4 of 4 Risk Register Jobs in the East Midlands

advice and guidance on all cyber security related matters and ensure the wider technology teams are engaged and supported Manage and drive the security risk register Ensure our suppliers and vendors are appropriately assessed against our security controls frameworks and comply with our security standards and any certification … skills with the ability to translate technical speak into easy to understand noncomplex language Able to engage with senior leaders to promote, and enable risk based decision making Working Hours: 09.00 - 17.30 Monday- Friday Apply for this position Full Name Email Phone Upload CV/Resume Allowed Type(s More ❯

You will be required to manage specialist IT 3rd service partners/consultants. The role involves having a strong focus on IT security, managing risk, and remaining compliant (CE/DRP/ISO). Roles & Responsibilities: Stay up to date with innovative IT solutions and identify opportunities for improvements … business and IT operations. Ensure proactive measures are in place to protect against cyber threats and IT risks, maintaining an up-to-date IT risk register and implementing appropriate mitigation strategies. Support the creation and administration of IT Disaster Recovery (DRP) and Business Continuity Plans (BCP) to ensure More ❯

and enforce IT priorities, ensuring alignment with the company's goals and objectives prepare company reports, including highlight reports and reviews of the Company Risk Register understand IT systems and develop and/or source software solutions that meet the needs of departmental managers and support company goals More ❯

operations. Define cybersecurity requirements within the client's environment, including rail-specific systems, legacy OT, and modern industrial platforms. Support developing and delivering security risk assessments, threat models, and control frameworks following the relevant standards. Contribute to the production and review of assurance artefacts, including security cases, risk … OT) environments, including SCADA systems, field devices, industrial protocols, and control network architectures. Firm grounding in cybersecurity principles for critical infrastructure, including threat modelling, risk analysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT/IT systems within … stakeholder engagement skills, with the ability to liaise confidently across engineering, programme delivery, assurance, and regulatory audiences. Ability to produce high-quality documentation, including risk assessments, technical guidance, assurance artefacts, and audit-ready deliverables. Familiarity with UK cybersecurity regulations and sector guidance, including the NIS Regulations, CNI expectations, and More ❯