1 to 25 of 223 Risk Assessment Jobs in the UK

Opportunity Overview sitemap_outline CORPORATE TITLE Associate language OFFICE LOCATION(S) London assignment JOB FUNCTION Liquidity Risk account_balance DIVISION Risk Division RISK Our Risk division develops comprehensive processes to monitor, assess, and manage the risk of expected and unexpected events that may have an adverse impact on the firm. Risk professionals execute critical … day-to-day risk management activities, lead projects and contribute to the ongoing advancement of a robust risk management program. FINANCE RISK (FR) Finance Risk is the independent risk management function responsible for overseeing the firm's accrual rates and liquidity risk. We work closely with Global Banking and Markets, Asset and Wealth Management and … Platform Solutions, as well as the broader Risk organization to provide independent risk assessment and oversight of the firm's risk taking. Key functions include: Risk Oversight: Monitor, govern, and challenge Corporate Treasury execution activities, including accrual rates risk management, liability management, cash & collateral management, funds transfer pricing, balance sheet usage, liquidity and funding More ❯

Principal Security Engineer (Risk Specialist) Role OVO-View Experience: Expert Working pattern: Full-Time Reporting to: Director of Information Security Sponsorship: Unfortunately we are unable to offer sponsorship for this role This role in 3 words: Pragmatic, Engaging, Builder Top 3 qualities for this role: Data-driven, Communication, Automator Where you'll work Depending on the needs of your … plays a gigantic role in making that happen. Here's how: In this individual contributor role, you'll help shape and deliver the strategic vision for OVO's Digital Risk engineering programme. This includes developing automated, data-driven risk assessments, risk quantification and introducing accountability measures such as risk exceptions and capacity monitoring. You'll work … both within the immediate team and collaboratively across a wide range of teams throughout OVO. This role in a nutshell As a Principal Security Engineer (Risk Specialist) at OVO, you will be a key technical leader responsible for shaping the risk and security engineering strategies. This involves deep hands-on expertise, strategic thinking, guiding architectural decisions, embedding risk More ❯

maintained throughout the project lifecycle working alongside both internal and external suppliers. • Qualification and quantification of business benefits relating to requirements for change and improved business processes, including impact assessment of change requests to scope and requirements. • Ensure the quality & timeliness of the analysis, requirements, specifications & acceptance criteria produced with the security engineering function to guide the strategy around … risks they need to address and the correct selection and implementation of controls. • work directly with multiple IT infrastructure and application development projects and teams to apply standard technical risk assessment methods to identify and prioritize risks for remediation • Review architecture and design documents to help ensure the correct implementation of security technology controls • contribute to the development … of improved risk assessment approaches • contribute to the systemization of the delivery of security advisory services Experience: Knowledge of risk management concepts including risk assessment and risk treatment techniques and methodologies, including: • Risk Assessment methods and frameworks (IRAM2, OCTAVE, NIST, ISO 27005 etc) • Information Security Management System frameworks and standards and their More ❯

maintained throughout the project lifecycle working alongside both internal and external suppliers. • Qualification and quantification of business benefits relating to requirements for change and improved business processes, including impact assessment of change requests to scope and requirements. • Ensure the quality & timeliness of the analysis, requirements, specifications & acceptance criteria produced with the security engineering function to guide the strategy around … risks they need to address and the correct selection and implementation of controls. • work directly with multiple IT infrastructure and application development projects and teams to apply standard technical risk assessment methods to identify and prioritize risks for remediation • Review architecture and design documents to help ensure the correct implementation of security technology controls • contribute to the development … of improved risk assessment approaches • contribute to the systemization of the delivery of security advisory services Experience: Knowledge of risk management concepts including risk assessment and risk treatment techniques and methodologies, including: • Risk Assessment methods and frameworks (IRAM2, OCTAVE, NIST, ISO 27005 etc) • Information Security Management System frameworks and standards and their More ❯

