1 to 25 of 107 Risk Assessment Jobs in the UK excluding London

bonus and benefits Hybrid working available (3 days in the office) Our client, a dynamic and rapidly growing UK-based EMI FinTech Payments firm, is seeking an experienced Enterprise Risk Analyst to support their Head of Risk. This is a focused Enterprise Risk Analyst role dedicated entirely to the Second Line of Defence (2LOD), centred on embedding the … firm’s Governance, Risk, and Compliance (GRC) model. You will be instrumental in the day-to-day operation of the ERM framework, ensuring risk is managed consistently and strategically across the entire business. Duties of the Enterprise Risk Analyst to include: Risk Register Management: Own the central Risk Register , ensuring all key risks (Strategic, Financial … Operational, and Compliance) are accurately identified, assessed, and maintained. Risk Assessment Cycle: Facilitate and manage the formal Risk and Control Self-Assessment (RCSA) process across all business units. Control Framework: Maintain and evolve the company’s Risk Control Framework , ensuring controls are effective and aligned with the established risk appetite. Residual Risk Analysis More ❯

Primary Details Time Type: Full time Worker Type: Employee The purpose of this role is to enhance risk assessment and decision-making processes through the provision of advanced risk modelling analytics. This is achieved through engaging with business stakeholders to define requirements and combining this Accumulation Management expertise and knowledge of data sets. Senior Cyber Risk … as a leading resource on cyber accumulations, providing expert guidance and insights to internal teams and external stakeholders. Collaborate with Global Cyber team other divisional stakeholders to develop effective risk mitigation strategies and optimize risk management processes. Collect, validate, and analyse large datasets related to cyber risks, ensuring data accuracy and reliability. Present findings in a clear and … QBE’s proprietary view of risk. Work closely with cross-functional teams, including Global Cyber team, underwriting, actuarial, and claims, to ensure a holistic understanding of the company's risk landscape. Communicate effectively with external stakeholders, including reinsurers and regulatory bodies, to maintain transparency and compliance with industry standards. Stay abreast of the latest developments in cyber modelling, risk More ❯

via salary finance Online savings- major retailers, utilities, entertainment plus many more! About Our Opportunity We are seeking a technically proficient and strategically minded Head of Information Security Governance, Risk and Compliance (GRC) to lead our governance, risk, and compliance functions. This role is ideal for a seasoned security professional with a strong technical foundation who can bridge … the gap between security operations and enterprise risk management. You will be responsible for developing and maintaining a robust GRC framework that aligns with business objectives, regulatory requirements, and industry best practices. What You Will Be Doing You’ll lead the governance, risk, and compliance functions across the enterprise, balancing strategic oversight with technical depth. This includes: Designing … security governance framework. Creating, enforcing, and monitoring security policies, standards, and procedures. Embedding security into business strategy and culture through close collaboration with senior leadership. Owning the organisation’s risk register and assessment processes. Leading technical risk assessments across infrastructure, applications, and third parties. Overseeing threat modelling and vulnerability management initiatives. Providing risk-based recommendations to More ❯

You will be responsible for assessing the project security posture, through the phases of project delivery and articulate the remediation activity via production of the Secure-By-Design self-assessment tracker. The ideal candidate will hold Active SC clearance and have a strong background in delivery Security Assurance support, with the following skills and experience: Experience of producing Secure … By-Design assessments (Risk Assessment Papers, Risk Treatment Plan, Risk Business Case & Security Management Plan). Experience of implementing vulnerability management processes. Experience of security assurance and the measurement of controls. Experience in risk and threat modelling within a high-threat government environment. More ❯

You will be responsible for assessing the project security posture, through the phases of project delivery and articulate the remediation activity via production of the Secure-By-Design self-assessment tracker. The ideal candidate will hold Active SC clearance and have a strong background in delivery Security Assurance support, with the following skills and experience: Experience of producing Secure … By-Design assessments (Risk Assessment Papers, Risk Treatment Plan, Risk Business Case & Security Management Plan). Experience of implementing vulnerability management processes. Experience of security assurance and the measurement of controls. Experience in risk and threat modelling within a high-threat government environment. More ❯

in moving to the beautiful county of Derbyshire, we can provide a generous relocation package of up to £8,000 and the key duties are: Provide psychiatric assessments, including assessment of risk to self and others. Manage patients under the care of the CAMHS Crisis and Liaison pathway including risk assessment and management. Liaison with community More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

Responsibilities Clearance Operational Support: Oversee and execute the screening, onboarding, review and data transfer requests fulfillment across all businesses within Citi as defined in rules provided by Independent Compliance Risk Management (ICRM). Discuss, implement and operationalize new country privacy and regulatory changes impacting the cross-border transfer process as advised by Country ICRM. Quality Assurance: Perform regular reviews … Contribute to Data Enablement Process: Provide support and guidance to the business in the execution of the transformational data enablement process to streamline, standardize and simplify global program related risk assessment questionnaires by driving efficiency through organizing questions into logical groups and reducing redundancies. Target State Process Model Implementation: Support the design and implementation of the target state … operational model for the Data Transfers Office, contributing to projects and initiatives to drive consistency and reduce risk in DTO processes. Team Collaboration: Lead, mentor, and train a high-performing team responsible for execution, coordination, and control adherence, fostering accountability, excellence and continuous improvement. Process Implementation & Enhancements: Assist in the implementation of a scalable and efficient operating model aligned More ❯

