1 to 25 of 141 Risk Assessment Jobs

split of 50% home working and 50% onsite. This role supports the OMNIA Security Assurance Lead by carrying out a comprehensive Initial Security Risk Assessment for the MOD CTTP programme-analysing risks, threats, vulnerabilities, architectures and compliance requirements, and producing the formal assessment report. It also supports … coordinating with delivery partners, and helping present the final assessment. Key Responsibilities: Working closely with the OMNIA Security Assurance Lead to conduct Initial Security Risk Assessment Report activities in alignment with MOD Secure by Design (ISN2023/09) assurance activities. Attending workshops and meetings, both in-person ...

services used by millions of UK citizens. Flexible, hybrid working (60% Swansea office based) with a salary of up to £58,997 (depending upon assessment) plus a generous Civil Service Pension of 28.97% and other Civil Service benefits. Job Summary As a Cyber Security Consultant, you will join … link for booking info. Responsibilities Provide cyber security consultancy and expert advice to IT programmes, projects and operational teams across DVLA. Conduct cyber security risk assessments using agreed methodologies, supporting informed IT and information risk management decisions. Ensure cyber security requirements are incorporated into technical designs and architectural ...

Security Risk Assessment Specialist - Freelance Contractor - Brussels Rate: Flexible Duration: 1 year - freelance contract Hybrid: 8 days onsite in Brussels office in a month, the rest can be worked remotely Division : CISO - IT Risk About the Role: We are looking for an experienced and dynamic Senior Security … Analyst to join our IT Risk Transformation team. In this role, you will contribute to the design and enhancement of our application security risk assessment process and will perform security risk assessments across a wide range of applications. To achieve it, you will work closely with ...

Information Security & Risk Specialist Role: Information Security & Risk Specialist Specialism(s): Global Information Security, Risk Analysis, Cyber Security, Information Security, International Cyber Security, 3rd Party Security Compliance, Risk Management, Risk Reporting, Audit & Compliance, Cloud Infrastructure, ISO2700x, NIST, SOC2, PCI, GDPR, Risk Assessments Type: Contract … Inside IR35 Duration: 12 Months Location: London, On-Site Working (1 day remote per week) Start: ASAP/Urgent Information Security & Risk Specialist CPS Group UK are delighted to be working with a leading, global Entertainment brand to appoint an Information Security & Risk Specialist to join their Global ...

Information Security & Risk Specialist Role: Information Security & Risk Specialist Specialism(s): Global Information Security, Risk Analysis, Cyber Security, Information Security, International Cyber Security, 3rd Party Security Compliance, Risk Management, Risk Reporting, Audit & Compliance, Cloud Infrastructure, ISO2700x, NIST, SOC2, PCI, GDPR, Risk Assessments Type: Contract … Months Pay Rate: £400 - £495 per day Location: London, On-Site Working (1 day remote per week) Start: ASAP/Urgent Information Security & Risk Specialist CPS Group UK are delighted to be working with a leading, global Entertainment brand to appoint an Information Security & Risk Specialist to join ...

Title: GRC Risk Analyst Location: London, UK Duration: 6+ months Working Mode: hybrid Summary Seeking an experienced GRC Risk Analyst to support technology, information security, and regulatory risk activities. The role focuses on risk assessments, risk register management, reporting , and working with stakeholders across business … technology. Key Responsibilities Perform technology, information security, data, and third-party risk assessments. Apply ISO 27001, NIST, GDPR, and UK/EU regulatory frameworks. Maintain and monitor enterprise risk registers and remediation actions. Engage stakeholders across business, IT, security, privacy, and compliance. Prepare risk reports and senior ...

Operational Risk Specialist Up to £34k per year Nelson 2/3 days on site An Operational Risk Specialist is responsible for identifying, assessing, and monitoring risks across various business units within an organization. They facilitate risk workshops, maintain risk registers, and track key risk indicators to ensure effective risk management. The role involves collaborating with stakeholders to embed a strong risk culture and supporting governance through reporting and assurance activities. Additionally, they stay informed about regulatory developments and promote risk awareness through training and communication. Skills Strong understanding of regulatory ...

role is central to ensuring services are 'secure by design' and compliant with government standards. Work will include: Completed secure-by-design self-assessment trackers Risk assessment papers and treatment plans Security management and assurance documentation Reports to demonstrate compliance with relevant frameworks and processes … Security, Cyber Security Standard and international standards like ISO 27001, ISO/IEC 27005, NIST, COBIT. Ability to work across delivery, technical and risk teams, translating security requirements into practical actions Knowledge of secure-by-design approaches, threat assessment, risk management and vulnerability management Excellent communication skills ...