maintained throughout the project lifecycle working alongside both internal and external suppliers. • Qualification and quantification of business benefits relating to requirements for change and improved business processes, including impact assessment of change requests to scope and requirements. • Ensure the quality & timeliness of the analysis, requirements, specifications & acceptance criteria produced with the security engineering function to guide the strategy around … risks they need to address and the correct selection and implementation of controls. • work directly with multiple IT infrastructure and application development projects and teams to apply standard technical risk assessment methods to identify and prioritize risks for remediation • Review architecture and design documents to help ensure the correct implementation of security technology controls • contribute to the development … of improved risk assessment approaches • contribute to the systemization of the delivery of security advisory services Experience: Knowledge of risk management concepts including risk assessment and risk treatment techniques and methodologies, including: • Risk Assessment methods and frameworks (IRAM2, OCTAVE, NIST, ISO 27005 etc) • Information Security Management System frameworks and standards and their More ❯

maintained throughout the project lifecycle working alongside both internal and external suppliers. • Qualification and quantification of business benefits relating to requirements for change and improved business processes, including impact assessment of change requests to scope and requirements. • Ensure the quality & timeliness of the analysis, requirements, specifications & acceptance criteria produced with the security engineering function to guide the strategy around … risks they need to address and the correct selection and implementation of controls. • work directly with multiple IT infrastructure and application development projects and teams to apply standard technical risk assessment methods to identify and prioritize risks for remediation • Review architecture and design documents to help ensure the correct implementation of security technology controls • contribute to the development … of improved risk assessment approaches • contribute to the systemization of the delivery of security advisory services Experience: Knowledge of risk management concepts including risk assessment and risk treatment techniques and methodologies, including: • Risk Assessment methods and frameworks (IRAM2, OCTAVE, NIST, ISO 27005 etc) • Information Security Management System frameworks and standards and their More ❯

help shape the future of finance, Paynetics is where your work will make a difference on a global scale. Paynetics UK is seeking an experienced and pragmatic Third Party Risk Manager to design, implement, and oversee the firm’s third party and outsourcing risk management framework. This role is pivotal in ensuring compliance with FCA outsourcing and operational … management in financial services, combined with the ability to deliver practical oversight and advice in a fast-paced environment. What you'll do: 1. UK Outsourcing and Third Party Risk Framework • Lead the design, development, and maintenance of Paynetics UK’s Third Party Risk Management Framework, ensuring compliance with FCA rules (SYSC 8, operational resilience, DORA, and PRA … SS2/21 where applicable). • Define risk appetite, governance structures, and control standards for outsourcing and vendor management. • Ensure proportionate oversight and due diligence aligned with the materiality of services and regulatory requirements. • Maintain an up-to-date Outsourcing and Third Party Register, ensuring that risk assessments and contract records remain current and accurate. 2. Group-Level More ❯

help shape the future of finance, Paynetics is where your work will make a difference on a global scale. Paynetics UK is seeking an experienced and pragmatic Third Party Risk Manager to design, implement, and oversee the firm’s third party and outsourcing risk management framework. This role is pivotal in ensuring compliance with FCA outsourcing and operational … management in financial services, combined with the ability to deliver practical oversight and advice in a fast-paced environment. What you'll do: 1. UK Outsourcing and Third Party Risk Framework • Lead the design, development, and maintenance of Paynetics UK’s Third Party Risk Management Framework, ensuring compliance with FCA rules (SYSC 8, operational resilience, DORA, and PRA … SS2/21 where applicable). • Define risk appetite, governance structures, and control standards for outsourcing and vendor management. • Ensure proportionate oversight and due diligence aligned with the materiality of services and regulatory requirements. • Maintain an up-to-date Outsourcing and Third Party Register, ensuring that risk assessments and contract records remain current and accurate. 2. Group-Level More ❯