EAR Part-IS, CAA requirements, and emerging aviation security standards. This position requires deep expertise in cybersecurity frameworks, aviation security requirements, and the ability to balance innovation with robust risk management in our fast-paced, cutting-edge environment. Essential Experience: Minimum 8 years of information security experience, with at least 3 years in aerospace, aviation, or highly regulated industries … of aviation cybersecurity regulations, including EASA requirements, CAA frameworks, or similar aviation security standards Experience with industrial control systems security, particularly in safety-critical environments Demonstrated expertise in cybersecurity risk assessment and management methodologies specific to engineering and manufacturing environments Technical Expertise: Strong knowledge of cybersecurity frameworks (NIST, ISO 27001, aviation-specific standards) Experience with security architecture design … aviation-specific cybersecurity standards Lead cross-functional security initiatives across engineering, operations, and certification teams Provide security expertise to support ZeroAvia's certification programmes with FAA, CAA, and EASA Risk Management & Compliance: Conduct comprehensive cybersecurity risk assessments specific to aviation systems and hydrogen-electric propulsion technologies Ensure compliance with EASA EAR Part-IS regulations and UK aviation cybersecurity More ❯

within NHS England CSOC comprised of four primary functions: Intelligence Collection & Analysis - Perform collection, aggregation, analysis and contextualisation of healthcare and security information to produce actionable CTI. Cybersecurity Threat & Risk Assessment - Perform high-level risk assessments of current and emerging threats to the health & social care estate. Intelligence Dissemination & Reporting - Produce stakeholder-specific intelligence reporting for stakeholders. … supporting documents. Person Specification Knowledge Essential Proven knowledge of techniques, approaches and processes of digital threats; ability to detect, monitor, analyse and prevent digital threats. Demonstrable Knowledge of vulnerability assessment tools, techniques, models, and systems; ability to utilises the knowledge to identify vulnerabilities on network, operating system, mobile application, etc. Desirable Demonstrable knowledge of and ability to utilise a More ❯

IT Security, Data, Governance, Risk & Compliance (GRC) specialist to £95,000 plus excellent bonus and benefits package Security & Data Governance management, Risk & Compliance Strong stakeholder management experience ISO27001, NIST, GDPR, Data Governance frameworks Operational effectiveness, risk, compliance, policies, testing procedures Working alongside IT Security, Technology teams globally 3 days per week in the London office, occasional travel … is urgently seeking an experienced Data Governance & Security specialist to work in a small team alongside the IT Security and Technology teams to continue to develop and manage the Risk and Compliance requirements across the business. You will have a background in Financial Services and good Project Management skills to work alongside their internal IT Security and Technology teams … to develop, lead and control the governance and regulatory reporting required across the business. 1st line of defence - laws, compliance, risk, IT governance, security, data Work across various business functions to ensure compliance and risk assessment Implement industry best practices - ISO27001, GDPR etc Update senior stakeholders across the Group This is an outstanding opportunity for someone who More ❯

administrative tasks to help teams save time and use this for more value-added work. ***Preference will be given to internal Trust staff, as well as 'Priority' and 'At Risk' status including NHS At Risk staff throughout Devon who are able to display recent relevant experience as dictated by the Person Specification.*** Main duties of the job The … successful candidate will assist the Trust in the development, delivery and maintenance of cost-effective, risk-controlled, robust, reliable, responsive and secure automation solutions, primarily through the use of cloud-based automation tools, and software, with the aim to assist the organisation in eliminating paper and improving efficiency. The post holder's primary function is to operationally support the … 12. To keep abreast of team plans and all aspects of the automation development lifecycle. 13. Identify the most appropriate course of action to take based on technical knowledge, risk assessment, previous experiences and user requirements. 14. Organise/support with internal team meetings to track progress, project meetings, conduct project proposals and feasibility reviews 15. Deliver projects More ❯

of policy, standards, and procedures. Lead the collection, analysis, and presentation of InfoSec performance metrics, and prepare briefings for senior leaders on studies and plans. Analyse data from security assessment tools and systems, identify process inefficiencies, and contribute innovative solutions to improve security and efficiency across projects and initiatives Personal Specification: The below criteria will be scored during Shortlisting … S&I). Essential A professional certification (eg, CISM, CISSP, CompTIA Security+, CCSP or AWS certification). Degree in a related subject or relevant comparable education. Solid experience with risk assessment methodologies and vulnerability management processes, including relevant tooling. (S&I) Excellent analytical, problem-solving, and decision-making skills, with strong attention to detail. (I) Proficient in communicating More ❯

