1 to 25 of 7,378 Risk Management Jobs

Support the implementation of a comprehensive business resilience framework aligned with DORA and other regulatory requirements (e.g., NIST, ISO 22301, ISO 27001). Develop training materials, policies, controls, and risk assessment methodologies to ensure adherence to regulatory standards. Support key pillars of the DORA program, including ICT Risk Management, Digital Resilience Testing, and Third-Party Risk Management (TPRM). Stakeholder Coordination & Engagement: Design and execute DORA related workshops to support the successful delivery of the DORA programme. Ensure all stakeholders are engaged and informed during the DORA compliance implementation and transition to BAU. Facilitate program delivery requirements and track progress towards compliance objectives. Work closely with SMEs, legal teams, and business functions to ensure … adherence. Training & Awareness: Design and execute DORA related workshops to support the successful delivery of the DORA programme. Develop and deliver training programs to educate employees on resilience and risk management practices. Foster a culture of preparedness and continuous improvement across ION Markets. Experience, Skills and Qualifications: Bachelor's or Master's degree in Business, Risk Management More ❯

grow your career. Here, your voice and ideas matter, your work makes an impact, and together, you will help us decide the future of American Express. The Technology & Operational Risk Advisor will help ensure safe and sound banking & business operations by creating embedded partnerships focused on reducing technology and operational risk and advancing Technology Risk and Information … such information that could result in substantial harm or inconvenience to any customer This role will have a significant positive impact on the overall Operational, Technology, and Information Security risk posture of American Express and its legal entities by leading risk-reduction through clear and candid communication, early engagement in new products and projects, regulatory engagement, information security … and technology risk consultation. How will you make an impact in this role? We are seeking an experienced and proactive leader to be responsible for technology risk, operational risk and information security control enforcement as well as risk prioritization across Business Unit CIO groups, the business, and American Express legal entities. Responsibilities: Build strong partnerships with More ❯

Senior Associate, Information Security & Risk Management We are Grant Thornton. We go beyond business as usual, so you can too. Grant Thornton Ireland (GT) has nearly 3,000 people in 9 offices across Ireland, The Isle of Man, Gibraltar, and Bermuda, with a presence in over 145 countries around the world, and a global network of over … skills, knowledge, and experience throughout your career, then that is what you will get, and more. TheSr. Associate, Information Security position will be an integral member of the Governance, Risk & Compliance team. This rolewill be responsible for organizing and managing evidence for external audits. Work in Chief Information Security Officer (CISO) office under Director, Information Security Governance, Risk and Compliance. Successful candidate will have a good mix of security knowledge, understanding of industry best practice, and a demonstrated background in information security risk management. The candidate will be responsible for managing and responding to client security questionnaires, audits, and assessments related to the organization’s information security posture. This role involves working closely with internal teams More ❯

Join our dynamic team as a Vice President Control Manager within the Data & Analytics Product & Platform, where you'll be at the forefront of managing risk and ensuring compliance in a rapidly evolving digital landscape. Job Summary: As a Vice President Control Manager within the Data & Analytics (D&A) Product & Platform, you will oversee D&A product management related risk and controls and ensure adherence with the firm's Compliance & Operational Risk Evaluation (CORE) Program. Your responsibilities will include ensuring the D&A Products and platforms follow appropriate product management practices, managing the relevant Risk Assessment Structures (RAS) in CORE system, ensuring compliance with the firm's Policies and Standards, and supporting the … Data & Analytics Control Manager community of practice. Working in partnership with the wider Control Management team and D&A business/control partners, you will play a significant role in effectively managing the overall operational risk environment for D&A products and platforms. Job responsibilities: Review relevant Artificial Intelligence (AI) and Data Governance Standards and partner with business More ❯

