grow your career. Here, your voice and ideas matter, your work makes an impact, and together, you will help us decide the future of American Express. The Technology & Operational Risk Advisor will help ensure safe and sound banking & business operations by creating embedded partnerships focused on reducing technology and operational risk and advancing Technology Risk and Information … such information that could result in substantial harm or inconvenience to any customer This role will have a significant positive impact on the overall Operational, Technology, and Information Security risk posture of American Express and its legal entities by leading risk-reduction through clear and candid communication, early engagement in new products and projects, regulatory engagement, information security … and technology risk consultation. How will you make an impact in this role? We are seeking an experienced and proactive leader to be responsible for technology risk, operational risk and information security control enforcement as well as risk prioritization across Business Unit CIO groups, the business, and American Express legal entities. Responsibilities: Build strong partnerships with More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Deloitte LLP
five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber RiskAssessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. … Demonstrate familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯
Guildford, Surrey, United Kingdom Hybrid / WFH Options
Deloitte LLP
five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber RiskAssessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. … Demonstrate familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯
flows, and functional specifications. Act as a liaison between business, IT, and cybersecurity teams to ensure alignment of objectives. Support the design and implementation of asset management tools, vulnerability assessment platforms, and reporting dashboards. Ensure compliance with industry standards, regulations, and best practices in asset and vulnerability management. Facilitate workshops, stakeholder meetings, and presentations to drive decision-making and … Analyst, ideally within the utilities, energy, or critical infrastructure sectors. Someone who has worn many hats in IT - an all-rounder Asset Management Expertise: Familiarity with asset lifecycle management, riskassessment, and associated tools or platforms. Vulnerability Management Knowledge: Experience in vulnerability identification, tracking, and remediation processes. Technical Understanding: Knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001) and … and process maps. Stakeholder Engagement: Proven ability to build relationships and influence stakeholders at all levels. Tool Proficiency: Experience with tools such as ServiceNow, Power BI, JIRA, or vulnerability assessment platforms is highly desirable. Communication Skills: Excellent verbal and written communication, with the ability to present complex information clearly. Education: Bachelor's degree in Business Administration, Information Technology, or More ❯
Social network you want to login/join with: Head of Market risk and Market Data IT, slough col-narrow-left Client: Morgan McKinley Location: slough, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 4 Posted: 31.05.2025 Expiry Date: 15.07.2025 col-wide Job Description: The Risk IT division manages and mitigates … risks within financial markets, focusing on Market Risk, Credit Risk, and Market Data. Market Risk involves assessing and managing risks due to adverse price movements. Credit Risk focuses on evaluating and mitigating risks from borrower defaults. Market Data ensures the accuracy and timeliness of data for risk analysis and decision-making. Job Purpose: The Head … of Market Risk and Market Data IT leads the development, implementation, and management of technology solutions for market risk management and market data functions. This role oversees market risk models, ensures data integrity, and provides strategic direction to enhance market risk and market data processes. Collaboration with cross-functional teams, compliance with regulations, and driving innovation More ❯
Senior Cybersecurity Risk Analyst Remote – 3 month initial contract – Inside IR35 – up to £252 per day Our client are looking for an experienced Senior Cybersecurity Risk Analyst to join their team on an initial interim basis. This role is critical in identifying, assessing, and managing information security risks across the company. The ideal candidate will have a strong … technical background, the ability to translate threats into business risks, and experience working in fast-paced environments. Key Responsibilities Conduct in-depth security risk assessments across systems, applications, and infrastructure. Identify and evaluate technical and operational risks , vulnerabilities, and control gaps. Translate complex technical threats into clear, actionable business risks. Maintain and update the Cybersecurity Risk Register . … Produce detailed riskassessment reports and present findings to stakeholders. Collaborate with IT, SOC, and business units to ensure risks are understood and mitigated. Provide technical escalation support in the absence of a cybersecurity specialist, particularly in coordination with the Security Operations Centre (SOC). Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). Review More ❯
