Alignment Program Objective - Execution of comprehensive Risk Control Self-Assessment (RCSA) programs that align organizational cybersecurity controls with NIST Cybersecurity Framework (CSF) requirements and FFIEC Information Security Handbook guidelines, ensuring regulatory compliance and effective risk mitigation across financial services environments. Challenge and Enhance Framework Integration to NIST CSF and FFIEC Information Security Handbook Challenge and Support Enhancements to Control Framework development Control Design Documentation Remediation Planning: Develop actionable … plans for control enhancement and gap closure Stakeholder Engagement & Communication Risk and Governance Reporting: Develop risk reporting and governance frameworks Cross-Functional Collaboration: Facilitate coordination between IT, Risk, Compliance, and Business units Training and Awareness: Conduct educational sessions on risk assessment processes and regulatory requirements Ongoing Administrative Tasks Risk Register Maintenance: Establish centralized risk More ❯

digital estate, encompassing enterprise IT, operational technology (OT), and research platforms. This role sits within the Information & Cyber Security Group and provides subject matter expertise in security architecture, cyber risk governance, and assurance frameworks. This is a cross-functional role with both advisory and hands-on responsibilities, focusing on security assurance, risk management and supporting architecture reviews, vulnerability … management, risk assessments, cyber defence posture, driving technical assurance, and embedding risk-aligned security controls across IT and OT systems and secure-by-design practices. You will work across hybrid environments including cloud, infrastructure, applications, and OT systems. You will be responsible for designing and advising on security architecture patterns, reviewing and maintaining risk registers, leading assurance … Cyber Essentials (CE and CE+) while supporting the secure operation of core services. The role requires strong stakeholder engagement, technical depth, and a sound understanding of UK-specific cyber risk frameworks. You will help shape and maintain a secure posture across UKAEA. A degree in Cybersecurity, Information Technology, or a STEM subject (or equivalent experience). Essential o Security More ❯

Information Security Compliance & Risk Specialist Maritime and Coastguard Agency Apply before 11:55pm on Friday 30th November 2025 Reference number (phone number removed) Salary £44,241 This role is part of the Government Digital and Data Profession, and the role attracts a Digital and Data allowance of up to £14,756, subject to an assessment of your skills … Pension with an employer contribution of 28.97% Job grade Senior Executive Officer Contract type Permanent Business area MCA - Information Technology Type of role Information Technology Knowledge and Information Management Risk Management Security Working pattern Flexible working, Full-time, Job share, Part-time Number of jobs available 1 Contents Location About the job Benefits Things you need to know Apply … and further information Location Southampton About the job Job description The Information Security Compliance and Risk Specialist will: Develop & maintain the MCA's Information Security Management System (ISMS) and all underpinning documentation, including stakeholder engagement & compliance checks. Be responsible for the delivery of information security risk management processes, across all asset types, providing risk-based advice & guidance More ❯

information assets. As a dedicated InfoSec Advisor - Mid Level (3P Assessor), you will provide information assurance capabilities through technical consultation and guidance to the business for the interpretation and assessment of information security risk for projects, technologies, and environments. Aim to identify and manage existing and emerging risks and integrate risk management strategies and educate risk … Information Security governance. Publishes, maintains, and/or interprets moderately complex Information Security governance requirements (e.g. policies and standards). Executes repeatable methods and measurements to determine Information Security risk and recommends improvements to the process. Performs security risk assessments of moderately complex projects, new technologies, business partners, and third parties. Consults with individuals and teams (advice, guidance … and assistance) on Information Security risk; guides the security direction of USAA technical projects and initiatives. Recommends risk treatment options for technical projects and initiatives. Responds both verbally and in writing to routine inquiries and periodic exams from internal control partners (e.g. legal, compliance, audit, risk). Guides and assists process owners in the identification, development, and More ❯