Job details Work Location London State/Region/Province London Country United Kingdom Domain Consulting Interest Group Infosys Limited Skills Process|Cybersecurity Competency Management|Cyber Workforce Education & Training Catering Company ITL UK Requisition ID 132345BR Job description Role - Senior Consultant (JL5) Technology - Cyber Security Consulting & Advisory Location - United Kingdom (London) Business Unit - Cyber Security, Cyber C&A Team … in enterprise cyber security domain Security Practitioner, which includes execution of operational/tactical as well as strategy & program cyber security. Able to support the cyber security roadmap and management inclusive of security risk management, its development, lead a team and align to security measures with enterprise IT security frameworks. Have an understanding of Security Solutions: MS … process point of view, but have insights towards recommendation remediation activities, in conjunction with operational team exposure and cyber threat mitigation. Security Assessments & Compliance: Exposure to security assessments, evaluate risk, and ensure compliance with IEC 62443, NIST SP 800-82, NERC CIP, ISO 27001, and NIS2 frameworks or combination. Vulnerability & Risk Management: Able to implement risk More ❯

adding consulting solutions that enable our clients to meet the changing needs of the global landscape. Required: Industry experience working in enterprise cyber security domain OT Security Strategy & Program Management: Assess OT security risks, develop security roadmaps, and align OT security measures with enterprise IT security frameworks. Deploy and Configure Security Solutions: Implement, optimize, and manage OT cybersecurity platforms … Identify, analyze, and respond to security events and incidents in OT networks, collaborating with IT and operational teams to mitigate threats. Security Assessments & Compliance: Conduct OT security assessments, evaluate risk, and ensure compliance with IEC 62443, NIST SP 800-82, NERC CIP, ISO 27001, and NIS2 frameworks. Vulnerability & Risk Management: Perform vulnerability analysis and penetration testing, and … implement risk mitigation strategies tailored for ICS/SCADA and IoT environments. IT-OT Integration: Work closely with IT, engineering, and operational teams to integrate OT security solutions seamlessly with existing enterprise security architecture. Vendor & Third-Party Security Management: Assess and oversee third-party vendors providing OT security solutions, ensuring their compliance with security policies and industry best More ❯

such as Splunk, Microsoft Sentinel, CrowdStrike, and Defender and other security stacks. Candidate will handle complex incidents like APTs, malware, and data breaches, ensuring swift, effective responses to minimize risk to the organization and its clients. The ideal candidate will have advanced expertise in monitoring, analyzing, and mitigating cybersecurity threats, as well as managing security tools and mentoring junior … Response: o Lead investigations and remediation of complex security incidents, including malware infections, data breaches, and advanced persistent threats (APTs). o Utilize advanced SIEM (Security Information and Event Management) tools, threat intelligence platforms, and other security technologies to analyze and correlate security alerts. o Take ownership of Tier 3- level escalations from Tier 1 and Tier 2 analysts … detection signatures or playbooks to enhance detection and response capabilities. 7. Reporting & Documentation: o Create detailed incident reports, including technical analysis and recommendations for mitigation. o Present findings to management and external stakeholders, such as clients or regulatory bodies, when necessary. o Ensure proper documentation of incident response workflows, timelines, and action items for continuous improvement. 8. Compliance and More ❯

such as Splunk , Microsoft Sentinel , CrowdStrike , and Defender and other security stacks. Candidate will handle complex incidents like APTs, malware, and data breaches, ensuring swift, effective responses to minimize risk to the organization and its clients. The ideal candidate will have advanced expertise in monitoring, analyzing, and mitigating cybersecurity threats, as well as managing security tools and mentoring junior … Detection and Response: Lead investigations and remediation of complex security incidents, including malware infections, data breaches, and advanced persistent threats (APTs). Utilize advanced SIEM (Security Information and Event Management) tools, threat intelligence platforms, and other security technologies to analyze and correlate security alerts. Take ownership of Tier 3-level escalations from Tier 1 and Tier 2 analysts and … and maintain custom detection signatures or playbooks to enhance detection and response capabilities. Reporting & Documentation: Create detailed incident reports, including technical analysis and recommendations for mitigation. Present findings to management and external stakeholders, such as clients or regulatory bodies, when necessary. Ensure proper documentation of incident response workflows, timelines, and action items for continuous improvement. Compliance and Risk More ❯

