1 to 25 of 98 Risk Assessment Jobs

Cyber Security Standards. Amend existing procedures based on OT security review findings, embedding improvements in the global CSMS. Collaborate with site Information Security Managers to integrate changes and support risk assessment refreshes. Coordinate and prioritise risk treatment activities in line with updated procedures. Support the OT Security Programme Manager in delivering control uplifts, including documentation updates. Performance … security strategy with programme objectives. Adoption and integration of policies, standards, and procedures across sites. Reduction in identified OT security risks. Clear documentation of technical and business requirements for risk mitigation. 2. Gap Analysis & Risk Assessment Lead gap assessments against the OT cyber security standard and global OT risk framework. Define risk mitigation requirements in … in the project lifecycle. Support assurance reviews for new and existing projects to confirm compliance with reference architectures and security standards. Liaise with project teams and vendors to ensure risk considerations are embedded from design to deployment. Performance Indicators Percentage of projects evaluated and approved on time. Successful incorporation of Security by Design principles. Time to resolve deviations from More ❯

Job Description An exciting opportunity has arisen for an experienced risk professional to join our high performing Risk Team at our award winning investment platform. This role is ideal for someone who enjoys working closely with Technology functions and wants to make a real impact on how enterprise risk is understood, managed and embedded across a growing … FTSE 250 business. As the primary Risk Team business partner for our Technology Services division, you will play a key role in supporting the delivery of our enterprise wide risk management framework. You will help ensure risks are identified, assessed and managed effectively, and contribute to a strong risk culture across the organisation. What the role involves … Partner with Technology Services to embed the Group Risk Management Framework. Support the ongoing development of the framework across AJ Bell. Promote a positive risk culture and provide education and guidance on risk processes. Participate in risk forums to help strengthen first line risk maturity. Support and challenge risk owners on risk and More ❯

Cyber Security Supply Chain Analyst Location: Remote Contract: Inside IR35 Day rate: Up to £670 per day Duration: 6 Months Start date: ASAP Key skills: Supply Chain, Risk Management, TPRM process, NCSC CAF framework We have an opportunity with one of the UK's biggest Retailers who have a network of branches nationwide. MI & Data Automation Analyst, you will … and wider business functions responsible for facilitating supplier onboarding, operational management and offboarding activities, to review, establish and drive adoption of a revised target operating model for supplier security risk management. The goal is to ensure that the Client has a robust and continually managed enterprise-wide supplier cyber risk assessment process to reduce exposure to potential … compromise of security, compliance or operational integrity of its supply chain. Principal accountabilities: - Key point of contact and subject matter expertise for third-party risk guidance - Oversee the review of target supply chain risk assessment processes, establishing agreed recommendations and operating model in accordance with the National Cyber Security Centre Cyber Assessment Framework principles - Product and More ❯

At Smart, our mission is to transform retirement, savings and financial wellbeing, across all generations, around the world. THE ROLE The Risk & Assurance Business Partner plays a pivotal role in overseeing and managing Smart's risk, compliance, and assurance activities across the organisation. This role combines strategic oversight of the Risk & Assurance function, corporate insurance programmes, and … with operational and governance responsibilities. The successful candidate will act as a trusted partner to the business, supporting decision-making through insightful analysis, ensuring regulatory and audit compliance, managing risk exposures, and maintaining clear and transparent communication with internal stakeholders, the Board, and external clients. Key responsibilities: Risk & Assurance Manage the Risk & Assurance budget, including planning, forecasting … and monitoring to ensure efficient resource allocation and alignment with priorities Serve as Secretary to the Group Risk and Governance Committee (GRCC), ensuring timely preparation and distribution of papers, accurate minutes, and prompt action follow-up Prepare clear, concise, and well-structured papers and presentations for the Audit & Risk Committee and Board, translating complex technical and compliance information More ❯

Information Security Compliance & Risk Specialist Maritime and Coastguard Agency Apply before 11:55pm on Friday 30th November 2025 Reference number (phone number removed) Salary £44,241 This role is part of the Government Digital and Data Profession, and the role attracts a Digital and Data allowance of up to £14,756, subject to an assessment of your skills … Pension with an employer contribution of 28.97% Job grade Senior Executive Officer Contract type Permanent Business area MCA - Information Technology Type of role Information Technology Knowledge and Information Management Risk Management Security Working pattern Flexible working, Full-time, Job share, Part-time Number of jobs available 1 Contents Location About the job Benefits Things you need to know Apply … and further information Location Southampton About the job Job description The Information Security Compliance and Risk Specialist will: Develop & maintain the MCA's Information Security Management System (ISMS) and all underpinning documentation, including stakeholder engagement & compliance checks. Be responsible for the delivery of information security risk management processes, across all asset types, providing risk-based advice & guidance More ❯