information assets. As a dedicated InfoSec Advisor - Mid Level (3P Assessor), you will provide information assurance capabilities through technical consultation and guidance to the business for the interpretation and assessment of information security risk for projects, technologies, and environments. Aim to identify and manage existing and emerging risks and integrate risk management strategies and educate risk … Information Security governance. Publishes, maintains, and/or interprets moderately complex Information Security governance requirements (e.g. policies and standards). Executes repeatable methods and measurements to determine Information Security risk and recommends improvements to the process. Performs security risk assessments of moderately complex projects, new technologies, business partners, and third parties. Consults with individuals and teams (advice, guidance … and assistance) on Information Security risk; guides the security direction of USAA technical projects and initiatives. Recommends risk treatment options for technical projects and initiatives. Responds both verbally and in writing to routine inquiries and periodic exams from internal control partners (e.g. legal, compliance, audit, risk). Guides and assists process owners in the identification, development, and More ❯

information assets. As a dedicated InfoSec Advisor - Mid Level (3P Assessor), you will provide information assurance capabilities through technical consultation and guidance to the business for the interpretation and assessment of information security risk for projects, technologies, and environments. Aim to identify and manage existing and emerging risks and integrate risk management strategies and educate risk … Information Security governance. Publishes, maintains, and/or interprets moderately complex Information Security governance requirements (e.g. policies and standards). Executes repeatable methods and measurements to determine Information Security risk and recommends improvements to the process. Performs security risk assessments of moderately complex projects, new technologies, business partners, and third parties. Consults with individuals and teams (advice, guidance … and assistance) on Information Security risk; guides the security direction of USAA technical projects and initiatives. Recommends risk treatment options for technical projects and initiatives. Responds both verbally and in writing to routine inquiries and periodic exams from internal control partners (e.g. legal, compliance, audit, risk). Guides and assists process owners in the identification, development, and More ❯

information assets. As a dedicated InfoSec Advisor - Mid Level (3P Assessor), you will provide information assurance capabilities through technical consultation and guidance to the business for the interpretation and assessment of information security risk for projects, technologies, and environments. Aim to identify and manage existing and emerging risks and integrate risk management strategies and educate risk … Information Security governance. Publishes, maintains, and/or interprets moderately complex Information Security governance requirements (e.g. policies and standards). Executes repeatable methods and measurements to determine Information Security risk and recommends improvements to the process. Performs security risk assessments of moderately complex projects, new technologies, business partners, and third parties. Consults with individuals and teams (advice, guidance … and assistance) on Information Security risk; guides the security direction of USAA technical projects and initiatives. Recommends risk treatment options for technical projects and initiatives. Responds both verbally and in writing to routine inquiries and periodic exams from internal control partners (e.g. legal, compliance, audit, risk). Guides and assists process owners in the identification, development, and More ❯

Regional Risk and Quality Assurance Manager (f/m/d) Full or part time Empowering You - to feel our passion for technology As NTT DATA Business Solutions, we are more than just a company. We are a team of passionate people who drive innovation - from advisory and implementation to managed services and beyond. With SAP at our core … and initiatives to improve our consulting business aiming at increasing consulting quality, streamlining approaches across countries and developing consultants in their respective fields. Within GFC, the Global Quality and Risk Unit (GQR) is in charge of defining, implementing and enforcing Risk Management processes within all NTT DATA Business Solutions companies. The Risk and Quality Assurance team effectively … monitors risks throughout the various project phases in an operative manner. You as the Regional Risk and Quality Assurance Manager will directly manage Risk, Quality Assurance processes for selected projects, and you will directly engage with and coordinate FTEs. Implementation and execution of Risk and Quality Assurance Management for selected Consulting projects: Execution of risk assessments More ❯

related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in … relation to Information Security Strategy and the creation, delivery and maintenance of a robust Cyber Security roadmap Handle varied and complex security challenges, from system reviews to high-level risk assessments Work closely with third-party suppliers in relation to audits, forensic analysis and pen testing Requirements: Experience with ISO 27001 is essential Strong background in cyber security management … Proven experience in identifying and mitigating security risks# Ability to make actionable recommendations for security improvements Experience with GDPR and data protection, together with knowledge of IS standards Security assessment frameworks (threat modelling, controls assessment, risk assessment) Relevant qualifications; CISSP, CISM or similar would be beneficial. Based in Central London, 4 days per week onsite initially More ❯

related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in … relation to Information Security Strategy and the creation, delivery and maintenance of a robust Cyber Security roadmap Handle varied and complex security challenges, from system reviews to high-level risk assessments Work closely with third-party suppliers in relation to audits, forensic analysis and pen testing Requirements: Experience with ISO 27001 is essential Strong background in cyber security management … Proven experience in identifying and mitigating security risks# Ability to make actionable recommendations for security improvements Experience with GDPR and data protection, together with knowledge of IS standards Security assessment frameworks (threat modelling, controls assessment, risk assessment) Relevant qualifications; CISSP, CISM or similar would be beneficial. Based in Central London, 4 days per week onsite initially More ❯