Senior Cyber Risk Analyst We are seeking a Senior Analyst with a robust background in cybersecurity risk assessment and internal security audits, complemented by broad technical expertise across modern IT environments. This role requires a deep understanding of desktops, mobile devices, networks, operating systems, and cloud services, as well as the ability to effectively communicate complex technical concepts … The ideal candidate will possess advanced analytical skills, relevant certifications, and experience working cross-functionally-including direct client engagement-to support regulatory and business objectives. Primary Responsibilities Conduct comprehensive risk assessments of information systems, applications, business processes, and underlying technical infrastructure-including desktops, phones, network devices, operating systems (Windows, macOS, Linux), and cloud platforms (AWS, Azure, GCP). Collaborate … closely with compliance, legal, IT, business stakeholders, and external clients to understand operational requirements, regulatory obligations, and risk tolerance. Serve as a technical point of contact for clients, addressing and managing their technical requirements, security concerns, and risk management needs. Clearly document identified risks and work with stakeholders to propose, evaluate, and track compensating controls that address More ❯

unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Our Digital Risk team is dedicated to providing innovative solutions that mitigate risks associated with digital transformation, cybersecurity, and regulatory compliance. The Digital Risk practice is growing rapidly, and we are … looking for Senior Consultants to help drive success for our clients by helping them navigate the complexities of the digital landscape. The opportunity Our Digital Risk team provides innovative solutions that mitigate risks associated with digital transformation, cybersecurity, and regulatory compliance. As organizations increasingly adopt AI technologies, the need for trusted AI frameworks and governance has become paramount. The … Digital Risk practice is growing rapidly, and we are looking for Senior Consultants to help drive success for our clients by navigating the complexities of the digital landscape, including the integration of AI in risk management strategies. Responsibilities, Qualifications, Certifications - External Your key responsibilities Collaborate with clients and internal stakeholders to assess and improve digital risk More ❯

unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Our Digital Risk team is dedicated to providing innovative solutions that mitigate risks associated with digital transformation, cybersecurity, and regulatory compliance. The Digital Risk practice is growing rapidly, and we are … looking for Senior Consultants to help drive success for our clients by helping them navigate the complexities of the digital landscape. The opportunity Our Digital Risk team provides innovative solutions that mitigate risks associated with digital transformation, cybersecurity, and regulatory compliance. As organizations increasingly adopt AI technologies, the need for trusted AI frameworks and governance has become paramount. The … Digital Risk practice is growing rapidly, and we are looking for Senior Consultants to help drive success for our clients by navigating the complexities of the digital landscape, including the integration of AI in risk management strategies. Responsibilities, Qualifications, Certifications - External Your key responsibilities Collaborate with clients and internal stakeholders to assess and improve digital risk More ❯

quality across initiatives? Cloud Direct is looking for a Senior Project Manager to lead the delivery of complex, high-impact deployment and migration projects. This role also includes programme management responsibilities, overseeing a portfolio of related projects to ensure strategic alignment with organisational objectives. The Senior Project Manager will drive successful outcomes through effective planning, execution, and stakeholder collaboration. … and review project plans whilst retaining a highly flexible approach to change. Programme Oversight: Coordinate and monitor a portfolio of projects, ensuring alignment with strategic goals, resource optimisation, and risk mitigation across the programme. Stakeholder Management : Build and maintain strong relationships with internal and external stakeholders, including clients, team members, and senior leadership, ensuring clear communication and expectation … management. Risk and Issue Management: Identify, assess, and mitigate risks and issues at both project and programme levels, implementing proactive solutions to maintain momentum. Resource Allocation: Oversee resource planning and allocation across projects, ensuring efficient use of personnel, budget, and tools. Governance and Reporting: Establish robust governance frameworks and provide regular updates to senior management on progress More ❯

