1 to 25 of 53 Risk Management Jobs in the Thames Valley

the projects to deliver a quality solution within the agreed scope, on time and within budget. Position Type: Full-time, permanent Location: Reading, United Kingdom Responsibilities: Create a Project Management Plan based on CHAMP Project Management Methodology detailing the objective, scope, assumptions, dependencies, risks, project life cycle broken down into work packages, deliverables, key milestones, high-level plan … on time and within budget, in accordance with the project plan and coherent with the overall project objectives and related business strategy (if any) as defined in the Project Management Plan Regularly track progress of the activities and the deliverables to ensure that they are completed on time and to the required quality levels Obtain customer acceptance of the … deliverables and conduct a customer satisfaction survey at end of project Monitor all progress and take mitigation actions to avoid risks being triggered and take recovery actions if the risk occurs Manage and validate all scope changes within the CHAMP project governance structure Raise Change Requests as required and obtain appropriate customer and internal approvals, in line with project More ❯

Audit & Risk Recruitment are working on a fantastic Technology Risk and Assurance opportunity for a large Technology business. This role focuses on managing and enhancing the IT and Information Security risk landscape. Reporting directly to the Head of Risk and Assurance, you will play a key role in embedding effective risk management practices across … the company's technology and cybersecurity domains. As a Risk & Assurance Manager, you'll be responsible for and have ownership for: Partnering with senior IT, Security, and business leaders to embed risk management practices into operational processes and strategic initiatives. Owning and maintaining IT Risk and Control Matrices (RCMs) , ensuring they remain current, comprehensive, and aligned … with industry standards and audit expectations. Reviewing effectiveness of first line functions in testing and validation of key IT controls (e.g., access management, change control, incident response, vulnerability management), ensuring effectiveness and consistency. Leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business More ❯

products and recycling services in more than 30 different countries across EMEA with over 30,000 colleagues. About the role Reporting to Head of I&T GRC, Governance and Risk Lead will be responsible for driving information and cyber security awareness, delivering security awareness training including phishing and facilitation of cyber scenario desktop simulations across central and manufacturing site … legal, data protection and digital security and business stakeholder in relation to supplier information and cyber security due diligence and requirements. As the successful candidate you will also lead risk-based party security assurance, management, and continuous improvement activities. In addition, facilitate and coordinate IT risk management risk register, tools, process, reporting and review. You … will take responsibility for managing a subset of aspects of ISO 27001 related documentation and control activities. As the I&T Governance and Risk Lead you will have the responsibility of aspects of the I&T GRC scope, delegated and assigned by the Head of I&T GRC. Key Accountabilities Engage with key IT and business stakeholders in relation More ❯

Security Consultant – GRC (Governance, Risk & Compliance) Location: Reading (Remote role with once or twice per month on-site) Rate: Negotiable (DOE) Contract: Until May 2026An excellent opportunity has arisen for an experienced Security Consultant (GRC) to join a global technology organisation that’s expanding its EMEA cyber security consulting practice and investing heavily in a new Centre of Excellence.This … is a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients — including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT .You’ll play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a … Responsibilities Deliver Cyber GRC consulting engagements end-to-end — from scoping and planning through to delivery and close-out. Provide advisory services covering areas such as Information Security Governance, Risk Management, Compliance, Business Continuity, and Cloud Security. Translate complex security and compliance requirements into actionable business solutions. Build trusted relationships with clients at both technical and senior management More ❯

will also be leading a team to implement complex enterprise software solutions into live mission critical healthcare environments, and be responsible for improving project efficiency and effectiveness, through project management process and tool improvements. Role responsibilities for the Senior Project Manager- Clinical Software: Project management of enterprise clinical software into the NHS Leading, monitoring and managing multiple projects … Ensuring all project management activities from end to end are looked after Risk, resource, and change management Financial control and executive stakeholder management Solution team management and matrix team/resource management across delivery, development, and third-party vendor teams Project documentation and status reports Host internal and external project meetings Team motivation and … of delivering clinical applications such as PACS, RIS, EPR, PAS, LIMS, ePMA Qualified to Prince2 Practitioner level Matrix people leadership both internally and externally Project control, planning and documentation Risk management Resource management Financial management (vendor side experience of milestone completion, billing and change control) Contractual management Ability and willingness to take initiative toward project More ❯