Status: Inside Rate: £500 - £600 Lenghth: Initial 6 months, scope for extension Must have Active MOD DV Clearance In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 … and the NIST Cyber Security Framework. Produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide accurate and pragmatic remediation/risk management guidance/advice … in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic and interpersonal skills. Have a good understanding of modern IT technologies and services, such as Cloud Computing, AI (ISO42001), Mobile Computing, IT Security, Infrastructure technologies, Zero Trust, Data at Rest/In Transit Cryptography More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD or Public Sector as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 and the NIST Cyber Security Framework. Work with multi-disciplinary teams, helping to ensure that … products are delivered in a secure manner that is aligned with the wider business risk appetite. Produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide … accurate and pragmatic remediation/risk management guidance/advice in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic and interpersonal skills. Good level of knowledge of the cyber security industry in public and private sector. Have a good understanding of modern More ❯

this role could be perfect for you. Key Responsibilities: Policy Simplification Review: Engage in the review and revision of Markets Owned Documents to ensure clarity and compliance. Content Review & Risk Assessment: Support the evaluation of non-hierarchy documents, identifying potential risks and escalating them for further review. Document Oversight: Manage the Markets Document Repository, ensuring all non-hierarchy … documents are properly tracked and maintained. Risk Identification: Proactively identify potential risks associated with documentation and escalate as necessary. Report Maintenance: Create and maintain reports for control, tracking, and analysis purposes, ensuring secure retention of all documents. centralised Authoring Support: Provide assistance for the centralised Authoring process for Inventory Documents, as required. Policy Playbook Updates: Execute updates to the … looking for candidates who possess strong attention to detail, excellent organisational skills, and the ability to manage multiple projects simultaneously. The ideal candidate will have experience in document management, risk assessment, and policy development. If you are ready to take on this exciting challenge and make a difference within a leading organisation, we encourage you to apply today. More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC (phone number removed More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC (phone number removed More ❯

featured on the Sifted 100 UK startups - among only 25 companies to have made the list over both years 2024 and 2025. We are seeking a skilled Consumer Credit Risk Strategy Analyst with 3+ years of experience in the UK credit markets, specifically within personal loans for debt consolidation. The successful candidate will play a critical role in assessing … monitoring, and optimising credit risk strategies to ensure a balanced approach between risk management and business growth. Key Responsibilities: Conduct portfolio analytics to assess risk trends, customer behaviour, and loan performance. Analyse credit data, customer profiles, and market trends to enhance underwriting criteria. Work closely with stakeholders to optimise credit policies and improve lending strategies. Utilise statistical … and machine learning techniques to support data-driven risk assessment methodologies. Monitor key performance indicators (KPIs) related to loan approvals, delinquencies, and charge-offs. Requirements Required Skills & Experience: 3+ years of experience in a credit risk role, preferably within personal loans and debt consolidation in the UK. Strong understanding of credit scoring models, risk analytics, and More ❯

month contract – London/Remote My Customer is seeking an experienced Senior Security Consultant to take a leading role in the end-to-end (Design, implementation) delivery of Governance, Risk & Compliance (GRC) and IT simplification initiatives. The Senior Security Consultant would be working at the heart of major programmes – including designing and implementing Security frameworks around cloud (Azure) migrations … influencing and communicating with stakeholders at all levels. Hands-on experience designing and supporting ISMS governance and security implementation across large programmes of work. Practical experience creating and conducting risk assessments, including project risk and third-party/vendor risk. Solid understanding of security frameworks and assessment methodologies (e.g., ISO 27001, NIST, CSA, CIS). Exposure to … project environments with competing priorities. Key Responsibilities for the Senior Security Consultant: Information Security - Ensure all project work and vendor engagements follow internal security policies, standards, and processes. Security Risk Assessment - Assess security, privacy, and compliance risks across internal projects and third-party suppliers IT Simplification and Cloud migration – Ensure security considerations are fully integrated into Azure migration More ❯