1 to 25 of 347 Risk Assessment Jobs in the UK excluding London

presence of 15 offices (and 10 delivery centers) across four continents. We enable #HumanFirstDIGITAL Key Responsibilities: • Design, develop, and maintain logical and physical data models to support audit and risk assessment processes. • Build, maintain and optimize data pipelines and data warehousing solutions for structured and unstructured data. • Develop and implement reporting and analytics solutions using tools such as … Python and Tableau. • Design and develop interactive dashboards that effectively communicate audit insights and risk assessments. • Collaborate with auditors, business stakeholders, and IT teams to understand data requirements and carry out data analysis to ensure alignment with audit objectives. • Perform data validation, integrity checks, and governance to ensure consistency and compliance with regulatory requirements. • Utilize SQL, data modeling tools … SQL developer. • Hands-on experience working with reporting and analytics tools such as Tableau and Python • Familiarity with cloud platforms (AWS, Azure, or GCP) • Knowledge of internal audit processes, risk management, and compliance frameworks is highly desirable. • Strong problem-solving, analytical, and critical-thinking skills. • Excellent communication and collaboration skills to work effectively with cross-functional teams. • Ability to More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. … Demonstrate familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. … Demonstrate familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. … Demonstrate familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

knowledge, and experience throughout your career, then that is what you will get, and more. Job Summary: The Vulnerability & Compliance Lead is responsible for tracking and managing the identification, assessment, and remediation of security vulnerabilities across the organization's infrastructure and endpoints and monitoring and reporting on vulnerability and other security compliance status. This role requires collaboration with various … standards and regulations Exception Management: Identify, document, submit and track instances where the implementation of security patches or configuration controls needs to be delayed for business or technical reasons Risk Assessment: evaluate potential risks and impacts of granting a security exception, considering immediate needs and long-term implications Exception Renewal: periodically review active exceptions to determine if they … request extension or revoke them as appropriate Technical Skills: Proficient in using Information Technology tools such as ServiceNow, Azure DevOps, Qualys, Absolute, and CrowdStrike Hands-on experience with vulnerability assessment and remediation tools Knowledge of cybersecurity concepts and methods including, but not limited to, secure configuration management, data protection, security monitoring, incident response, patch management, governance, enterprise security strategies More ❯

Job Description Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management. As a Tech Risk & Controls Lead in Cloud Foundational Services, you will be responsible for identifying, and mitigating compliance and operational risks in line with the firm's standards within our Cloud environment. You will … legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively manage a … diverse team in a dynamic and evolving risk landscape. Job responsibilities Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations in Cloud environments Develop and maintain robust relationships, becoming a trusted partner with business technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared More ❯

Job Description: Job Title Information Technology (IT) Auditor - Investment Banking Location Birmingham Corporate Title Assistant Vice President The Group Audit (GA) function takes a proactive, risk-based and independent approach to assist the Bank's business and infrastructure functions to identify key control weaknesses. You will be joining the global GA Investment Banking Application & Innovation Technology team reporting into … the effectiveness of internal IT controls supporting Innovation and Investment Banking areas including Fixed Income & Currencies, Electronic Trading, Origination and Advisory in accordance with GA methodology and the established risk assessment framework Conduct technology assessments, continuous monitoring and complete all work assignments on a timely basis - including planned audits, finding validations, and ad-hoc projects Prepare, coordinate and … and audit management, facilitate tracking and closure validation of findings Stay abreast of business/industry changes and their effect on the team's audit plan, GA methodology and risk assessments Pro-actively develop and maintain professional working relationships with colleagues, the business and respective support areas. Contribute to departmental projects and initiatives Your skills and experience Experience in More ❯

Harvey's IT environment and enterprise applications, you will be responsible for the operational management of the Company's Information Security Management System and ensuring that our IT governance, risk management, and compliance measures are effective and implemented. The role will support the implementation and maintenance of security controls across the group, aligned with our cyber security policy, group … are as secure as possible. Create and maintain security documents (policies, standards, baselines, guidelines, and procedures). Maintain & improve Business Continuity and Disaster Recovery plans. Contribute to the IT risk register and mitigation plans. Ensure Endpoint security compliance, including Mobile Device Management. Organise audits, external and internal vulnerability scans, web, infrastructure and application penetration tests and ensure remediation of … effectively with technical and non-technical colleagues at all levels in the organisation. Essential Previous experience within a cyber/information security role. Strong knowledge and understanding of security risk assessment, including security testing principles and tools. Network, operating system, application and organisational security concepts. An investigative and analytical nature with a focus on ensuring the organisation is More ❯