will also be leading a team to implement complex enterprise software solutions into live mission critical healthcare environments, and be responsible for improving project efficiency and effectiveness, through project management process and tool improvements. Role responsibilities for the Senior Project Manager- Clinical Software: Project management of enterprise clinical software into the NHS Leading, monitoring and managing multiple projects … Ensuring all project management activities from end to end are looked after Risk, resource, and change management Financial control and executive stakeholder management Solution team management and matrix team/resource management across delivery, development, and third-party vendor teams Project documentation and status reports Host internal and external project meetings Team motivation and … of delivering clinical applications such as PACS, RIS, EPR, PAS, LIMS, ePMA Qualified to Prince2 Practitioner level Matrix people leadership both internally and externally Project control, planning and documentation Risk management Resource management Financial management (vendor side experience of milestone completion, billing and change control) Contractual management Ability and willingness to take initiative toward project More ❯

computing, modelling, simulation, software engineering, business systems, data acquisition, and core IT services. Within the Computing Division, the Enterprise Infrastructure Solutions unit is responsible for the design, delivery, and management of centrally supported IT infrastructure and applications. This includes enterprise compute platforms, data networks, UNIX/Linux/Windows environments, cloud services, data centres, commercial software solutions, and end … digital estate, encompassing enterprise IT, operational technology (OT), and research platforms. This role sits within the Information & Cyber Security Group and provides subject matter expertise in security architecture, cyber risk governance, and assurance frameworks. This is a cross-functional role with both advisory and hands-on responsibilities, focusing on security assurance, risk management and supporting architecture reviews … vulnerability management, risk assessments, cyber defence posture, driving technical assurance, and embedding risk-aligned security controls across IT and OT systems and secure-by-design practices. You will work across hybrid environments including cloud, infrastructure, applications, and OT systems. You will be responsible for designing and advising on security architecture patterns, reviewing and maintaining risk registers More ❯

safety, engineering, and operational delivery. As part of ongoing site transformation and change initiatives, they are now seeking an experienced Asset Change Manager to drive delivery within their asset management portfolio. The Benefits: Up to £68 per hour (Inside IR35) Long-term engagement until mid-2026 Opportunity to work in a secure, high-impact environment The Asset Change Manager … expectations with assurance and safety requirements, coordinating across multiple stakeholders to ensure on-time and compliant outcomes. Asset Change Manager Essential Skills: Proven experience in asset change or project management within a regulated, technical, or engineering environment Strong stakeholder management skills, with the ability to influence at all levels Excellent planning and organisational capability to manage multiple concurrent … tasks Working knowledge of health and safety legislation and risk management principles Proficiency in Microsoft Office tools (Teams, Excel, Word, Outlook, PowerPoint) Awareness of systems thinking methodology or similar structured delivery approaches Active DV Clearance required To Be Considered: Please either apply through this advert or email me directly via . For further information, call/.By applying More ❯

Security team to implement and maintain robust cybersecurity measures including firewalls, antivirus, and intrusion detection systems. Ensure compliance with UK and EU data protection regulations (e.g., GDPR), and IT risk management frameworks. Design and lead the offshoring strategy for IT infrastructure services, including vendor selection, contract negotiation, and transition planning. Establish governance frameworks to manage offshore delivery centres … Microsoft Azure (preferred), AWS, or GCP with experience in cloud migration, hybrid environments, and cost optimisation. Led multi-phase offshoring initiatives for infrastructure services, including transition of helpdesk, server management, and network operations. Defined offshore delivery models with clear SLAs, escalation protocols, and performance metrics. Implemented ISO 20000 and ISO 27001 standards across infrastructure operations. Ensured infrastructure compliance with … GxP, IT risk management, and financial governance policies. More ❯

procedures, templates, and standards. Assist in the development and localisation of standard test scripts, ensuring they are tailored to specific control environments and aligned with the organisation's Enterprise Risk Management Framework. Conduct control testing activities to evaluate the design and operational effectiveness of cybersecurity controls, documenting results clearly and raising issues where appropriate. Ensure timely delivery of … this role, the essential criteria you'll need are Proven experience in performing cybersecurity control assessments, including evaluating design and operational effectiveness. Strong understanding of information security principles, cyber risk management, and control frameworks. Experience in IT, OT and Cloud environments, with a focus on cybersecurity controls. Clear and professional verbal and written communication, including the ability to … minimal supervision, taking ownership of assigned tasks and driving them to completion while maintaining high standards of quality and accuracy. Strong understanding of Cybersecurity Domains, including Threat Intelligence, Vulnerability Management, Security Testing, Security Architecture, Infrastructure Protection, Application Security, Identity and Access Management, Incident Investigation & Response and Cryptography. Additional skills and experiences would be great to have/bring More ❯