Primary Details Time Type: Full time Worker Type: Employee The purpose of this role is to enhance risk assessment and decision-making processes through the provision of advanced risk modelling analytics. This is achieved through engaging with business stakeholders to define requirements and combining this Accumulation Management expertise and knowledge of data sets. Senior Cyber Catastrophe Risk … as a leading resource on cyber accumulations, providing expert guidance and insights to internal teams and external stakeholders. Collaborate with Global Cyber team other divisional stakeholders to develop effective risk mitigation strategies and optimize risk management processes. Collect, validate, and analyse large datasets related to cyber risks, ensuring data accuracy and reliability. Present findings in a clear and … QBE’s proprietary view of risk. Work closely with cross-functional teams, including Global Cyber team, underwriting, actuarial, and claims, to ensure a holistic understanding of the company's risk landscape. Communicate effectively with external stakeholders, including reinsurers and regulatory bodies, to maintain transparency and compliance with industry standards. Stay abreast of the latest developments in cyber modelling, risk More ❯

Job Description IS Risk Manager – Contract (Inside IR35) 3-month contract (likely extension) | East Midlands | Mainly remote with occasional onsite Telefónica Tech is looking for an experienced IS Risk Manager to lead and mature the technology risk management function for our key Customer. This is a key role overseeing IT and OT risk across a large … complex digital estate, ensuring alignment with business objectives, regulatory requirements and ongoing transformation programmes. Role Overview You'll own and drive the Risk Management framework within the IS department, embedding a strong risk culture, improving processes, and ensuring technology risks are effectively identified, assessed, and governed. Working closely with the Group CISO, leadership teams and technical stakeholders, you … ll provide expert guidance, steer risk remediation, and ensure consistent governance across the organisation. Key Responsibilities Lead and develop the IS/IT/OT Risk Management framework and associated governance. Provide expert risk assessment, analysis and guidance across all IS functions. Track and report risk metrics, KPIs/KRIs, and progress against remediation plans. More ❯

Engagement Manager - 1 year FTC London, Poland, Germany, Spain, or France. About the Business: LexisNexis Risk Solutions is the essential partner in the assessment of risk. Within our Business Services vertical, we offer a multitude of solutions focused on helping businesses of all sizes drive higher revenue growth, maximize operational efficiencies, and improve customer experience. Our solutions help … our customers solve difficult problems in the areas of Anti-Money Laundering/Counter Terrorist Financing, Identity Authentication & Verification, Fraud and Credit Risk mitigation and Customer Data Management. You can learn more about LexisNexis Risk at the link below, risk.lexisnexis.com About our Team: Y ou’ll work within a collaborative and supportive environment to grow your personal and … protect billions in revenue. About the Role: You will work in collaboration with our customers and account managers to maximise the value delivered by the worlds largest email based risk assessment solution. Your results will lead to immediate real-world impact in the form of lower customer friction, reduced fraud losses and as a result, increased customer profitability. More ❯

Job Title: Internal Audit Manager - Third Parties Assurance and Business Resilience Location: London Hybrid: 4 days in the office, 1 day working from home per week Audit & Risk Recruitment is proud to partner with a global FinTech business with an ambitious growth agenda and a strong commitment to maintaining a robust control environment. As part of their continued expansion … in 3rd party riska and Resiliance. This is a critical and high-impact role for someone who thrives on autonomy, has a strong understanding of third-party and resilience risk, and is passionate about delivering value-added assurance in a dynamic environment. In this role, you will be a key strategic partner to the Head of Internal Audit, helping … shape our assurance strategy and annual audit planning. You will also lead the development of a continuous third-party assurance framework to monitor the ongoing performance and risk of external service providers. Key Responsibilities Lead Risk-Based Audits : Plan, execute, and report on internal audits focused on third-party management, outsourcing governance, operational resilience and business continuity. Third More ❯