bonus and benefits Hybrid working available (3 days in the office) Our client, a dynamic and rapidly growing UK-based EMI FinTech Payments firm, is seeking an experienced Enterprise Risk Analyst to support their Head of Risk. This is a focused Enterprise Risk Analyst role dedicated entirely to the Second Line of Defence (2LOD), centred on embedding the … firm’s Governance, Risk, and Compliance (GRC) model. You will be instrumental in the day-to-day operation of the ERM framework, ensuring risk is managed consistently and strategically across the entire business. Duties of the Enterprise Risk Analyst to include: Risk Register Management: Own the central Risk Register , ensuring all key risks (Strategic, Financial … Operational, and Compliance) are accurately identified, assessed, and maintained. Risk Assessment Cycle: Facilitate and manage the formal Risk and Control Self-Assessment (RCSA) process across all business units. Control Framework: Maintain and evolve the company’s Risk Control Framework , ensuring controls are effective and aligned with the established risk appetite. Residual Risk Analysis More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Cyber Security Supply Chain Analyst Location: Remote Contract: Inside IR35 Day rate: Up to £670 per day Duration: 6 Months Start date: ASAP Key skills: Supply Chain, Risk Management, TPRM process, NCSC CAF framework We have an opportunity with one of the UK's biggest Retailers who have a network of branches nationwide. MI & Data Automation Analyst, you will … and wider business functions responsible for facilitating supplier onboarding, operational management and offboarding activities, to review, establish and drive adoption of a revised target operating model for supplier security risk management. The goal is to ensure that the Client has a robust and continually managed enterprise-wide supplier cyber risk assessment process to reduce exposure to potential … compromise of security, compliance or operational integrity of its supply chain. Principal accountabilities: - Key point of contact and subject matter expertise for third-party risk guidance - Oversee the review of target supply chain risk assessment processes, establishing agreed recommendations and operating model in accordance with the National Cyber Security Centre Cyber Assessment Framework principles - Product and More ❯

lead the SME lending operations and capital markets strategy of our business. This role will be responsible for orchestrating the end-to-end lending lifecycle, structuring funding strategies, managing risk, and cultivating investor and capital market relationships. You will ensure that our lending portfolio grows in a disciplined fashion while ensuring capital sufficiency, compliance, and profitability. What do we … want to achieve together? Lending Operations & Strategy Define and execute the lending strategy for SMEs aligned with business goals and market dynamics Oversee origination, underwriting, credit assessment, approval, documentation, disbursement, and servicing of loans Develop credit policies, guidelines, scoring models, and risk frameworks Monitor portfolio performance, credit quality, delinquencies, provisions, and take corrective actions when needed Lead a … Ensure compliance with regulatory and reporting requirements for capital markets instruments Forecast capital needs, liquidity, cash flow, and funding gaps Lead negotiations, structuring, and issuance of capital markets transactions Risk Management & Governance Oversee risk measurement and management: credit risk, market risk, liquidity risk, operational risk Implement and maintain models and metrics (e.g. stress testing More ❯

SARIA Food & Pharma Business Continuity Management System (BCMS), ensuring alignment with ISO22301, ISO27001 and any other relevant industry standards and regulatory requirements Oversee the Business Impact Analysis (BIAs) and risk assessment process to identify critical business processes and systems and determine the potential impact of disruptions. Evaluate and contribute to the development and maturing of risk mitigation … strategies based on comprehensive risk modelling. Coordinate the development of crisis management and business continuity plans, aligning with key stakeholders to ensure engagement and awareness in key business areas Organise and facilitate business continuity and crisis management exercises, including developing remediation plans and process improvements resulting from exercise results. Training team members on business continuity and crisis management topics. … Support the development and management of a security risk framework, aligning with the enterprise risk management approach. Support the development and delivery of compliance training and awareness, foster a culture of risk awareness and accountability across the organisation. Provide advice to stakeholders on business continuity and disaster recovery topics. About you Knowledge and experience in ISO22301 and More ❯

SARIA Food & Pharma Business Continuity Management System (BCMS), ensuring alignment with ISO22301, ISO27001 and any other relevant industry standards and regulatory requirements Oversee the Business Impact Analysis (BIAs) and risk assessment process to identify critical business processes and systems and determine the potential impact of disruptions. Evaluate and contribute to the development and maturing of risk mitigation … strategies based on comprehensive risk modelling. Coordinate the development of crisis management and business continuity plans, aligning with key stakeholders to ensure engagement and awareness in key business areas Organise and facilitate business continuity and crisis management exercises, including developing remediation plans and process improvements resulting from exercise results. Training team members on business continuity and crisis management topics. … Support the development and management of a security risk framework, aligning with the enterprise risk management approach. Support the development and delivery of compliance training and awareness, foster a culture of risk awareness and accountability across the organisation. Provide advice to stakeholders on business continuity and disaster recovery topics. About you Knowledge and experience in ISO22301 and More ❯