Risk & Compliance Officer My client based near Stratford-upon-Avon are looking for a Risk & Compliance Officer to join their team. This is a hybrid role – 2 – 3 days per week in the office. Salary approx. £70,000 - £85,000 + Bonus + Excellent Benefits The Role This …/PRA regulations, PCI DSS standards and broader industry requirements. Working cross-functionally with product, technology, legal and senior leadership teams, you’ll embed risk management into day-to-day operations and product development, while acting as a trusted advisor to the Executive Team and Board. This ...

Team utilising the support of other team members where necessary. The role is to be an active participant and, where appropriate, leader of risk-based audit reviews, and will assist the IT Team to issue recommendations to remediate any identified issues and weaknesses. Key Responsibilities Leads or acts … other team members involved in an assignment. At all times, the role holder will have regard for the main risks detailed in the Risk and related Control Matrix and, where acting in a management capacity, will plan and organise an assignment (including the allocation of staff) as well ...

recommend proportionate mitigations. Advise on the security implications of emerging technologies (e.g., cloud, microservices, identity solutions). Maintain the security, privacy, and resilience risk register. Lead security architecture assurance aligned with CAF and NCSC guidance. Oversee penetration testing, vulnerability management, and remediation activities. Ensure value for money from cyber … expertise in IT infrastructure and/or software development including Saleforce. Extensive experience designing and reviewing secure architectures for complex systems. Strong experience in risk assessment, risk management, and intelligence-informed decision-making. Proven ability to influence senior leaders and communicate complex security risks clearly. Experience developing ...

recommend proportionate mitigations. * Advise on the security implications of emerging technologies (e.g., cloud, microservices, identity solutions). * Maintain the security, privacy, and resilience risk register. * Lead security architecture assurance aligned with CAF and NCSC guidance. * Oversee penetration testing, vulnerability management, and remediation activities. * Ensure value for money from cyber … expertise in IT infrastructure and/or software development including Saleforce. * Extensive experience designing and reviewing secure architectures for complex systems. * Strong experience in risk assessment, risk management, and intelligence-informed decision-making. * Proven ability to influence senior leaders and communicate complex security risks clearly. * Experience developing ...

recommend proportionate mitigations. * Advise on the security implications of emerging technologies (e.g., cloud, microservices, identity solutions). * Maintain the security, privacy, and resilience risk register. * Lead security architecture assurance aligned with CAF and NCSC guidance. * Oversee penetration testing, vulnerability management, and remediation activities. * Ensure value for money from cyber … expertise in IT infrastructure and/or software development including Saleforce. * Extensive experience designing and reviewing secure architectures for complex systems. * Strong experience in risk assessment, risk management, and intelligence-informed decision-making. * Proven ability to influence senior leaders and communicate complex security risks clearly. * Experience developing ...

recommend proportionate mitigations. Advise on the security implications of emerging technologies (e.g., cloud, microservices, identity solutions). Maintain the security, privacy, and resilience risk register. Lead security architecture assurance aligned with CAF and NCSC guidance. Oversee penetration testing, vulnerability management, and remediation activities. Ensure value for money from cyber … expertise in IT infrastructure and/or software development including Saleforce. Extensive experience designing and reviewing secure architectures for complex systems. Strong experience in risk assessment, risk management, and intelligence-informed decision-making. Proven ability to influence senior leaders and communicate complex security risks clearly. Experience developing ...

Infrastructure services, assess and classify identify security threats and define threats mitigation solutions in alignment with the stakeholders. Monitor for vulnerabilities, perform ongoing risk assessment and collaborate with cross-functional teams to mitigate the risk. Define the pentesting scope and scenarios. Develop and maintain documentation providing clear guidelines … environments. Cloud Security: Competent understanding and experience of securing at minimum AWS cloud infrastructure environments, CI/CD pipelines, containerized environment and Linux systems. Risk Assessment: Experience with assessing security findings and mitigation strategies Security Savvy: Competent knowledge of common security frameworks and tactics, including STRIDE, MITRE ...

Infrastructure services, assess and classify identify security threats and define threats mitigation solutions in alignment with the stakeholders. Monitor for vulnerabilities, perform ongoing risk assessment and collaborate with cross-functional teams to mitigate the risk. Define the pentesting scope and scenarios. Develop and maintain documentation providing clear guidelines … environments. Cloud Security: Competent understanding and experience of securing at minimum AWS cloud infrastructure environments, CI/CD pipelines, containerized environment and Linux systems. Risk Assessment: Experience with assessing security findings and mitigation strategies Security Savvy: Competent knowledge of common security frameworks and tactics, including STRIDE, MITRE ...

background in Cyber Security Assurance within a high-threat government environment. Skills and experience. Experience in producing GovAssure and Secure-By-Design assessments, including Risk Assessment Papers, Risk Treatment Plans, Risk Business Cases, and Security Management Plans. Knowledge and experience with security architecture and Security Information … System solutions. Extensive understanding of cybersecurity threats, attack vectors, vulnerabilities, and security controls. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework, ISO 27001, NIST, COBIT, as well as SABSA and TOGAF. Experience in risk and threat modelling within high-threat government environments. Preferred ...