of a significant programme, during which you will ensure that the product and associated deliverables are as secure as reasonably practicable, and in accordance with customer’s requirements and risk appetite. You will be supported in this role as part of a larger consulting team, engineers and product domain specialists. Your work at Leonardo UK will see you take … and detailed system and security designs as they pertain to the cyber domain. Decomposing cyber and security requirements down to the system control level. Conducting cyber and information security risk assessment activities including threat modelling, vulnerability analysis and analysis of mitigations, including technical understanding. Scoping and managing security verification and validation activities and remedial action plans. Coordinating with More ❯

This is an exciting opportunity to be part of significant programmes, during which you will ensure that products meet the highest standards, in accordance with customer's requirements and risk appetite. You will be supported in this role as part of a larger team of consultants, engineers and product domain specialists. Your work at Leonardo UK will see you … and detailed system and security designs as they pertain to the cyber domain. Decomposing cyber and security requirements down to the system control level. Conducting cyber and information security risk assessment activities including threat modelling, vulnerability analysis and analysis of mitigations. Scoping and managing security verification & validation activities and remedial action plans. Coordinating with product engineers, system architects More ❯

This is an exciting opportunity to be part of significant programmes, during which you will ensure that products meet the highest standards, in accordance with customer’s requirements and risk appetite. You will be supported in this role as part of a larger team of consultants, engineers and product domain specialists. Your work at Leonardo UK will see you … and detailed system and security designs as they pertain to the cyber domain. Decomposing cyber and security requirements down to the system control level. Conducting cyber and information security risk assessment activities including threat modelling, vulnerability analysis and analysis of mitigations. Scoping and managing security verification & validation activities and remedial action plans. Coordinating with product engineers, system architects More ❯

of a significant programme, during which you will ensure that the product and associated deliverables are as secure as reasonably practicable, and in accordance with customer's requirements and risk appetite. You will be supported in this role as part of a larger consulting team, engineers and product domain specialists. Your work at Leonardo UK will see you take … and detailed system and security designs as they pertain to the cyber domain. Decomposing cyber and security requirements down to the system control level. Conducting cyber and information security risk assessment activities including threat modelling, vulnerability analysis and analysis of mitigations, including technical understanding. Scoping and managing security verification and validation activities and remedial action plans. Coordinating with More ❯

This is an exciting opportunity to be part of significant programmes, during which you will ensure that products meet the highest standards, in accordance with customer's requirements and risk appetite. You will be supported in this role as part of a larger team of consultants, engineers and product domain specialists. Your work at Leonardo UK will see you … and detailed system and security designs as they pertain to the cyber domain. Decomposing cyber and security requirements down to the system control level. Conducting cyber and information security risk assessment activities including threat modelling, vulnerability analysis and analysis of mitigations. Scoping and managing security verification & validation activities and remedial action plans. Coordinating with product engineers, system architects More ❯

Social network you want to login/join with: Technology Risk & Controls Lead - Cloud, Bournemouth col-narrow-left Client: Location: Bournemouth, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 7728931e39d0 Job Views: 10 Posted: 22.06.2025 Expiry Date: 06.08.2025 col-wide Job Description: Join our team to play a pivotal role in … mitigating tech risks and upholding operational excellence, driving innovation in risk management. As a Tech Risk & Controls Lead in Cloud Foundational Services, you will be responsible for identifying, and mitigating compliance and operational risks in line with the firm's standards within our Cloud environment. You will also provide subject matter expertise and technical guidance to technology-aligned … legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively manage a More ❯

Senior Cybersecurity Risk Analyst Remote – 3 month initial contract – Inside IR35 – up to £252 per day Our client are looking for an experienced Senior Cybersecurity Risk Analyst to join their team on an initial interim basis. This role is critical in identifying, assessing, and managing information security risks across the company. The ideal candidate will have a strong … technical background, the ability to translate threats into business risks, and experience working in fast-paced environments. Key Responsibilities Conduct in-depth security risk assessments across systems, applications, and infrastructure. Identify and evaluate technical and operational risks , vulnerabilities, and control gaps. Translate complex technical threats into clear, actionable business risks. Maintain and update the Cybersecurity Risk Register . … Produce detailed risk assessment reports and present findings to stakeholders. Collaborate with IT, SOC, and business units to ensure risks are understood and mitigated. Provide technical escalation support in the absence of a cybersecurity specialist, particularly in coordination with the Security Operations Centre (SOC). Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). Review More ❯

