1 to 25 of 81 Risk Management Jobs in the East of England

University Press & Assessment (CUPA) Location: Cambridge/Hybrid with 2 days a week minimum the office Contract: Permanent Join our organisation as a Security Risk Lead . Utilise your expertise and drive to safeguard operations in this impactful role. We are Cambridge University Press & Assessment, a world-leading academic … publisher and assessment organisation and a proud part of the University of Cambridge. About the role The Security Risk Lead plays a pivotal role by driving Cambridge University Press & Assessment's security risk management strategy. This position is responsible for identifying, assessing, and mitigating operational, financial, and … strategic security risks across the organisation to ensure a resilient and compliant security framework. Overseeing the Security Risk Manager, the Security Risk Lead will work closely with senior stakeholders to develop and embed risk management processes that align with the organisation's priorities. They will also More ❯

Vacancy: Cyber and IT Risk Manager The Purpose of the Cyber & IT Risk Manager is to complement and enhance Johnson Matthey's cyber security and IT/OT risk posture by identifying, assessing, analysing and communicating IT and cyber-security risks, and both the existence and efficacy … need talented individuals to help shape and lead us into our next century. Your responsibilities: Develop, implement, schedule and drive a cyber and IT risk management program which includes regular assessment, prioritisation, and review of remediation and mitigation activities, with clearly defined management ownership. Ensure that the … risk management program is aligned with business priorities and risk appetite, assessing and clearly communicating those risks in a non-technical, easily digestible manner that ensures all stakeholders can make informed decisions on these risks. Ensure that risks are assessed, recorded and communicated at the appropriate level More ❯

us to deliver impact how and where it matters most. Connect to your opportunity As a Technical Analyst, you will provide support to Cybersecurity Risk Management team, Security Operations Centre (SOC), Global Event Monitoring Service (GEMS), Deloitte firms and cybersecurity service teams like Firewall Management, IDS/… IPS, Email protection amongst others. In this role you will: Focus on the analysis of Security Incident Event Management (SIEM) data, which includes: Provide Deloitte firms with cybersecurity data. Assist Deloitte Global and Deloitte firms with data extraction for ISO and PCI audit requirements. Support eDiscovery teams by providing … data relating to insider threats and legal matters. Build and maintain PowerBI dashboards. Support the cyber risk management team with data requests to support cyber risk management tasks. Work with and articulate highly complex datasets and analysis concisely. Connect to your skills and professional experience Do More ❯

Benefits: Health cover, 25 Days Holiday + BH, Flex Benefits (EMCOR UK discount scheme) About EMCOR UK: At EMCOR UK, we revolutionise facilities management by combining our engineering heritage and innovation capability. We prioritise people in everything we do, collaborating closely with our customers to understand all their needs … Engineer ensures compliance with statutory and legislative requirements for electrical and mechanical systems. This involves developing and auditing Safe Systems of Work (SSoW), conducting risk-based technical audits to identify and address technical risks, providing technical support, mentorship and assessment of Authorised Persons and Competent Persons and enhancing technical … Life Sciences and Industrial and Manufacturing sector as required bythe Operations Director. People: Develop and deliver the EMCOR UK (EUK) Technical and Safety Competency Management System (CMS) across the GSK estate,including identifying, assessing, and periodically monitoring and auditing Authorised Persons (AP) and Competent Persons (CP). Undertake EUKs More ❯

Benefits: Health cover, 25 Days Holiday + BH, Flex Benefits (EMCOR UK discount scheme) About EMCOR UK: At EMCOR UK, we revolutionise facilities management by combining our engineering heritage and innovation capability. We prioritise people in everything we do, collaborating closely with our customers to understand all their needs … Engineer ensures compliance with statutory and legislative requirements for electrical and mechanical systems. This involves developing and auditing Safe Systems of Work (SSoW), conducting risk-based technical audits to identify and address technical risks, providing technical support, mentorship and assessment of Authorised Persons and Competent Persons and enhancing technical … Life Sciences and Industrial and Manufacturing sector as required bythe Operations Director. People: Develop and deliver the EMCOR UK (EUK) Technical and Safety Competency Management System (CMS) across the GSK estate,including identifying, assessing, and periodically monitoring and auditing Authorised Persons (AP) and Competent Persons (CP). Undertake EUKs More ❯