surprise that MUFG has grown to become one of the top five banks in the world. Our services include commercial banking, trust banking, securities, credit cards, consumer finance, asset management, and leasing. MUFG offers stability in an ever-changing market, providing services to high-profile clients worldwide. Our vision? To become the world’s most trusted financial group. You … ll help us achieve it. Please visit our website for more information - mufgemea.com. Dept overview: The Change Management division is a global Programme Delivery Management team responsible for the delivery of the strategic Delivery portfolio across Bank and Securities entities in EMEA. The team is based in London with oversight, prioritization & delivery for the International Securities business portfolio … and Bank London branch portfolio’s. The Delivery portfolio is delivered across key regional programs of work (Front Office, Regulatory Compliance & Operations, Finance, Risk & Data, Human Resources, Technology, and Planning), and overseen by the Regional Portfolio Committee. Outside of the core Programme delivery portfolio; the Change management function leads a stream that develops and delivers Strategic or Transformation More ❯

Operations - Business Intelligence Analyst- London Job Description OPERATIONS Operations is a dynamic, multi-faceted division that partners with all parts of the firm to provide banking, securities, and asset management services to clients around the world. In addition, Operations provides essential risk management and controls to preserve and enhance the firm's assets and its reputation. For … diverse source systems (e.g., relational databases, APIs, flat files), transform it according to defined business rules and data quality standards, and load it into target data warehouses or databases. Risk Mitigation and Data Governance: •Implement data validation rules and monitoring mechanisms to ensure the accuracy and reliability of data used for reporting and analysis, adhering to data quality standards … and regulatory requirements Stakeholder Management and Prioritization: •Work with stakeholders to define project scope, objectives, and deliverables, creating detailed project plans and timelines. •Communicate technical concepts and solutions to both technical and non-technical audiences, tailoring communication style based on the audience. Data Modeling and Warehousing: •Design and implement data models optimized for analytical workloads, using dimensional modeling techniques More ❯

now has a presence in 200+ countries and legal territories to serve a community of more than 12,000 banks and financial institutions. Are you passionate about security Governance, Risk and Compliance (GRC)? Do you thrive in a dynamic environment where your experience and your security expertise can shape the future of our organization? We are looking for a … reporting and presentation of our GRC activities to internal and external stakeholders, ensuring transparency and accountability. Collaborate with cross-functional security teams to maintain and communicate our Information Security Management System (ISMS). Maintain clear and accurate GRC documentation. Drive continuous improvement in our GRC processes, ensuring they meet regulatory expectations. Provide strategic insights to senior leadership, enabling data … architectures, threat modeling, vulnerabilities and software security. Strong knowledge of regulatory requirements (e.g. GDPR, ISO27001, PCI-DSS) and experience in regulatory reporting. 3-5 years of experience in GRC, risk management, or compliance. A bachelor's degree in computer science, Cyber Security or similar disciplines. Excellent interpersonal skills and the ability to communicate effectively with technical and non More ❯

Technology Support Lead - Technology Operations, Regulatory, Incident & Event Management Technology Support Lead - Technology Operations, Regulatory, Incident & Event Management JPMorgan Chase & Co. Bournemouth, United Kingdom Apply now Posted 11 days ago Permanent Competitive Technology Support Lead - Technology Operations, Regulatory, Incident & Event Management Job Description As a Technology Support Lead at JPMC Chase, you will play a leadership role … to effectively identify, monitor, evaluate and manage the firm's technology risks and controls with a focus on the Technology Operations, Regulatory, Incident & Event Management related activities. You will play a pivotal role in shaping and implementing the firm's risk management strategy in these specific areas. The team you will join follows a rigorous process to … monitor, assess, and manage the risk of expected and unexpected events that may have an adverse impact on the firm. You will collaborate with various stakeholders, including Product Owners, Business Control Managers, regulators, and auditors, to develop and maintain a comprehensive view of the technology risk posture related to Technology Operations, Regulatory and Incident & Event Management, and More ❯

unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Our Digital Risk team is dedicated to providing innovative solutions that mitigate risks associated with digital transformation, cybersecurity, and regulatory compliance. The Digital Risk practice is growing rapidly, and we are … looking for Managers to help drive success for our clients by helping them navigate the complexities of the digital landscape. The opportunity As a Manager in our Digital Risk team, you will play a key role in mitigating IT risks for our diverse set of clients. Our Digital Risk solutions include navigating IT controls assessments and implementations, cybersecurity … management, digital resilience and technological continuity, the need for trusted AI in a rapidly-evolving landscape, and more. This role requires strong IT technical and compliance expertise, a solid understanding of relevant regulatory frameworks, and strong project management and communication skills. Your key responsibilities Manage and deliver Digital Risk projects and specific workstreams within larger Risk More ❯

lifecycle. This is to ensure the business purpose of the system is enabled in a safe and secure manner based on the alignment of identified risks to the acceptable risk posture of the business. What you'll be doing: Providing security expertise across security standards and accreditations, measure and control the effectiveness of the security controls framework and maintain … the Information Security Management System. Deriving and delivering documented Information Security Management Plans which incorporate Regulatory, Legal and Compliance in relation to applicable security policies. Standards and guidelines Assisting with the identification of identified risks and emerging cyber security vulnerabilities and threats. The subsequent analysis to quantify and lead risk mitigation plans Work with Service Management … and verify/evidence appropriate compliance and security KPIs Work closely with 1st, 2nd and 3rd lines of defence on all matters relating to cyber security, information assurance, cyber risk, data privacy including regulatory and compliance considerations Lead the development and enhancement of governance, risk and compliance aligned to policy, standards an industry good practice Ensure that continuous More ❯

tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. OVERVIEW OF THE DEPARTMENT/SECTION IT Risk, Security & Control department covers cyber security strategy maintenance and tactical planning and operations to provide IT Security protection, governance, risk management and reporting. This includes promoting the … global Information Security Standards and Procedures (ISSP) requirements and local security requirements. The department deploys, supports and monitors security solutions such as virus protection, vulnerability management, compliance monitoring and threat/incident management activities to reduce risk. NUMBER OF DIRECT REPORTS 1-2 MAIN PURPOSE OF THE ROLE To manage the technical delivery of various cybersecurity projects and … and Securities. The delivery manager will be responsible for support and execution of the following deliverables as required: charter and roadmap, role matrix, status reports, programme schedules, issues and risk log, communication protocol and escalation plan, scope change assessment and change requests. Also business requirements specification and requirements traceability matrix. Assisting the programme manager by providing programme support activities More ❯

applicants Join to apply for the Senior Cyber Security Consultant (GRC) role at FSP We have an exciting opportunity for a Senior Security Consultant to join our growing Governance, Risk and Compliance (GRC) team. In this role, you will apply your expertise in information security to provide strategic guidance to clients on GRC activities, as well as on achieving … organisational and compliance needs. Lead and advise customers on the design, implementation and adoption of information security policies, procedures. Understand relevant frameworks for managing different areas of Information security, risk management and data protection. Evaluate the security of third-party service providers and advise on the appropriate selection of suppliers and implementation of procured services. Be proficient in … the use of Microsoft Purview for data labelling, data loss prevention, data lifecycle management, data governance, compliance management, and risk mitigation, with the ability to implement information protection strategies. Create reports on risk and compliance for Senior stakeholders, including risk mitigation strategies and improvement plans. Contribute to the development of new and innovative solutions to More ❯

implementation of strategies set by the leadership team. Implement and Manage an effective Staff Training and Awareness program to promote best practices. Adopt a continuous improvement approach to the management of Information Technology, Information Security and Privacy. Ensure that main stakeholders are informed and consulted via an effective Management Review process. Risk Identify information security threats and … manage an effective Vulnerability Management Process. Maintain an effective, proactive Risk Management Framework. Manage and maintain the Satalia Risk Register. Ensure an effective Incident Management procedure and Business Continuity Plan are maintained. Compliance Manage an effective Audit Programme to check compliance against key control requirements. Ensure an appropriate level of support for annual external audits … Cyber Essentials Plus requirements. Work in partnership with development staff to embed best practices in the development processes throughout the software development lifecycle. Devise and embed an effective Vendor Management programme to ensure the service provided by critical suppliers meet organisational requirements. Operational Oversee all technology operations and evaluate them according to established goals. Oversee the management and More ❯