Senior Cybersecurity Risk Analyst (Remote) needed, £28.49ph PAYE - Reference: RQ Role Overview We are looking for a highly skilled and technically proficient Senior Cybersecurity Risk Analyst to join our team on an interim basis. This role is critical in identifying, assessing, and managing information security risks across the organization. The ideal candidate will have a strong technical background … the ability to translate threats into business risks, and experience working in fast-paced environments. Key Responsibilities - Conduct in-depth security risk assessments across systems, applications, and infrastructure. - Identify and evaluate technical and operational risks, vulnerabilities, and control gaps. - Translate complex technical threats into clear, actionable business risks. - Maintain and update the Cybersecurity Risk Register. - Produce detailed risk assessment reports and present findings to stakeholders. - Collaborate with IT, SOC, and business units to ensure risks are understood and mitigated. - Provide technical escalation support in the absence of a cybersecurity specialist, particularly in coordination with the Security Operations Centre (SOC). - Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). - Review security aspects of More ❯

Symphony Belfast, Northern Ireland, United Kingdom Join or sign in to find your next job Join to apply for the Information Security Risk Analyst role at Symphony Get AI-powered advice on this job and more exclusive features. About us @Symphony We’ve spent the last 10 years building a communication and markets technology company, powered by interconnected platforms … in this growth. At Symphony, we combine technology and financial services in a unique environment. Role Description As a Security Engineer, you will assess information risks, identify opportunities for risk reduction, and facilitate remediation of vulnerabilities within our network, systems, and applications. You will report findings and recommendations, perform regular risk assessments, and support remediation and audits. Responsibilities … Serve as a primary contact for customer due diligence and risk assessment inquiries. Assist in gathering information for RFIs related to information security. Support responses to third-party risk management inquiries and audits. Maintain records of due diligence requests and responses. Collaborate internally to complete security questionnaires. Review and analyze security documentation for accuracy. Contribute to process More ❯

a Cyber Audit AVP where you will collaborate with cross-functional teams to provide independent and reliable Cyber Security audit assurance to executive management and the Board on governance, risk management, and control effectiveness. In this role, you will contribute to audit planning and execution, risk assessment, control evaluation, and issue resolution. You’ll deliver high-quality … audit observations and support the development of actionable recommendations to improve business processes. To be successful you should have experience with below: Risk and control assessment experience (within an audit or control function responsible for testing driven assurance) covering Cyber Security. Experience in developing and executing assurance testing approaches in some of the following areas: data security (including … cryptography), security configuration, network security, cyber incident response, vulnerability management, cyber threat management, information risk management, data leakage protection, identity & access management, cyber resilience. Knowledge of new and emerging technology, cyber security, and cyber resilience risks. Relevant professional qualifications (e.g. CISA, CISM, CISSP or other relevant technical qualification; and/or relevant graduate degree). Practical understanding of relevant More ❯

Coordinate the incident response process, including investigation, containment, and remediation of security breaches Perform forensic analysis to determine the root cause of incidents and develop strategies to prevent recurrence Risk Management and Compliance: Ensure compliance with recognised industry standards, such as SOC2, ISO 27001 and ISAE 3402 etc Assessment of Third-Party Risk Assessment responses and … diligence requests for both clients and vendors Collaborate with internal and external auditors to support security audits and assessments and develop risk mitigation plans Collaboration and Communication: Work closely with IT teams and other stakeholders to integrate and advise on suitable security controls for all systems, applications and projects Report security risks and strategies to senior management and non More ❯

foundations across platforms, data, and business applications. Our passion lies in using technology to solve business problems, working closely with clients to help achieve their goals. About the role: Risk Assessment: Assist in identifying, assessing, and prioritising risks across the organisation. Conduct risk assessments to evaluate the likelihood and potential impact of risks on business operations and … Identify and document control deficiencies, compliance gaps, and areas for improvement. Collaborate with stakeholders to develop actionable recommendations and corrective action plans. Documentation and Reporting: Maintain accurate documentation of risk assessments, compliance reviews, control testing activities, and remediation efforts. Prepare regular reports for management and stakeholders. Policy and Procedure Development: Assist in developing and maintaining risk management, compliance … and control-related policies, procedures, and guidelines, ensuring alignment with regulatory requirements and industry best practices. Vendor Risk Management Support: Assist in assessing and managing risks associated with third-party vendors and service providers, evaluating controls and contractual adherence. Continuous Improvement: Identify opportunities to enhance risk management, compliance, and control processes. Recommend and implement improvements to strengthen the More ❯