About the role: We are looking for someone with a real passion for procurement & category management within Technology, who has the desire and willingness to learn and grow. We are interested in applicants who have established experience in Technology spend management, or people who are eager to grow into the role from relevant expertise. This person will play … long term aspirations can be achieved through clear strategic partnerships and spend control. Responsibilities will cover both sourcing (working with vendors, quality assurance, requirements analysis) and non-technical (governance, risk, and compliance). Someone who isn't afraid to get their sleeves rolled up and get into the detail will be a key trait. No two days will be … driving service improvements Work with IT and business leaders to understand requirements and align procurement strategy with goals Analyse spend data and trends to identify opportunities for cost optimisation & risk reduction Ensure effective governance, contract management and risk mitigation across the supply base Support broader procurement initiatives The skills and experience you need for this role: Proven More ❯

will work as a ‘hands-on’ project manager (m/f/d) in a variety of business projects and initiatives across EMEA. Specifically, your role will involve: Project Management: Implement SAP Upgrades Strategic Planning: Create comprehensive project roadmaps that align with business goals Risk Management: Identify and mitigate potential risks to ensure projects remain on track … ROI Stakeholder Engagement: Communicate effectively with diverse stakeholder groups to ensure alignment and informed decision-making Agile Methodologies: Adjust to evolving project needs and deliver iterative improvements quickly Project Management of cross-functional/strategic projects in EMEA, specifically: Support BPOs (m/f/d) and other senior executives (m/f/d) in the initiation of … close the project Ensure the maintenance of comprehensive project documentation, e.g., project brief, project plan, progress reports, issue and action tracker and cutover plans Ensure that the EMEA Project Management guidelines are followed Promote good project management practice and enhance the organization’s project management capability across the EMEA organization, specifically: Develop project management guidelines and More ❯

compliance with internal standards. Monitor, Manage Change requests, understand impact and suggest way forward. Reporting - Provide status reports on progress and input into Programme/Steering board updates Stakeholder management - Map and manage stakeholders across impacted business units and external partners. Input into Programme RACI. Collaborate with end users and stakeholders to align project goals with business needs. Scope … management - Ensure project goals align with business objectives and defined scope. Apply change management processes to control scope. Review project proposals to assess timelines, resources, and constraints. Cost management - Estimate workload based on the scope and activities defined in the Work Breakdown Structure. Monitor the budget using Earned Value Management Technique. Define actions when applicable to … stay within the approved cost baseline. Update the budget and reforecast as necessary. Actively looking at ways to reduce costs with no impact to the programme. Schedule management - Develop project strategies, plans, and tools. Assign resources and responsibilities across project phases. Monitor progress, resolve issues, and ensure timely delivery. Procurement management - Coordinate the procurement activities to define the More ❯

transformation with our people and our customers at its heart. As Cornerstone’s Information Security Manager, you will lead the development, implementation, and continuous improvement of our Information Security Management System (ISMS), ensuring alignment with ISO 27001:2022. You will be responsible for safeguarding our digital infrastructure, managing cyber risk, and embedding a security-first culture across the … ensuring we meet our obligations to customers and regulatory standards Delivery ISMS Leadership: Own and maintain the ISMS, ensuring it meets ISO 27001:2022 requirements and supports business objectives. Risk Management: Identify, evaluate, and mitigate information security risks across systems, suppliers, and processes. Maintain visibility over key cyber risks and report to senior leadership. Incident Response: Lead the … the project lifecycle, from initial design through to deployment and ongoing maintenance Role Expertise The successful candidate will possess substantial experience in managing and maintaining an enterprise Information Security Management System (ISMS), with a demonstrable track record of leading and supporting external ISO 27001 audits and implementing and managing robust security frameworks. They will have a comprehensive understanding of More ❯

responsible for the financial health and operational effectiveness of the business, ensuring scalable processes, strong controls, and sustainable growth. This role combines strategic financial leadership with hands-on operational management, working cross-functionally with product development, sales, and delivery teams to ensure resources are available to deliver business goals. Duties include, Overseeing accounting, payroll, tax, compliance, and audit functions … to-day running of the business including all office utilities, relevant insurance renewals and property lease arrangements Implementing efficient processes, systems, and policies that scale with growth Driving performance management Operational risk management, compliance, and governance activities This is a great, hands-on role that someone can really make their own and be part of an exciting More ❯