Job Overview: Experience of risk management and controls, applying risk principles to challenging business situations. Develop and implement comprehensive management strategies. Guide teams and foster a culture of security within the organisation. Conduct thorough risk assessment and identify potential cyber security weaknesses in projects. Articulate security controls, policies and procedures in a language which the Business More ❯

Job Overview: Experience of risk management and controls, applying risk principles to challenging business situations. Develop and implement comprehensive management strategies. Guide teams and foster a culture of security within the organisation. Conduct thorough risk assessment and identify potential cyber security weaknesses in projects. Articulate security controls, policies and procedures in a language which the Business More ❯

Job Overview: Experience of risk management and controls, applying risk principles to challenging business situations. Develop and implement comprehensive management strategies. Guide teams and foster a culture of security within the organisation. Conduct thorough risk assessment and identify potential cyber security weaknesses in projects. Articulate security controls, policies and procedures in a language which the Business More ❯

an incoming 3rd party managed SOC and the security tools in the Cloud environment (Defender and Sentinel) Oversee security architecture, vulnerability management, incident response, and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps Ensure compliance with financial regulations (e.g. GDPR, PCI DSS, SOX, FCA requirements) Establish and enforce security policies, standards, and procedures Report … security talent Experience/Skills Required Managing security for cloud-first environments specifically Microsoft Azure Implementing Security Operations Centres (SOC) and automated security monitoring Collaborate with the third-party risk management and vendor security programmes Experience with DevSecOps practices and secure software development lifecycle (SDLC) Proven leadership experience in information security within financial services Deep understanding of regulatory and … record of designing and implementing security frameworks (ISO 27001, NIST) Hands-on experience with SIEM, DLP, IAM, and endpoint security technologies, specifically Microsoft Defender XDR, Purview and Sentinel Excellent risk assessment and incident management skills Outstanding communication skills with the ability to influence stakeholders at all levels Strategic mindset with the capability to balance security controls and business More ❯

of policy, standards, and procedures. Lead the collection, analysis, and presentation of InfoSec performance metrics, and prepare briefings for senior leaders on studies and plans. Analyse data from security assessment tools and systems, identify process inefficiencies, and contribute innovative solutions to improve security and efficiency across projects and initiatives Personal Specification: The below criteria will be scored during Shortlisting … S&I). Essential A professional certification (e.g., CISM, CISSP, CompTIA Security+, CCSP or AWS certification). Degree in a related subject or relevant comparable education. Solid experience with risk assessment methodologies and vulnerability management processes, including relevant tooling. (S&I) Excellent analytical, problem-solving, and decision-making skills, with strong attention to detail. (I) Proficient in communicating More ❯

ISO 27001, PCI DSS, and Cyber Essentials Plus * Draft and update information security policies, procedures, and technical standards * Work with procurement and commercial teams to support supplier assurance and risk assessment * Contribute to tender responses and bid processes, ensuring security and compliance requirements are met * Promote good security practices and raise awareness across departments * Act as an escalation … stakeholder communication skills, both written and verbal * Ability to build effective working relationships and influence at all levels * Comfortable working independently and proactively across teams Desirable: * Experience in supplier risk management and/or tender processes * ISO 27001 Lead Auditor/Implementer, PCIP, CISM, CompTIA Security+, or CISMP certification What you get in return: * Up to £50,000 per More ❯

accounts and access. Implementation: Lead the deployment and configuration of PAM solutions, such as CyberArk, BeyondTrust, or other relevant technologies, ensuring they are properly integrated with existing IT infrastructure. Risk Assessment and Management: Conduct regular risk assessments related to privileged access, identifying potential security risks and vulnerabilities, and developing mitigation strategies. Governance and Compliance: Ensure that PAM More ❯

closely with project managers, cloud architects, DevOps teams, and security stakeholders to ensure Azure-based solutions meet enterprise security standards and compliance requirements, dealing with the following: Security Planning & Risk Assessment Analyze and define security requirements for Azure-based projects. Conduct threat modeling and risk assessments for cloud workloads. Support the secure configuration of Azure services (e.g. More ❯

of key technology risks and change projects. Additionally, you will work with the Head of Audit, Technology for our Ireland and Germany based businesses to ensure effective consideration of risk and coverage of shared infrastructure. You will also need excellent stakeholder skills with an ability to communicate across all levels of Canada Life with clarity and confidence working effectively … 2. Provide thought leadership around technology and change audit delivery including innovation of audit approaches to improve quality and speed of audit delivery. 3. Support the CIA in the risk assessment and planning process ensuring effective coverage across key CLUK technology risks and change projects. Proposing plan changes to respond to changes in the risk profile and … business assurance needs. 4. Proactively assess and communicate current state of risks and controls in technical areas such as zero trust (IAM), cloud risk, data security, software security, vulnerability management, supply chain security, cyber risk, analytics, breach handling and investigations, and security testing. 5. Reviewing audit engagements ensuring delivery is to the required quality and efficiency standards as More ❯