14 of 14 Risk Assessment Jobs in the Midlands

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party’s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you’ll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

our client, We are seeking an experienced Senior Information Security Analyst to provide immediate support to their Information Security team. This hybrid role combines technical security analysis with governance, risk, and compliance (GRC) activities, offering a unique opportunity to influence and maintain the organisation’s security posture. About the Role: The successful candidate will assess risks, review supplier and … is a hands-on delivery role requiring someone who can work independently, make sound judgments, and communicate effectively with both technical and non-technical stakeholders. Key Responsibilities: Security Governance & Risk Conduct security risk assessments for systems, projects, and suppliers, documenting findings consistently. Review, respond to, and attest security questionnaires and tender submissions. Support and track remediation actions arising … from risk assessments, audits, or incidents. Assist with maintaining the Information Security Risk Register and associated controls. Support compliance with ISO 27001, Cyber Essentials Plus, and DSPT. Provide input to security policies, standards, and process improvements. Technical Security Oversight Collaborate with IT and Security partners to review alerts, vulnerabilities, and incidents, providing risk-based recommendations. Review and More ❯

will be essential, to actively go out and discover items of potential interest to the team, ensuring that there is collaboration between the architects, SOC engineers and analysts, and risk managers to deliver a documented risk-based response to the present and future of anything that may be found. Main responsibilities As Cyber Threat and Vulnerability Manager your … day-to-day role will involve the need to: Working with the Security Leadership team to develop a strategic road map for an effective vulnerability detection, assessment, remediation, and threat intelligence program. Line management of the threat and vulnerability management team. Building sustainable relationships to champion the adoption of vulnerability and threat management, compliance, and penetration testing program across … the department's systems, networks, and applications. Recommend remediation strategies and provide advice on complex configuration changes in support of vulnerability remediation. Drive prioritisation of those vulnerabilities through a risk-based approach, to meet common organisational objectives such as regulatory compliance and audit functions. Development and maintenance of actionable key performance and risk indicators (KPI's & KRI's More ❯

About SPS: Special Projects and Services Limited (SPS) is a UK-based security and risk management company founded in 1991. Operating globally, SPS provides crisis response, risk assessment, medical operations support, and project management in high-risk or complex environments. Known for its expertise in global assistance and specialist security operations, SPS was acquired by Concentric … in 2025, strengthening its position as a trusted provider of integrated risk and crisis management solutions. Overview: You will support the delivery of IT services across the UK business, assisting with technical support, device management, and ongoing tech ops projects. This role provides structured, hands-on training in IT systems administration, cyber security, and compliance, contributing to the smooth More ❯

standards and lifecycle assurance within complex embedded or control software systems. Key Responsibilities Develop a full understanding of the software and its operational environment. Produce and maintain a Software Assessment Plan in line with BS EN 50716 requirements. Evaluate the conformity of the software process and deliverables to applicable standards and assigned SIL levels. Assess the competence of project … and inspections at appropriate development phases, including witnessing of testing activities. Identify, assess, and document any non-conformities or deviations from requirements, evaluating their safety impact. Ensure that the assessment plan is implemented and that all findings are clearly documented in a Software Assessment Report. Provide an independent professional judgment on the software's fitness for purpose, including … any constraints, assumptions, or risks. Maintain thorough assessment records and provide recommendations for improvement or risk control. Key Competencies & Experience : Proven technical competence in software engineering within a safety-critical or regulated domain (e.g. rail, automotive, aerospace, medical, industrial). In-depth understanding of BS EN 50716, BS EN 50128, and/or BS EN 50657. Experience in More ❯

various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training and monitoring of Staff compliance Enhance and maintain a high Microsoft 365 secure score by implementing … Microsoft advisories Identify, assess, and mitigate security risks to the organisation's data and infrastructure Oversee the creation and document management of polices and standards Complete a full assessment of all third-party applications Provide regular security reports to the CISO as required Advise the CISO, IT Team and the wider business on matters relating to cyber security Skills … environments, including the ability to assess third-party platforms, suppliers, and software for security risks Proven experience in developing and implementing information security policies, procedures, and controls. Familiarity with risk assessment methodologies and tools Regulated background essential Experience in managing information security incidents and conducting investigations Excellent communication and interpersonal skills, with the ability to effectively collaborate with More ❯