Start: ASAP Clearance: DV Cleared Onsite: Full time, 5 days/week Overview Seeking an experienced Security Architect to lead secure design, risk assessment, and assurance activities on a highly classified government programme. The role requires strong architectural expertise within HMG environments and work closely with technical … technical stakeholders. Key Skills Security architecture in high security environments RMADS, accreditation, HMG standards, NCSC principles Threat modelling and risk assessment Network, cloud, IAM, and data security Strong stakeholder communication ...

Start: ASAP Clearance: DV Cleared Onsite: Full-time, 5 days/week Overview Seeking an experienced Security Architect to lead secure design, risk assessment, and assurance activities on a highly classified government programme. The role requires strong architectural expertise within HMG environments and work closely with technical … technical stakeholders. Key Skills Security architecture in high-security environments RMADS, accreditation, HMG standards, NCSC principles Threat modelling and risk assessment Network, cloud, IAM, and data security Strong stakeholder communication ...

Cyber & Data Risk Lead - Financial Services c 60,000- 80,000 (DOE) + Performance Bonus East Midlands A high-growth privately owned financial services organisation is seeking to appoint a Cyber & Data Risk Lead to take ownership of its data governance framework, security control environment, and third-party … data risk oversight. This is a senior and highly visible role, operating at the intersection of Technology, Risk, Compliance, and Commercial decision-making. The successful candidate will play a pivotal part in ensuring that sensitive customer, partner, and business data is protected, well-governed, and used responsibly ...

Cyber & Data Risk Lead - Financial Services c£60,000-£80,000 (DOE) + Performance Bonus East Midlands A high-growth privately owned financial services organisation is seeking to appoint a Cyber & Data Risk Lead to take ownership of its data governance framework, security control environment, and third-party … data risk oversight. This is a senior and highly visible role, operating at the intersection of Technology, Risk, Compliance, and Commercial decision-making. The successful candidate will play a pivotal part in ensuring that sensitive customer, partner, and business data is protected, well-governed, and used responsibly ...

governance frameworks, policies, and controls aligned with recognised international standards, including ISO 27001 and the NIST Cybersecurity Framework. * Own and evolve the cyber security risk management strategy to enable proactive identification, assessment, and mitigation of cyber risks. * Lead cyber security risk assessment activities, applying the Enterprise … Risk Management Framework, Information Security Management System (ISMS), and NIST risk management practices. * Partner with senior leaders and cross-functional teams to embed cyber security considerations into business processes and decision-making. * Work closely with procurement teams to identify, assess, and manage cyber security risks associated with suppliers ...

Title: Cyber Governance & Risk Enablement Lead About the Organisation Financial Services Experience Key. The organisation operates across multiple regions and delivers technology-enabled services to customers in both regulated and non-regulated markets. It prioritises secure operations, responsible technology adoption, and a forward-looking approach to risk management … expectations are clearly defined, easily understood, and consistently applied across all teams. You will oversee the development of security policies and control frameworks, coordinate risk and compliance activity, and act as a partner to technology, operations, product, and risk teams. Your purpose is to enable secure decision-making ...

Title: Cyber Governance & Risk Enablement Lead About the Organisation Financial Services Experience Key. The organisation operates across multiple regions and delivers technology-enabled services to customers in both regulated and non-regulated markets. It prioritises secure operations, responsible technology adoption, and a forward-looking approach to risk management … expectations are clearly defined, easily understood, and consistently applied across all teams. You will oversee the development of security policies and control frameworks, coordinate risk and compliance activity, and act as a partner to technology, operations, product, and risk teams. Your purpose is to enable secure decision-making ...

Engineer Location: UK, Western Europe or Eastern United States (Remote) | Employment: Full-Time Company Overview: Invela is the first-of-its-kind open finance risk management network that infuses trust and confidence across the ecosystem through standardized accreditation, dynamic risk monitoring and insurance-backed warranty. The Role … seeking a versatile Technical Solutions Engineer to own both the technical sales and implementation journey for our open finance risk management solution. This unique role combines pre-sales technical consultation with hands-on implementation, providing end-to-end technical ownership of customer success with financial services organizations including banks ...