foundations across platforms, data, and business applications. Our passion lies in using technology to solve business problems, working closely with clients to help achieve their goals. About the role: Risk Assessment: Assist in identifying, assessing, and prioritising risks across the organisation. Conduct risk assessments to evaluate the likelihood and potential impact of risks on business operations and … Identify and document control deficiencies, compliance gaps, and areas for improvement. Collaborate with stakeholders to develop actionable recommendations and corrective action plans. Documentation and Reporting: Maintain accurate documentation of risk assessments, compliance reviews, control testing activities, and remediation efforts. Prepare regular reports for management and stakeholders. Policy and Procedure Development: Assist in developing and maintaining risk management, compliance … and control-related policies, procedures, and guidelines, ensuring alignment with regulatory requirements and industry best practices. Vendor Risk Management Support: Assist in assessing and managing risks associated with third-party vendors and service providers, evaluating controls and contractual adherence. Continuous Improvement: Identify opportunities to enhance risk management, compliance, and control processes. Recommend and implement improvements to strengthen the More ❯

specialist advice and recommend approaches across teams and various stakeholders communicate widely with other stakeholders, agencies and National Technical Authorities Advise on important security-related technologies and assess the risk associated with proposed changes Inspire and influence others to execute security principles Help review other people's work Recommend a security risk assessment approach and vulnerability analyses … Collaborative and inclusive ways of working and can build trust across diverse teams and stakeholders Working knowledge of security architecture principles and best practices. Demonstrable experience in security architecture, risk assessment and incident response Experience & Technical Skills: Essential criteria: Experience in designing and implementing security solutions, preferably in a government or public sector environment. Working knowledge of security More ❯

Role Purpose NCC Group provides Information Assurance consultancy to help companies protect critical systems and information. We do this by defining security strategies, developing policies, conducting security maturity and risk assessments and implementing security solutions. We also provide security staff augmentation to clients so that our consultants may occupy security roles within the client environment in the short, medium … or long term. Our core consulting and implementation services include: Strategy & transformation On-demand virtual roles Data discovery and mapping Risk advisory and assurance Continuity/Resilience Data privacy and GDPR ISO 27001 & NIST CSF Supplier assurance PCI, PA & P2PE Incident response planning Card production audits Cyber security review SOC advisory & implementation XDR consulting & implementation Alongside our core services … we have a range of bespoke services to help organisations protect their systems and information: Risk Assessments Security Architecture Review Information Security Awareness and Training Programmes Information Security Policy Development Security Transformation Programmes We have a fantastic new opportunity to join our Consulting & Implementation division for a Senior Consultant. The ideal candidate will have commercial experience within the information More ❯

Role Purpose NCC Group provides Information Assurance consultancy to help companies protect critical systems and information. We do this by defining security strategies, developing policies, conducting security maturity and risk assessments and implementing security solutions. We also provide security staff augmentation to clients so that our consultants may occupy security roles within the client environment in the short, medium … or long term. Our core consulting and implementation services include: Strategy & transformation On-demand virtual roles Data discovery and mapping Risk advisory and assurance Continuity/Resilience Data privacy and GDPR ISO 27001 & NIST CSF Supplier assurance PCI, PA & P2PE Incident response planning Card production audits Cyber security review SOC advisory & implementation XDR consulting & implementation Alongside our core services … we have a range of bespoke services to help organisations protect their systems and information: Risk Assessments Security Architecture Review Information Security Awareness and Training Programmes Information Security Policy Development Security Transformation Programmes We have a fantastic new opportunity to join our Consulting & Implementation division for a Senior Consultant. The ideal candidate will have commercial experience within the information More ❯

from requirements to in-service support and maintenance. This is an exciting opportunity to be part of significant programmes, ensuring products meet high standards aligned with customer requirements and risk appetite. You will be supported by a team of consultants, engineers, and specialists. The role may involve a hybrid working model, combining remote work and on-site collaboration at … professional certification. Experience should include: 3+ years in a cyber/engineering role. Involvement in MOD accreditation and secure design processes. Knowledge of standards like NIST SP 800-series. Risk management in compliance with regulations. Experience with proprietary and open-source software, firmware, hardware. Design analysis and security design development. Cyber risk assessment, threat modeling, vulnerability analysis. More ❯