Coordinate the incident response process, including investigation, containment, and remediation of security breaches Perform forensic analysis to determine the root cause of incidents and develop strategies to prevent recurrence Risk Management and Compliance: Ensure compliance with recognised industry standards, such as SOC2, ISO 27001 and ISAE 3402 etc Assessment of Third-Party RiskAssessment responses and … diligence requests for both clients and vendors Collaborate with internal and external auditors to support security audits and assessments and develop risk mitigation plans Collaboration and Communication: Work closely with IT teams and other stakeholders to integrate and advise on suitable security controls for all systems, applications and projects Report security risks and strategies to senior management and non More ❯
advocate internal and external policy to shape the development of new laws and regulations consistent with company objectives. Develop and implement a compliance monitoring system. Coordinate a company-wide riskassessment process to identify potential risks and control solutions. Monitor actions to identify emerging risks and close gaps. Create internal partnerships with key stakeholders to influence and align … expertise, processes and networks together to solve the post-trade challenges of global financial markets. OSTTRA operates cross-asset post-trade processing networks, providing a proven suite of Credit Risk, Trade Workflow and Optimisation services. Together these solutions streamline post-trade workflows, enabling firms to connect to counterparties and utilities, manage credit risk, reduce operational risk and More ❯
participate on projects with varied industry and business imperative focus including business-related IT and OT challenges and cybersecurity, business applications, systems, and business process integration solutions Experience with riskassessment, especially cyber risk is preferred Additional Information The Team Business Value Consulting is a strategic, consultative team and is a critical member of Palo Alto Networks More ❯
Maidenhead, Berkshire, United Kingdom Hybrid / WFH Options
Wireless Logic Group
PE-backed group Treasury Management Systems (TMS): Demonstrable ability to personally manage operational treasury responsibilities Financial Modeling: Advanced skills in financial modeling, including cash flow forecasting, investment analysis, and risk assessment. Data Analysis & Visualization: Ability to analyze large datasets, identify trends, and create insightful reports using tools like Excel, and potentially PowerBI, or Tableau. Advanced Excel skills essential Foreign … Exchange (FX) Management: Knowledge of FX trading platforms and risk management tools. Debt Management: Experience with debt management systems and tools. Highly Self-Sufficient - thrives in a standalone role with full ownership Strong Communicator: Communicates clearly and confidently with senior stakeholders Banking Platforms: Experience with online banking platforms and electronic funds transfer systems. What Will Make You Shine at More ❯
Southampton, England, United Kingdom Hybrid / WFH Options
Zurich Insurance Company
on how to move our UK business forward. You will be asked to drive change and improve on a set of already well-established IT Controls and an IT Risk Management Framework to allow senior IT management, business functions and 3rd party service providers to demonstrate they are managing and safeguarding company assets, data, and operations. Your ideas will … Controls Manager and other governance colleagues to gather data and collate, aggregate and interpret information to provide the Boards of Directors, Business Executives and other interested parties with an assessment of the UK IT Risk and Controls landscape. You will also manage multiple demands for IT risk-based information within Zurich, ensuring all reporting commitments are met. … alongside local and regional Group IT functions, Service Providers (through internal and external suppliers), and business functions to ensure that Zurich is proactive in the management of IT Operational Risk and Controls. The role is varied, interesting, and there are genuine opportunities to get stuck in and make a difference What will you be doing? Perform regular and ad More ❯
coupled with our extensive experience of engineering, regulatory practices and operations delivery enable us to develop sustainable, long-term solutions for our clients. The Role As a Senior Consultant - Risk Manager , you will play a key role in delivering risk management solutions to clients, helping them identify, assess, and mitigate risks while ensuring regulatory compliance and operational resilience. … Your key responsibilities will include: Risk Strategy & Project Leadership: Develop and implement risk management frameworks, ensuring effective mitigation strategies Stakeholder Engagement: Collaborate with clients, regulators, and internal teams to align risk initiatives with business goals RiskAssessment & Compliance: Identify, assess, and monitor risks while ensuring adherence to regulatory and industry standards Data Analysis & Reporting: Provide … insights through risk modelling, scenario analysis, and strategic reporting Process Improvement & Advisory: Recommend enhancements to governance, controls, and resilience planning Apply to DAS if you want to work on varied, complex projects within a business that values your development, where no two days are alike, and where you'll have a tangible impact on critical infrastructure in the UK. More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Robert Walters