University Press & Assessment's information assets and ensuring compliance with industry standards, regulations, and best practices. This role involves leading security assurance initiatives, conducting risk assessments, driving compliance activities, and implementing controls to enhance the organisation's security. Key accountabilities: Assurance and Testing: Develop and improve security policies and … penetration testing, and other technical evaluations. Collaborate with technology teams to implement robust security controls and provide guidance on remediation. Perform third-party vendor risk assessments and report findings to relevant stakeholders. Risk Management: Conduct regular risk assessments to identify vulnerabilities and associated risks. Develop and … implement risk mitigation strategies. Define and report key risk metrics for security assurance. Maintain a comprehensive risk register. Attack Surface Management: Collaborate on assurance initiatives to identify, monitor, and reduce exposed vulnerabilities. Monitor the external threat landscape and integrate attack surface management capabilities. Security Governance More ❯

Project Delivery Manager to lead the implementation of a large-scale finance systems replacement programme. This role involves managing project coordination, planning, budgeting, scheduling, risk management, and stakeholder engagement to ensure successful delivery. The ideal candidate will have a strong background in programme management, change management … systems replacement programme, ensuring it is completed on time, within budget, and to the required quality. Develop and implement project plans, governance frameworks, and risk management strategies. Manage project teams, external vendors, and key stakeholders to drive collaboration and successful outcomes. Monitor project interdependencies, ensuring seamless integration with … other initiatives. Lead change management efforts, ensuring user adoption and business readiness. Control budgets and resource allocation, ensuring efficient use of funds and personnel. Provide regular reports and updates to senior stakeholders, facilitating informed decision-making. Skills & Experience Required: Proven experience managing large-scale IT or finance transformation projects More ❯

and cloud environments to ensure resilience, scalability, and cost-effectiveness. Report against service levels by measuring team performance against key performance metrics. IT Project Management & Digital Transformation: Lead IT projects, including ERP upgrades and enhancements, automation initiatives, and new technology implementations. Define project scope, budgets, and timelines, ensuring initiatives … deliver measurable business outcomes. Work closely with business units to identify opportunities where technology can enhance efficiency and profitability. Security, Compliance & Risk Management: Ensure IT security policies and procedures protect the organisation from cyber threats and comply with relevant regulations. Oversee IT risk management and business … to minimise operational disruptions. Collaborate with third-party vendors and partners to ensure robust cybersecurity practices are in place and effective. IT Procurement & Vendor Management: Manage IT procurement, ensuring value for money and fit-for-purpose technology solutions. Negotiate and oversee vendor contracts, ensuring third-party services align with More ❯

and cloud environments to ensure resilience, scalability, and cost-effectiveness. Report against service levels by measuring team performance against key performance metrics. IT Project Management & Digital Transformation: Lead IT projects, including ERP upgrades and enhancements, automation initiatives, and new technology implementations. Define project scope, budgets, and timelines, ensuring initiatives … deliver measurable business outcomes. Work closely with business units to identify opportunities where technology can enhance efficiency and profitability. Security, Compliance & Risk Management: Ensure IT security policies and procedures protect the organisation from cyber threats and comply with relevant regulations. Oversee IT risk management and business … to minimise operational disruptions. Collaborate with third-party vendors and partners to ensure robust cybersecurity practices are in place and effective. IT Procurement & Vendor Management: Manage IT procurement, ensuring value for money and fit-for-purpose technology solutions. Negotiate and oversee vendor contracts, ensuring third-party services align with More ❯

Looking to join a fast growing FinTech in Cambridge? Due to expansion, we're recruiting for a Payment Risk & Incidents Lead to join a dynamic team, where you can have a significant impact on the company's growth and develop your role and career as the business evolves. This … role offers a great deal of variety, covering operations and risk management including: Support with monthly fees and interest allocation to client accounts. Payment Investigations, supporting timely resolutions of reconciliation discrepancies and client queries. Support the development of Risk Control Self Assessments (RCSA). Produce monthly risk reporting, providing insights into the current risk profile and management of controls effectiveness. Support and assist Risk development of Payments projects and releases, highlighting areas that require management response plans. Support Management with the development of 1LOD risk oversight, embedding controls and performing More ❯

business areas including the following: You will be managing the planning and delivery of information security reviews of Sky's suppliers This includes assessing risk and identifying IT control deficiencies within suppliers' IT control environment You will work primarily with the ServiceNow third party risk management tool … have the opportunity to identify areas for process improvement and control deficiency remediation You will be helping to build and maintain a successful team, management and development of junior staff plays an important part of the role There will be opportunities to enhance your own continuing personal development What … you'll bring It is likely that you have worked in IT risk and controls audit, potentially with a Big 4 background, and/or have IT information security experience You will be familiar with designing and testing control frameworks with previous experience in Vendor Risk Management More ❯