related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in … relation to Information Security Strategy and the creation, delivery and maintenance of a robust Cyber Security roadmap Handle varied and complex security challenges, from system reviews to high-level risk assessments Work closely with third-party suppliers in relation to audits, forensic analysis and pen testing Requirements: Experience with ISO 27001 is essential Strong background in cyber security management … Proven experience in identifying and mitigating security risks# Ability to make actionable recommendations for security improvements Experience with GDPR and data protection, together with knowledge of IS standards Security assessment frameworks (threat modelling, controls assessment, risk assessment) Relevant qualifications; CISSP, CISM or similar would be beneficial. Based in Central London, 4 days per week onsite initially More ❯

related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in … relation to Information Security Strategy and the creation, delivery and maintenance of a robust Cyber Security roadmap Handle varied and complex security challenges, from system reviews to high-level risk assessments Work closely with third-party suppliers in relation to audits, forensic analysis and pen testing Requirements: Experience with ISO 27001 is essential Strong background in cyber security management … Proven experience in identifying and mitigating security risks# Ability to make actionable recommendations for security improvements Experience with GDPR and data protection, together with knowledge of IS standards Security assessment frameworks (threat modelling, controls assessment, risk assessment) Relevant qualifications; CISSP, CISM or similar would be beneficial. Based in Central London, 4 days per week onsite initially More ❯

Status: Inside Rate: £500 - £600 Lenghth: Initial 6 months, scope for extension Must have Active MOD DV Clearance In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 … and the NIST Cyber Security Framework. Produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide accurate and pragmatic remediation/risk management guidance/advice … in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic and interpersonal skills. Have a good understanding of modern IT technologies and services, such as Cloud Computing, AI (ISO42001), Mobile Computing, IT Security, Infrastructure technologies, Zero Trust, Data at Rest/In Transit Cryptography More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD or Public Sector as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 and the NIST Cyber Security Framework. Work with multi-disciplinary teams, helping to ensure that … products are delivered in a secure manner that is aligned with the wider business risk appetite. Produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide … accurate and pragmatic remediation/risk management guidance/advice in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic and interpersonal skills. Good level of knowledge of the cyber security industry in public and private sector. Have a good understanding of modern More ❯

this role could be perfect for you. Key Responsibilities: Policy Simplification Review: Engage in the review and revision of Markets Owned Documents to ensure clarity and compliance. Content Review & Risk Assessment: Support the evaluation of non-hierarchy documents, identifying potential risks and escalating them for further review. Document Oversight: Manage the Markets Document Repository, ensuring all non-hierarchy … documents are properly tracked and maintained. Risk Identification: Proactively identify potential risks associated with documentation and escalate as necessary. Report Maintenance: Create and maintain reports for control, tracking, and analysis purposes, ensuring secure retention of all documents. centralised Authoring Support: Provide assistance for the centralised Authoring process for Inventory Documents, as required. Policy Playbook Updates: Execute updates to the … looking for candidates who possess strong attention to detail, excellent organisational skills, and the ability to manage multiple projects simultaneously. The ideal candidate will have experience in document management, risk assessment, and policy development. If you are ready to take on this exciting challenge and make a difference within a leading organisation, we encourage you to apply today. More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC (phone number removed More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC (phone number removed More ❯

featured on the Sifted 100 UK startups - among only 25 companies to have made the list over both years 2024 and 2025. We are seeking a skilled Consumer Credit Risk Strategy Analyst with 3+ years of experience in the UK credit markets, specifically within personal loans for debt consolidation. The successful candidate will play a critical role in assessing … monitoring, and optimising credit risk strategies to ensure a balanced approach between risk management and business growth. Key Responsibilities: Conduct portfolio analytics to assess risk trends, customer behaviour, and loan performance. Analyse credit data, customer profiles, and market trends to enhance underwriting criteria. Work closely with stakeholders to optimise credit policies and improve lending strategies. Utilise statistical … and machine learning techniques to support data-driven risk assessment methodologies. Monitor key performance indicators (KPIs) related to loan approvals, delinquencies, and charge-offs. Requirements Required Skills & Experience: 3+ years of experience in a credit risk role, preferably within personal loans and debt consolidation in the UK. Strong understanding of credit scoring models, risk analytics, and More ❯