Assume a central role in formulating climate risk strategy by leading the quantification and modelling of climate change-related risks for the trading book, influencing critical business decisions across international markets. Benefit from a workplace culture that places great emphasis on professional development, offering extensive training opportunities, private healthcare provision, enhanced maternity and adoption pay, and generous employer pension … contributions. What you'll do: In the capacity of Climate Risk Quantitative Analyst based in London with access to hybrid working arrangements, you will assume a vital function in advancing the organisation's approach to managing climate-related risks associated with its trading activities. Your daily remit will encompass designing sophisticated quantitative models that accurately reflect the multifaceted impacts … of climate change on market exposures. You will engage collaboratively with internal stakeholders-including business leaders, traded risk managers, data vendors, and fellow analytics professionals-to ensure that all methodologies are meticulously developed and seamlessly integrated into decision-making processes. Beyond technical modelling responsibilities, you will be expected to communicate complex findings in an accessible manner to both technical More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Deloitte LLP
following: Shape the development of technology control management including scoping, development of and testing ServiceNow tools for ITRM processes in DT to allow for an effective, efficient and adaptable risk governance capability and contribute to its continuous improvement. Direct control development across DT, driving a consistent approach utilising the IRM capabilities within ServiceNow. Deliver the DT control library architecture … and control data management. Secure commitment from member firms and stakeholders in the global firm to participate in the Technology Standards and Maturity Assessment with the objective to assess the member firm's overall IT capability/maturity and to help them establish their own priorities. Keep abreast of new and emerging technologies being deployed and ensure riskassessment processes are appropriately applied and advise on decisions with technology risk impacts as new activities and other change management/transformational initiatives. Leverage available technical resources/tools to research; expand technology risk knowledge to enhance work product, to remain up to date on member firms and line of businesses hot topics while sharing the More ❯
Guildford, Surrey, United Kingdom Hybrid / WFH Options
Deloitte LLP
following: Shape the development of technology control management including scoping, development of and testing ServiceNow tools for ITRM processes in DT to allow for an effective, efficient and adaptable risk governance capability and contribute to its continuous improvement. Direct control development across DT, driving a consistent approach utilising the IRM capabilities within ServiceNow. Deliver the DT control library architecture … and control data management. Secure commitment from member firms and stakeholders in the global firm to participate in the Technology Standards and Maturity Assessment with the objective to assess the member firm's overall IT capability/maturity and to help them establish their own priorities. Keep abreast of new and emerging technologies being deployed and ensure riskassessment processes are appropriately applied and advise on decisions with technology risk impacts as new activities and other change management/transformational initiatives. Leverage available technical resources/tools to research; expand technology risk knowledge to enhance work product, to remain up to date on member firms and line of businesses hot topics while sharing the More ❯
the role Manage commercial activities for complex multi-domain bids. In a support role to sales, create structure and negotiate commercial and financial structure of bids with minimal residual risk, to address customer needs as well as Orange Business financial and business objective, in conjunction with policy requirements. Key accountabilities Advisor with significant experience and ability to support structuring … presentations to internal and external executives. In support of Sales, and in coordination with Legal, Finance and Solutions teams, create, structure and negotiate (internally and externally) commercial, financial and risk structure of bids from qualification through to customer proposal submission, negotiation and contract signature. In support of commercial structure inclusive of: Customer & Opportunity discovery & assessment including due diligence … flow-up; Heads of Agreements/MOU/LOI ; Technology refresh; Termination & termination liability; Penalties and liabilities; Governance model; Migration planning; Change management Key result/decision areas (outcomes) Risk is understood and mitigated through design and negotiation of business terms and conditions, and linked to the business case. Clearly presented overview of pricing and commercial terms to customers More ❯