collaboration, sharing knowledge and contributing to a positive delivery culture. What you'll bring Experience supporting the delivery of business services in secure or complex environments. Understanding of service management frameworks (e.g. ITIL, DDaT) and operational governance. Ability to manage service issues, coordinate with stakeholders, and contribute to improvement initiatives. Familiarity with business systems, identity management, and secure … and service reliability. Core areas (must have): Service Delivery & Coordination: Experience supporting the delivery and transition of business services, ensuring readiness and performance. Governance & Compliance: Understanding of service governance, risk management, and alignment with internal and external standards. Stakeholder Engagement: Ability to communicate effectively with internal customers, technical teams, and external partners. Service Documentation & Process Management: Experience More ❯

collaboration, sharing knowledge and contributing to a positive delivery culture. What you'll bring Experience supporting the delivery of business services in secure or complex environments. · Understanding of service management frameworks (e.g. ITIL, DDaT) and operational governance. · Ability to manage service issues, coordinate with stakeholders, and contribute to improvement initiatives. · Familiarity with business systems, identity management, and secure … and service reliability. Core areas (must have): Service Delivery & Coordination: Experience supporting the delivery and transition of business services, ensuring readiness and performance. · Governance & Compliance: Understanding of service governance, risk management, and alignment with internal and external standards. · Stakeholder Engagement: Ability to communicate effectively with internal customers, technical teams, and external partners. · Service Documentation & Process Management: Experience More ❯

week Full-time Office based (as per above sites) Role Type: Permanent MUST BE EITHER SECURITY CLEARED - OR HAVE THE ABILITY TO UNDERTAKE Team/Service Overview The Patch Management service helps customers ensure their End User devices as well as their Servers are patched and security compliant. We achieve this by maintaining the latest patch on monthly/… quarterly bases. Patch Management also provide software deployment to ensure all customers core applications are on the latest/supported version. Our goal is to provide users with the best possible upgrade experience, and we achieve this by using our mature and comprehensive standard process and tools. The service is governed and controlled by the Release team. Patch Management … members for cover and contingency This role will require a flexible approach and may occasionally require out of hours support What youll need Hand on experience of Windows patch management Technical experience of using deployment toolsets (SCCM/MECM, Intune, WS1, WSUS) Experience of deploying security patches and software packages Experience of Microsoft operating systems and Patch Management More ❯

Title: Business Analyst Location: Wokingham Contract Type: 6 - month contractor position (with potential for extension) Are you ready to make a significant impact in the world of security asset management? Our client is on the lookout for a dynamic Business Analyst to support the successful delivery of the Security Asset Refresh Programme! If you're passionate about turning requirements … a Business Analyst, you will play a crucial role in ensuring that our new or upgraded security assets not only meet operational needs but also align with compliance and risk management standards. Your analytical skills will be essential in capturing requirements and assessing business impacts. Key Responsibilities: Requirements Management: Elicit, document, and validate business, functional, and non … standards. Business Case and PID Development: Lead analytical support for developing a robust Business Case aligned with organisational strategy. Collaborate with stakeholders to articulate the case for change, emphasising risk mitigation and operational efficiency. draught critical sections of the Project Initiation Document (PID). Skills & Experience Required Strong background in business analysis within technology or security programmes. Knowledge of More ❯

directly with strong technical engineers and management. They must have a proven track record in successfully managing complex power infrastructure projects, demonstrating strong leadership, strategic thinking, and exceptional project management expertise. The successful applicant will contribute to project delivery excellence in support of utility customers in the energy generation, transmission, and distribution industries. The role will report to the … Methodically outline timelines, incorporating key milestones for invoicing and labor requirements to ensure precision and adherence to project milestones. Effectively oversee project budgets, forecasts, and financial reporting, ensuring precise management and accountability. Implement robust cost control measures and optimize resource allocation to enhance efficiency and financial performance. Communicate project progress, milestones, and challenges accurately to executives and project sponsors … exemplify a strong business acumen within the team, proactively identifying and capitalizing on upselling opportunities embedded within our projects to drive additional growth. Deploy strategic, project-tailored approaches to risk management by implementing effective mitigation strategies. Recognize, evaluate, and proactively address both potential risks and ongoing issues within the project to ensure comprehensive and resilient project delivery. Cultivate More ❯