month contract – London/Remote My Customer is seeking an experienced Senior Security Consultant to take a leading role in the end-to-end (Design, implementation) delivery of Governance, Risk & Compliance (GRC) and IT simplification initiatives. The Senior Security Consultant would be working at the heart of major programmes – including designing and implementing Security frameworks around cloud (Azure) migrations … influencing and communicating with stakeholders at all levels. Hands-on experience designing and supporting ISMS governance and security implementation across large programmes of work. Practical experience creating and conducting risk assessments, including project risk and third-party/vendor risk. Solid understanding of security frameworks and assessment methodologies (e.g., ISO 27001, NIST, CSA, CIS). Exposure to … project environments with competing priorities. Key Responsibilities for the Senior Security Consultant: Information Security - Ensure all project work and vendor engagements follow internal security policies, standards, and processes. Security Risk Assessment - Assess security, privacy, and compliance risks across internal projects and third-party suppliers IT Simplification and Cloud migration – Ensure security considerations are fully integrated into Azure migration More ❯

months Central Government experience in the last 5 years is strongly preferred. As an Aker Lead Security Architect, you will be a recognised subject matter expert in security, risk management and compliance with demonstrable experience in highly regulated industries, specifically UK Government and/or Defence. You will build effective working relationships with delivery team members and Aker customers … testing (e.g ITHC) of solutions on the public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series, NIST … CSF, and CSA Identify and deliver appropriate controls based on industry standards (e.g. CCM) to drive cloud and customer security solutions framework based on business risk and cloud native threats. Provide oversight and guidance on government security procedures and processes. Continually evaluate new threats in the cloud, to identify the impact on IT and the business to develop and More ❯

Group IT & Cyber Security, Risk and Governance Manager - Global, CISSP Up to £900 per day (Inside IR35) London/Hybrid (Must be UK Based) 6 Months initial contract My client is a high profile, instantly recognisable brand, who urgently require a Group IT & Security, Risk and Governance Manager who has worked in a Global, Group-wide set-up … and exceptional stakeholder management skills (up to and including C-Suite/Board level). Key Requirements: Proven experience as a Group IT & Security, Risk and Governance Manager within a large, complex organisation with a Global (muti-region) set-up Demonstrable experience of working on a Global scale, managing different regions (EMEA/Western Europe preferred) and key stakeholders … Previous experience of working in a Technology Group function, consisting of several market units governed centrally Relevant Professional Certifications (CISSP/CISM/CRISC) Expert in how to do Risk Management, including putting together Risk heat maps Exceptional Stakeholder Management and communication skills Capability to build the IT & Cyber process and move it on Strong understanding of IT More ❯

skills Experience of developing, testing and evaluation clinical software systems Experience of having delivered clinical/nursing IT projects, leading significant change, delivering tangible and sustained improvements Experience of risk assessment and risk management Desirable Experience of preparing reports for consideration and operational or strategic level Skills and Ability Essential Demonstrates knowledge and ability to advise the More ❯

role in evaluating security risks across projects, technology initiatives, and third-party suppliers. This is a chance to influence how a global firm approaches security governance, vendor assurance, and risk management. You'll operate in a complex, cloud-driven environment where safeguarding data, maintaining compliance, and ensuring robust security controls are essential to business operations. The Company The organisation … throughout the company. There is a strong emphasis on cloud adoption, modernisation, and automation, and they are committed to building a secure, future-ready environment. It's IT and risk teams collaborate closely with stakeholders across the business to ensure projects, platforms, and third-party partnerships are delivered securely and in line with best practice. The Role As an … Information Security Consultant, you'll assess the security impact of new initiatives, review third-party providers, and help guide stakeholders through risk and compliance requirements. You'll be involved in shaping and maintaining the organisation's security assessment practices, ensuring projects and suppliers meet internal standards and recognised industry frameworks. You will: ** Carry out project and supplier security More ❯

Audit & Risk Recruitment are delighted to be partnering with one of the UK's leading financial services organisations in their search for a Technology External Assurance Manager. This is an exciting opportunity to join a highly respected and forward-thinking business that places technology and innovation at the heart of its strategy. The successful candidate will play a key … role in managing third-party IT assurance, IT supplier risk management, and information security oversight, ensuring compliance within a complex and regulated environment. You will also lead a growing team, developing their IT Risk and control capabilities across the business. Based in London, Staines and Leeds. Flexible hybrid working policy looking for as little as 1-2 times … DOE and location Key Responsibilities Lead and deliver end-to-end supplier assurance across onboarding and ongoing monitoring activities. Conduct and oversee supplier IT audits, IT risk assessments, and IT due diligence reviews. Review supplier contracts to ensure alignment with internal policies and regulatory standards. Prepare and present risk assessment papers and assurance reports to senior stakeholders. More ❯