banking client for several Interim Data Governance & Data Analysis roles at varying corporate levels. These positions are central to a high-impact Data Transformation Programme within the organisation’s Risk and Finance domains. This is an exciting opportunity for data professionals to drive change across the EMEA region by contributing to the strategic development and execution of the organisation … The Ideal Candidate The ideal candidate will bring strong expertise in Data Analysis combined with a working knowledge of: Data Governance principles BCBS239 regulatory frameworks ECB onboarding processes Operational Risk management practices This unique blend of skills will enable the successful candidate to provide both analytical depth and governance oversight, supporting the delivery of a robust and compliant data … environment. Key Responsibilities Conduct in-depth data analysis to support governance, quality, and riskassessment across Risk and Finance data assets. Lead the implementation of data governance initiatives aligned with BCBS239 and enterprise-wide standards. Manage data definitions, metadata, and lineage for high-priority data use cases, ensuring consistency and transparency. Collaborate with stakeholders to align business More ❯
banking client for several Interim Data Governance & Data Analysis roles at varying corporate levels. These positions are central to a high-impact Data Transformation Programme within the organisation’s Risk and Finance domains. This is an exciting opportunity for data professionals to drive change across the EMEA region by contributing to the strategic development and execution of the organisation … provide both analytical depth and governance oversight, supporting the delivery of a robust and compliant data environment. Key Responsibilities Conduct in-depth data analysis to support governance, quality, and riskassessment across Risk and Finance data assets. Lead the implementation of data governance initiatives aligned with BCBS239 and enterprise-wide standards. Manage data definitions, metadata, and lineage … needs with regulatory requirements and data governance frameworks. Investigate and analyse data quality issues , contributing to root cause analysis and remediation planning. Act as a subject matter expert on Risk and Finance data, providing analytical insights that shape governance practices. Promote data accountability and stewardship through education, engagement, and strategic influence across the organisation. Support ECB onboarding by ensuring More ❯
Reading, England, United Kingdom Hybrid / WFH Options
SITA
identify information security weaknesses and provide remediation strategies. You will also contribute to the automation of security testing as part of the product development lifecycle. Key Responsibilities Conduct authorized assessment of infrastructure and applications to proactively identify security weaknesses. Verify weaknesses by leveraging attacker techniques to evaluate the difficulty and effectiveness of potential attack from various threat actors. Provide … weaknesses, given the applicable threat landscape. Bring an offensive mindset to the design of internal solutions and provide input to the selection of countermeasures and security controls through technical risk assessment. Report findings to technical audiences (e.g.: product development teams, IT, operations), and to business management and leadership, indicating the impact to the business of verified weaknesses found. Research … e.g. ISO/IEC 27001, PCI DSS, etc.) Good understanding of common business applications (e.g. content management systems, application servers, databases, etc.) and how to leverage them in an assessment Good understanding of web technologies and how they are commonly subverted (e.g. OWASP Top 10) At least a basic understanding of development frameworks (.NET, Java,...) Ability to remain More ❯
business units, as requested, when a business disruption occurs and assist with recovery efforts Help Maintain the internal Business Continuity Management Website and network shared drive Participate in vendor risk management program on behalf of the BC in the Business Continuity review and evaluation in the vendor risk management program Co-assist the global emergency notification system to … and gathering timelines, data points and action items, and following up with responsible parties for close-out of assigned action items. Collaborate with various teams, including Facilities, IT, Operations, Risk as well as BCP stakeholders within each line of business at the firm ; Work closely with development teams who own/maintain BC related software and platforms. Perform other … V-Lookups, etc.) Excellent interpersonal and communication skills (written, verbal, presentation) Demonstrated skill in development of working relationships with key contacts both inside and outside the organization Understand Operational Risk in the Finance sector. Proven ability to work independently and manage multiple project initiatives, and as part of a team Ability to coordinate and implement Business Continuity strategies and More ❯
Data Science & Analytics Team Lead, Slough Client: LexisNexis Risk Solutions Location: Slough, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: About the Business: LexisNexis Risk Solutions is the essential partner in risk assessment. Within our Business Services vertical, we offer solutions focused on helping businesses … drive revenue, operational efficiency, and customer experience. Our solutions address challenges in Anti-Money Laundering, Identity Verification, Fraud, Credit Risk mitigation, and Customer Data Management. More information can be found at risk.lexisnexis.com About the team: You will lead and coach a team of early-career data analysts using global data from our fraud detection platform to craft solutions for … help build solutions to defend against motivated attackers. Responsibilities: Manage and motivate a team of 3-5 analysts, plan deliverables, and foster growth. Perform data analysis to identify high-risk behaviors and translate findings into actionable insights for deployment. Create summaries and present analysis to clients and prospects, coaching your team to do the same. Maintain a professional, customer More ❯