understanding of security frameworks and regulatory requirements. In addition, this role requires you to have experience of Information Security. The role will report directly to the Head of Governance, Risk and Compliance, with whom you will work to deliver the goals of the company to have a fit-for-purpose security standards framework. This is a role that requires … a challenging and fast-paced environment and take accountability to meet and drive the needs of the programme. What you'll do as a Policy Support Lead Security Standards Management: Develop and maintain comprehensive security policies, standards and procedures across the organisation. Align all standards with applicable regulatory requirements and frameworks (e.g., ISO 27001, GDPR, NIS-R). Review … and update standards regularly in response to emerging threats and regulatory changes. Governance & Compliance: Oversee the exception management framework, including reporting, approvals and reviews prior to expiry. Monitor compliance with security policies and standards across digital and business teams. Act as the primary point of contact for internal and external audits related to security standards. Service Delivery & Operations: Coordinate More ❯

collaboration, sharing knowledge and contributing to a positive delivery culture. What you’ll bring · Experience supporting the delivery of business services in secure or complex environments. · Understanding of service management frameworks (e.g. ITIL, DDaT) and operational governance. · Ability to manage service issues, coordinate with stakeholders, and contribute to improvement initiatives. · Familiarity with business systems, identity management, and secure … and service reliability. Core areas (must have): · Service Delivery & Coordination: Experience supporting the delivery and transition of business services, ensuring readiness and performance. · Governance & Compliance: Understanding of service governance, risk management, and alignment with internal and external standards. · Stakeholder Engagement: Ability to communicate effectively with internal customers, technical teams, and external partners. · Service Documentation & Process Management: Experience More ❯

collaboration, sharing knowledge and contributing to a positive delivery culture. What You'll Bring: Experience supporting the delivery of business services in secure or complex environments. Understanding of service management frameworks (e.g. ITIL, DDaT) and operational governance. Ability to manage service issues, coordinate with stakeholders, and contribute to improvement initiatives. Familiarity with business systems, identity management, and secure … and service reliability. Core Areas (must have): Service Delivery & Coordination: Experience supporting the delivery and transition of business services, ensuring readiness and performance. Governance & Compliance: Understanding of service governance, risk management, and alignment with internal and external standards. Stakeholder Engagement: Ability to communicate effectively with internal customers, technical teams, and external partners. Service Documentation & Process Management: Experience More ❯

Purpose The Security Lead is both the client-facing strategist and the internal accountable owner of security within the MSP. They lead Quarterly Security Reviews (QSRs), own the client risk register and exception process, and ensure services are delivered in line with frameworks such as Cyber Essentials, ISO27001, and NIST. Internally, the Security Lead is accountable for the MSP … to-end: identifying risks, embedding controls, and ensuring compliance is demonstrable. Key Responsibilities Client-Facing Lead Quarterly Security Reviews (QSRs), presenting patch/vulnerability posture, incidents, compliance status, and risk register updates. Translate technical security risks into clear business impact and outcomes. Own the client exception process, ensuring risks are documented, communicated, and signed off. Support Account Managers and … for clients when risks require senior involvement. Internal MSP Security Own the MSP's internal security frameworks and certifications (e.g., CE+, ISO, SOC 2). Oversee patching, vulnerability, and risk management of MSP-owned infrastructure and tools. Ensure MSP's technology stack (RMM, XDR, PSA, backup, etc.) is securely deployed and monitored. Drive staff security awareness, training, and More ❯

Security Consultant (Governance, Risk, Compliance) Reading, UK (Hybrid with some travel) £30.00–£40.00 per hour (Inside IR35) 6-month contract. Potential to extend up to 2 years We are seeking an experienced Cyber Security Consultant (GRC) to join a leading global technology organization as part of their expanding Cyber Security practice. The successful candidate will deliver a range of … Governance, Risk, and Compliance (GRC) consulting engagements for large enterprise clients, supporting the full project lifecycle from scoping to delivery and reporting. You’ll work closely with senior stakeholders, from technical teams through to directors, providing expert advisory support to strengthen cyber security frameworks and ensure compliance with global standards. Key Responsibilities Deliver end-to-end Cyber GRC consulting … projects for enterprise clients. Conduct risk assessments, develop compliance frameworks, and provide actionable recommendations. Apply industry standards such as ISO27001, NIST CSF, CIS Top 18, and COBIT. Support clients with Cloud Security, Business Continuity, Disaster Recovery, and emerging technology risk management. Collaborate with internal and client teams to enhance cyber resilience and compliance maturity. About You Minimum of More ❯