professional with a passion for protecting business-critical systems and influencing secure technology practices? Do you thrive in a governance-focused role, advising on risk, compliance, and cyber best practices across a modern IT landscape? Our Global Technology Services (GTS) Risk & Security team is looking for an Information … and data across the business Advising on and reviewing the implementation of Information Security Policies, Standards and Controls across projects and operations Coordinating vulnerability management activities across IT, OT, and cloud environments Providing guidance on security best practices, supporting compliance with internal policy and external regulations Supporting the development … and rollout of the third-party risk management framework Participating in internal forums and external security events, bringing fresh insights to shape future security initiatives Maintaining awareness of business systems, data flows, and architecture to inform security recommendations Collaborating with stakeholders to ensure secure design and implementation of More ❯

Job Description: In broad terms, you should have as many of the following as possible: Experience of owning a security risk management system for highly regulated products based on recognised frameworks such as aerospace, nuclear, automotive, rail or oil & gas; People management, mentoring and development skills; Practical … would be desirable, but not essential , if you also had one or more of: Practical experience of ISO27001/27004/27005 or NIST Risk Management Framework (RMF); Knowledge of UK/NATO Information Assurance/Accreditation frameworks; Knowledge of EASA/FAA Airworthiness Certification frameworks; Awareness of … current crypto technologies, Key Management Systems & practical COMSEC; Chartered Engineer status with a recognised body; Awarded or looking to achieve an NCSC Certified Cyber Professional (CCP) recognition; Awareness of Information Security (INFOSEC), Communications Security (COMSEC), Transmission Security (TRANSEC), Product Safety and their inter-relationship; Experience of producing and delivering More ❯

you will do Strategic Leadership: Develop and implement a comprehensive power roadmap that aligns with the company's long-term goals and objectives Team Management: Lead and mentor a team of high-performing utility program managers, fostering a culture of excellence and continuous improvement Project Oversight: Oversee the execution … the highest quality standards Stakeholder Collaboration: Work closely with internal and external stakeholders, including engineering, construction, and operations teams, to ensure seamless project delivery Risk Management: Identify and mitigate risks associated with power projects, ensuring compliance with all regulatory requirements and industry standards Innovation: Stay abreast of the … environment in GID What we are looking for Strong knowledge of construction methodologies, building codes, safety regulations, and industry best practices Excellent leadership, team management, communication, and interpersonal skills Understanding of engineering principles and best practices In-depth knowledge of regulatory requirements and industry standards Understanding of substation design More ❯

Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. You will … ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based … risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance More ❯

Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. You will … ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based … risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance More ❯

part of the Digital Safety Assurance team led by the Head of Digital Safety Assurance. The Digital Safety Assurance Team is made up of Risk, Compliance and Technical Specialist that are tasked with managing the cyber risk across easyJet. Digital Safety sits organisationally as part of our Group … in line with Digital Safety policy, security standards and our legal and regulatory compliance requirements. Along with capturing exposures and exceptions as part of risk identification. JOB ACCOUNTABILITIES Overseeing, educating and assessing the implementation of Digital Safety policies, associated security standards and security NFRs ensuring they are effectively embedded … the Cyber Architecture to validate the threat models produced as part of the project design process. Conduct security assessments and work with Digital Safety Risk function to raise identified cyber risk into the risk management process. Identity the controls failures that contribute to changing security threats More ❯

part of the Digital Safety Assurance team led by the Head of Digital Safety Assurance. The Digital Safety Assurance Team is made up of Risk, Compliance and Technical Specialist that are tasked with managing the cyber risk across easyJet. Digital Safety sits organisationally as part of our Group … in line with Digital Safety policy, security standards and our legal and regulatory compliance requirements. Along with capturing exposures and exceptions as part of risk identification. JOB ACCOUNTABILITIES Overseeing, educating and assessing the implementation of Digital Safety policies, associated security standards and security NFRs ensuring they are effectively embedded … the Cyber Architecture to validate the threat models produced as part of the project design process. Conduct security assessments and work with Digital Safety Risk function to raise identified cyber risk into the risk management process. Identity the controls failures that contribute to changing security threats More ❯