reputation is built on a comprehensive suite of engineering services, a dedication to solving clients’ toughest technology problems, and a commitment to continuous improvement. Backed by Goldman Sachs Asset Management and Everstone Capital, Apexon now has a global presence of 15 offices (and 10 delivery centers) across four continents. About Apexon: Apexon is a digital-first technology services firm … reputation is built on a comprehensive suite of engineering services, a dedication to solving clients’ toughest technology problems, and a commitment to continuous improvement. Backed by Goldman Sachs Asset Management and Everstone Capital, Apexon now has a global presence of 15 offices (and 10 delivery centers) across four continents. We enable #HumanFirstDIGITAL Key Responsibilities: • Design, develop, and maintain logical … and physical data models to support audit and risk assessment processes. • Build, maintain and optimize data pipelines and data warehousing solutions for structured and unstructured data. • Develop and implement reporting and analytics solutions using tools such as Python and Tableau. • Design and develop interactive dashboards that effectively communicate audit insights and risk assessments. • Collaborate with auditors, business stakeholders More ❯

security consultancy to Vodafone across a wide range of IT, network & telecoms solutions and services. You need to be able to solve complex and multi-dimensional problems, adopting a risk-based approach for the end to end IOT service. You will be expected lead on the more complex issues, engage with senior stakeholders, mentor team members and provide Cyber … highly complicated technical issues to audiences of varying technical understanding. Ensure that all Vodafone IoT products and services launched undergo proper Secure by Design processes, by maintaining a proper Risk Management and Compliance across the company. The primary focus is protecting Vodafone and our customers (via products and services that they use). Deliver benefits of stronger control … security control Ensure cybersecurity is integrated into the full lifecycle of IoT platforms and services Lead the identification, tracking, and secure decommissioning of end-of-life systems, minimizing residual risk and ensuring compliance Who You Are Strong experience in applying technical security baseline standards from Internal and external standards to ensure security through the full product lifecycle of enterprise More ❯

world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons The Quality and Risk Management Team (QRM) provides leadership, guidance, and tools to help partners and staff manage … quality and risk matters. The team is comprised of an Advisory and Compliance Team, a Chief Information Security Office Team, an Economic Crime Team, a Legal Team, the Independence and Ethics Team and the Regulatory Supervisory Team, plus the Quality Monitoring Team. The team works closely with the firm's Technical Standards Group and the firm's leadership. We … Analy s e data from various sources to identify trends, anomalies, and areas for improvement in security controls. Performance Metrics: Establish and track Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) to measure the performance and coverage of security controls. Compliance Monitoring: Ensure compliance with internal security policies and external regulations, including frameworks like ISO/IEC More ❯

to build project teams Translate requirements (e.g. regulatory) into tangible project plans Own and drive timely execution including with suppliers (e.g. OneTrust) Manage effectively project scope change Build compliance management into projects: KPI's and clear process documentation Enable tooling based solutions (e.g OneTrust) to support changing regulatory requirements Ensure that appropriate IT security frameworks are incorporated into project … are naturally inclusive in how you work with others. To be successful in this role you will have the following experience & skills: 5+ years of experience in IT project management preferably in IT, managed services, or regulated industries. Proven full lifecycle project/transformation management experience Strong understanding of global privacy regulations (e.g., GDPR, CCPA). Strong understanding … of good IT security and data management practices/frameworks Expertise in compliance management including supplier Robust leadership skills Strong understanding of risk management. Excellent written and verbal communication skills in English. Proven analytical, problem-solving, and organisational skills. Ability to manage multiple priorities and adapt to changing business needs. Collaborative mindset with a focus on continuous More ❯