SARIA Food & Pharma Business Continuity Management System (BCMS), ensuring alignment with ISO22301, ISO27001 and any other relevant industry standards and regulatory requirements Oversee the Business Impact Analysis (BIAs) and risk assessment process to identify critical business processes and systems and determine the potential impact of disruptions. Evaluate and contribute to the development and maturing of risk mitigation … strategies based on comprehensive risk modelling. Coordinate the development of crisis management and business continuity plans, aligning with key stakeholders to ensure engagement and awareness in key business areas Organise and facilitate business continuity and crisis management exercises, including developing remediation plans and process improvements resulting from exercise results. Training team members on business continuity and crisis management topics. … Support the development and management of a security risk framework, aligning with the enterprise risk management approach. Support the development and delivery of compliance training and awareness, foster a culture of risk awareness and accountability across the organisation. Provide advice to stakeholders on business continuity and disaster recovery topics. About you Knowledge and experience in ISO22301 and More ❯

digital estate, encompassing enterprise IT, operational technology (OT), and research platforms. This role sits within the Information & Cyber Security Group and provides subject matter expertise in security architecture, cyber risk governance, and assurance frameworks. This is a cross-functional role with both advisory and hands-on responsibilities, focusing on security assurance, risk management and supporting architecture reviews, vulnerability … management, risk assessments, cyber defence posture, driving technical assurance, and embedding risk-aligned security controls across IT and OT systems and secure-by-design practices. You will work across hybrid environments including cloud, infrastructure, applications, and OT systems. You will be responsible for designing and advising on security architecture patterns, reviewing and maintaining risk registers, leading assurance … Cyber Essentials (CE and CE+) while supporting the secure operation of core services. The role requires strong stakeholder engagement, technical depth, and a sound understanding of UK-specific cyber risk frameworks. You will help shape and maintain a secure posture across UKAEA. A degree in Cybersecurity, Information Technology, or a STEM subject (or equivalent experience). Essential o Security More ❯

Primary Details Time Type: Full time Worker Type: Employee The purpose of this role is to enhance risk assessment and decision-making processes through the provision of advanced risk modelling analytics. This is achieved through engaging with business stakeholders to define requirements and combining this Accumulation Management expertise and knowledge of data sets. Senior Cyber Risk … as a leading resource on cyber accumulations, providing expert guidance and insights to internal teams and external stakeholders. Collaborate with Global Cyber team other divisional stakeholders to develop effective risk mitigation strategies and optimize risk management processes. Collect, validate, and analyse large datasets related to cyber risks, ensuring data accuracy and reliability. Present findings in a clear and … QBE’s proprietary view of risk. Work closely with cross-functional teams, including Global Cyber team, underwriting, actuarial, and claims, to ensure a holistic understanding of the company's risk landscape. Communicate effectively with external stakeholders, including reinsurers and regulatory bodies, to maintain transparency and compliance with industry standards. Stay abreast of the latest developments in cyber modelling, risk More ❯

Regional Risk and Quality Assurance Manager (f/m/d) Full or part time Empowering You - to feel our passion for technology As NTT DATA Business Solutions, we are more than just a company. We are a team of passionate people who drive innovation - from advisory and implementation to managed services and beyond. With SAP at our core … and initiatives to improve our consulting business aiming at increasing consulting quality, streamlining approaches across countries and developing consultants in their respective fields. Within GFC, the Global Quality and Risk Unit (GQR) is in charge of defining, implementing and enforcing Risk Management processes within all NTT DATA Business Solutions companies. The Risk and Quality Assurance team effectively … monitors risks throughout the various project phases in an operative manner. You as the Regional Risk and Quality Assurance Manager will directly manage Risk, Quality Assurance processes for selected projects, and you will directly engage with and coordinate FTEs. Implementation and execution of Risk and Quality Assurance Management for selected Consulting projects: Execution of risk assessments More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You'll be highly motivated, pro-active and … Chain Analyst, you'll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You'll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You'll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement - it's a great time to join us at S&W. This role is a permanent position More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