and maintenance of policies, procedures, associated guidelines, tools and training. Contribute to the security life cycle activities (concept through release) including regulatory certification/qualification (i.e. - The Risk Management Framework, ED-202A/DO-326A, Secure By Design, IEC 62443, etc.) Collaborate with government, customers, suppliers, and industry experts to meet system and program requirements. … and secure such cyber-physical systems. Experience or interest in cybersecurity and cyber threats (ie - designing secure products, systems, and applications; intrusion detection; digital forensics; system recovery; risk assessment tools and methods; security solutions, policies, standards, and procedures, etc.). Knowledge and/or experience in applying Systems Security policies and standards to the … engineering of cyber-physical systems such as NIST SP (Apply online only), DO-326, UK Secure By Design, IEC 62443, the Risk Management Framework (RMF), and DoDI 5000.83. Excellent communications skills: able to influence without authority and describe complex ideas simply and succinctly to non-technical people. We are an equal opportunities employer. We More ❯

About the Department The Risk and Information Governance Department plays a critical role in ensuring the SRA's compliance with regulatory and security standards. We work collaboratively across the organisation to manage risk, protect information assets, and uphold the highest standards of governance and assurance. The Role This is an exciting opportunity to lead and manage the SRA … be a subject matter expert, providing strategic advice and operational support to ensure robust information security practices are embedded across the organisation. You'll work closely with IT Security, Risk, and Governance colleagues to assess and manage risks, investigate incidents, and deliver assurance activities. You'll also lead internal audits, maintain compliance with PCI DSS, and manage external certification … strategic decisions and drive security awareness What we're looking for Essential: Strong knowledge of ISO:27001 and experience managing an ISMS Recognised security qualification (e.g. CISM) Experience in risk assessment, incident management, and internal auditing Ability to interpret vulnerability scans, penetration tests, and IT health checks Excellent communication and stakeholder management skills Knowledge of Data Protection legislation More ❯

convictions, cautions, reprimands, and final warnings that are not protected under the Exceptions Order 1975. Any offer of employment will be conditional upon a satisfactory DBS certificate and a risk assessment of any disclosed information. We are committed to fair recruitment and will consider disclosed information on a case-by-case basis, in line with our policy on More ❯

convictions, cautions, reprimands, and final warnings that are not protected under the Exceptions Order 1975. Any offer of employment will be conditional upon a satisfactory DBS certificate and a risk assessment of any disclosed information. We are committed to fair recruitment and will consider disclosed information on a case-by-case basis, in line with our policy on More ❯

the Minerva Platform, supporting HMRC's Modernizing, Mandating Tax Advisor Registration (MMTAR) initiative. This project will deliver a unified, automated registration journey for tax agents across multiple regimes, incorporating risk assessment and advanced data processing. You'll play a key role in designing and implementing ingestion and risking capabilities within the SAS Platform, including IDP, as part of More ❯

the Minerva Platform, supporting HMRC's Modernizing, Mandating Tax Advisor Registration (MMTAR) initiative. This project will deliver a unified, automated registration journey for tax agents across multiple regimes, incorporating risk assessment and advanced data processing. You'll play a key role in designing and implementing ingestion and risking capabilities within the SAS Platform, including IDP, as part of More ❯

Technologies and the university. Representing the team in internal and external user groups. Analytical & Problem-Solving Skills Investigating operational needs and implementing enhancements. Reviewing new functionality and coordinating upgrades. Risk assessment and mitigation for university systems. Training & Documentation Advising users and maintaining up-to-date operational and training documentation. Supporting service transition and change management processes. If this More ❯

the oil & gas, power generation and petrochemical sectors Earn a realistic OTE of £75k£90k with overtime and overseas allowances (£50 per day standard/£100 per day high-risk countries) Receive paid travel, accommodation and downtime between international trips Work in a supportive, technically focused environment that values safety, innovation and collaboration Ongoing professional development and hands-on … maintain PLC and combustion systems at global client sites Troubleshoot automation and fired-equipment systems to identify and resolve issues Conduct fault analysis, retrofit work and installation supervision Prepare Risk Assessment Method Statements (RAMS) and site visit reports Start up and support systems such as: Flare systems and flare gas recovery units Boiler and process burners Thermal oxidisers More ❯