part of the Digital Safety Assurance team led by the Head of Digital Safety Assurance. The Digital Safety Assurance Team is made up of Risk, Compliance and Technical Specialist that are tasked with managing the cyber risk across easyJet. Digital Safety sits organisationally as part of our Group … in line with Digital Safety policy, security standards and our legal and regulatory compliance requirements. Along with capturing exposures and exceptions as part of risk identification. JOB ACCOUNTABILITIES Overseeing, educating and assessing the implementation of Digital Safety policies, associated security standards and security NFRs ensuring they are effectively embedded … the Cyber Architecture to validate the threat models produced as part of the project design process. Conduct security assessments and work with Digital Safety Risk function to raise identified cyber risk into the risk management process. Identity the controls failures that contribute to changing security threats More ❯

part of the Digital Safety Assurance team led by the Head of Digital Safety Assurance. The Digital Safety Assurance Team is made up of Risk, Compliance and Technical Specialist that are tasked with managing the cyber risk across easyJet. Digital Safety sits organisationally as part of our Group … in line with Digital Safety policy, security standards and our legal and regulatory compliance requirements. Along with capturing exposures and exceptions as part of risk identification. JOB ACCOUNTABILITIES Overseeing, educating and assessing the implementation of Digital Safety policies, associated security standards and security NFRs ensuring they are effectively embedded … the Cyber Architecture to validate the threat models produced as part of the project design process. Conduct security assessments and work with Digital Safety Risk function to raise identified cyber risk into the risk management process. Identity the controls failures that contribute to changing security threats More ❯

specify network changes, assuring continued network availability. The OT Network Security Engineer will support Site Focal Point with technical insight necessary for secure file management according to policies and have a role in new system implementation and incident response. It is key for the OT Network Security Engineer to … controls such as segmentation to isolate different parts of the OT environment, zoning to secure conduits for communication between zones and firewall management. Change Management: Implement change control processes to ensure that network changes are appropriate tested and approved without disruption to critical OT operations. Incident Management: Support … the technical response to operational technology-related incidents, ensuring rapid resolution to minimize downtime and operational disruption. Device Management: Harden devices such as switches, routers, firewalls by partnering and coordinating with the R&D OT Security Team and other key stakeholders aligned to GSK standards and proportionate to risk. More ❯

project vision, objectives, scope, outcomes, and success criteria. Build relationships to align solutions with business strategy, target operating model, and enterprise architecture. Ensure benefits management, adherence to best practices, and use of appropriate analysis methods. Contribute to methodology improvement and provide input to risk management and project … delivery. To be successful in the role, you will have: 2+ years in business analysis. Understanding of business analysis, Data Science/AI, Change Management, and project delivery methods. Business acumen, requirements analysis, objective/goal setting, and communication skills. Ability to challenge, analyze, and problem-solve, with attention … to detail. Process mapping, workshop facilitation, and stakeholder management skills. Ability to simplify complex ideas and manage benefits. Ideally, you will also have: Experience with technical teams, enterprise IT systems, data, and organizational change. Business case development skills and relevant qualifications (Business Analysis, Change Management, People Management More ❯

Healy Hunt have been exclusively mandated to support a Financial Services client to appoint a Senior IT Risk Analyst into their growing Risk function. You'll be supporting the Head of Operational Risk & Resilience across IT Risk Management, including the DORA regulations. The successful candidate … exposure to the board & committee, therefore strong communication skills is necessary. The successful candidate will have: A Financial Services background, ideally Banking. Strong IT Risk or IT Audit Generalist experience. DORA knowledge & experience - preferred More ❯

Healy Hunt have been exclusively mandated to support a Financial Services client to appoint a Senior IT Risk Analyst into their growing Risk function. You'll be supporting the Head of Operational Risk & Resilience across IT Risk Management, including the DORA regulations. The successful candidate … exposure to the board & committee, therefore strong communication skills is necessary. The successful candidate will have: A Financial Services background, ideally Banking. Strong IT Risk or IT Audit Generalist experience. DORA knowledge & experience - preferred More ❯

portfolio of IT projects, driving operational excellence, and ensuring successful executionwithin scope, budget, and timelines. The ideal candidate will have a strong background inproject management within the MSP space, excellent leadership skills, and a passion fortechnology-driven solutions. Main responsibilities for the success Head of Projects: Oversee the end … to-end delivery of IT projects, ensuring alignment with client needs and business objectives. Lead, mentor, and develop the project management team, fostering a high-performance culture. Implement best practices and frameworks (e.g., PRINCE2, Agile, ITIL) to optimise project execution. Collaborate with internal teams (technical engineers, service desk, sales … and external stakeholders to ensure seamless project delivery. Drive continuous improvement in project governance, risk management, and reporting processes. Manage budgets, resources, and timelines effectively to meet business and client expectations. Act as a strategic advisor to clients, providing insights on IT solutions and project roadmaps Main requirements More ❯