Security Risk Analyst - Artificial Intelligence (AI) - Machine Learning (ML) Our client, a global insurance organisation, is looking to recruit the services of an experienced Senior Risk Analyst with deep expertise in Artificial Intelligence (AI), Machine Learning (ML), and Large Language Models (LLMs) to join our client's Security Risk Management team. This role plays a pivotal part … in assessing and managing risks related to AI-driven projects across a global enterprise, ensuring new technologies are adopted safely and responsibly. Key Responsibilities Conduct enhanced risk assessments of AI/ML-based initiatives and proof-of-concepts. Evaluate AI systems for potential misuse, abuse, or adversarial threats. Collaborate with stakeholders across IT, Data Privacy, Innovation, and Business to … identify and mitigate risks. Translate complex technical risks into business-friendly language for executive audiences. Improve and evolve security riskassessment methodologies for advanced AI systems. Develop threat models and propose compensatory controls. Present findings to internal governance groups and help shape AI risk frameworks. Required Skills & Experience 10+ years of professional experience, including demonstrable AI/ More ❯
the role Manage commercial activities for complex multi-domain bids. In a support role to sales, create structure and negotiate commercial and financial structure of bids with minimal residual risk, to address customer needs as well as Orange Business financial and business objective, in conjunction with policy requirements. Key accountabilities Advisor with significant experience and ability to support structuring … presentations to internal and external executives. In support of Sales, and in coordination with Legal, Finance and Solutions teams, create, structure and negotiate (internally and externally) commercial, financial and risk structure of bids from qualification through to customer proposal submission, negotiation and contract signature. In support of commercial structure inclusive of: Customer & Opportunity discovery & assessment including due diligence … flow-up; Heads of Agreements/MOU/LOI ; Technology refresh; Termination & termination liability; Penalties and liabilities; Governance model; Migration planning; Change management Key result/decision areas (outcomes) Risk is understood and mitigated through design and negotiation of business terms and conditions, and linked to the business case. Clearly presented overview of pricing and commercial terms to customers More ❯
Leatherhead, England, United Kingdom Hybrid / WFH Options
Hyundai Motor UK
deploying and monitoring adherence to policies, processes and standards related to organisational and technical security. Being a SPOC for all aspects of cybersecurity within HMUK and leading incidents resolution. RiskAssessment and Management - Assess and identify potential security threats, vulnerabilities and developing strategies to mitigate these risks. Establish a vulnerability management process aligned with headquarters guidelines. Policy Development … to policies, processes and standards related to organisational and technical security. Being a SPOC for all aspects of cybersecurity within HMUK and leading incidents resolution. We Want You To: RiskAssessment and Management - Assess and identify potential security threats, vulnerabilities and developing strategies to mitigate these risks. Establish a vulnerability management process aligned with headquarters guidelines. Policy Development … and policies to both technical and non-technical stakeholders. Good project management skills At least 5 years’ experience in an IT security role, dealing with security management principles, including riskassessment, threat analysis, incident response, and security architecture Track record of continuous learning in the cybersecurity field Desirable - Certified information systems security professional (CISSP) We offer: What We More ❯
Epsom, England, United Kingdom Hybrid / WFH Options
AtkinsRéalis
support to our clients’ offshore cable projects. You will act Technical Lead for our offshore cable routing scopes of work, leading GIS based route analysis and offshore Cable Burial RiskAssessment (CBRA) scopes of work. This will include mentoring of junior members of staff in these activities. You will take the lead in developing AtkinsRéalis’ offshore cable routing … enhancement activities. Acting as a champion for offshore cable routing within AtkinsRéalis’ Marine Geoscience team. Providing technical input to bids for subsea cable routing scopes. Input to Cable Burial Risk Assessments (CBRA) and Depth of Lowering Assessments. Routing of offshore and onshore cables using GIS based analysis. GIS based analysis of geophysical, geospatial and geotechnical data and data management. … working as part of a multi-disciplinary team. Experience of offshore cable routing using ArcGIS, Makai Plan or AutoCAD. Experience in analyzing geotechnical and geospatial data for Cable Burial Risk Assessments (CBRA), or Depth of Lowering (DoL) assessments. Excellent interpersonal and technical skills and the ability to work independently or as part of a team on subsea cables projects. More ❯