1 to 25 of 79 Risk Register Jobs in England

bonus and benefits Hybrid working available (3 days in the office) Our client, a dynamic and rapidly growing UK-based EMI FinTech Payments firm, is seeking an experienced Enterprise Risk Analyst to support their Head of Risk. This is a focused Enterprise Risk Analyst role dedicated entirely to the Second Line of Defence (2LOD), centred on embedding the … firm’s Governance, Risk, and Compliance (GRC) model. You will be instrumental in the day-to-day operation of the ERM framework, ensuring risk is managed consistently and strategically across the entire business. Duties of the Enterprise Risk Analyst to include: Risk Register Management: Own the central Risk Register , ensuring all key risks … Strategic, Financial, Operational, and Compliance) are accurately identified, assessed, and maintained. Risk Assessment Cycle: Facilitate and manage the formal Risk and Control Self-Assessment (RCSA) process across all business units. Control Framework: Maintain and evolve the company’s Risk Control Framework , ensuring controls are effective and aligned with the established risk appetite. Residual Risk Analysis More ❯

a continuously developing relationship with I Squared Capital - a global infrastructure investment fund manager - who acquired Arriva in 2024. We are looking for a Head of Information Security Governance, Risk, Compliance (GRC) & Awareness to join our Information Security Team on a full-time, permanent basis, based from either our Doxford office, Sunderland or Lacon House, London. Reporting to the … Group Chief Information Security Officer, the Head of InfoSec GRC & Awareness is responsible for leading the governance, risk, and compliance functions within the Information Security domain. This role ensures that the organisation maintains a robust security posture through the development and enforcement of policies, standards, and awareness initiatives. The role is pivotal in aligning security practices with business objectives … comprehensive Operational Technology (OT) compliance framework, ensuring alignment with broader Arriva and industry recognised cyber security standards. The Head of InfoSec GRC & Awareness manages the enterprise-wide information security risk management process, including the maintenance of the InfoSec Risk Register, oversight of residual risk declarations, and escalation of serious risks in accordance with the Arriva Risk More ❯

have within the community. So, what’s your possible? Salary: £60,000 - £71,000 Opportunity: This is more than just a job; it’s a mission. As the PMO Risk Manager at Northrop Grumman you will be responsible for leading risk management in a portfolio of complex projects delivering technology solutions to UK Defence. In line with departmental … procedures, you will develop, maintain and execute a robust risk management framework, enabling the adoption of risk management best practice across the department’s portfolio to ensure delivery of value to our customers. Our UK Defence business is a Sovereign software and systems centre of excellence. As well as developing and supporting UK wide and internationally deployed multi … Royal Navy. We pioneer – with fierce curiosity, dedication, and innovation, we seek to solve the world’s most challenging problems. Responsibilities: Develop, embed and manage an effective and robust risk management framework Working with Project and Programme Management colleagues to agree and assist with the management of programme, project and portfolio risks, ensuring a holistic risk management strategy More ❯

have within the community. So, what’s your possible? Salary: £60,000 - £71,000 Opportunity: This is more than just a job; it’s a mission. As the PMO Risk Manager at Northrop Grumman you will be responsible for leading risk management in a portfolio of complex projects delivering technology solutions to UK Defence. In line with departmental … procedures, you will develop, maintain and execute a robust risk management framework, enabling the adoption of risk management best practice across the department’s portfolio to ensure delivery of value to our customers. Our UK Defence business is a Sovereign software and systems centre of excellence. As well as developing and supporting UK wide and internationally deployed multi … Royal Navy. We pioneer – with fierce curiosity, dedication, and innovation, we seek to solve the world’s most challenging problems. Responsibilities: Develop, embed and manage an effective and robust risk management framework Working with Project and Programme Management colleagues to agree and assist with the management of programme, project and portfolio risks, ensuring a holistic risk management strategy More ❯

have within the community. So, what’s your possible? Salary: £60,000 - £71,000 Opportunity: This is more than just a job; it’s a mission. As the PMO Risk Manager at Northrop Grumman you will be responsible for leading risk management in a portfolio of complex projects delivering technology solutions to UK Defence. In line with departmental … procedures, you will develop, maintain and execute a robust risk management framework, enabling the adoption of risk management best practice across the department’s portfolio to ensure delivery of value to our customers. Our UK Defence business is a Sovereign software and systems centre of excellence. As well as developing and supporting UK wide and internationally deployed multi … Royal Navy. We pioneer – with fierce curiosity, dedication, and innovation, we seek to solve the world’s most challenging problems. Responsibilities: Develop, embed and manage an effective and robust risk management framework Working with Project and Programme Management colleagues to agree and assist with the management of programme, project and portfolio risks, ensuring a holistic risk management strategy More ❯

Purpose The Security Lead is both the client-facing strategist and the internal accountable owner of security within the MSP. They lead Quarterly Security Reviews (QSRs), own the client risk register and exception process, and ensure services are delivered in line with frameworks such as Cyber Essentials, ISO27001, and NIST. Internally, the Security Lead is accountable for the … to-end: identifying risks, embedding controls, and ensuring compliance is demonstrable. Key Responsibilities Client-Facing Lead Quarterly Security Reviews (QSRs), presenting patch/vulnerability posture, incidents, compliance status, and risk register updates. Translate technical security risks into clear business impact and outcomes. Own the client exception process, ensuring risks are documented, communicated, and signed off. Support Account Managers … for clients when risks require senior involvement. Internal MSP Security Own the MSP's internal security frameworks and certifications (e.g., CE+, ISO, SOC 2). Oversee patching, vulnerability, and risk management of MSP-owned infrastructure and tools. Ensure MSP's technology stack (RMM, XDR, PSA, backup, etc.) is securely deployed and monitored. Drive staff security awareness, training, and compliance More ❯

in Computer Science, Cybersecurity, or a related field. *Postgraduate qualification in an IT-related subject. *Professional certifications such as CISSP, CompTIA Security+, or equivalent. *Experience with governance frameworks and risk management tools. Key Responsibilities *Operate and maintain security systems including firewalls, antivirus, intrusion detection/prevention, and authentication platforms. *Monitor system logs and network traffic to identify suspicious activity … forensic investigations. *Develop and maintain security protocols, policies, and procedures. *Conduct vulnerability assessments and recommend mitigation strategies. *Deliver cybersecurity awareness training and guidance to staff. *Maintain the information security risk register and support audit processes. *Collaborate with IT and operational teams to ensure secure system configurations. *Assist in compliance with frameworks such as the Data Security Protection Toolkit. … proud to be an equal opportunities employer. Keywords IT Security Specialist, Cybersecurity Analyst, SOC Analyst, Azure Security, Information Security, Firewalls, Intrusion Detection, Antivirus, ITIL, CISSP, Security Compliance, Vulnerability Management, Risk Register, Public Sector IT, Hybrid Role, Manchester Jobs, Security Awareness Training More ❯

to join a growing organisation with a diverse digital environment and a wide range of technology partners. You’ll play a key role in strengthening our cybersecurity governance and risk management framework, helping to ensure systems, data, and third-party relationships remain secure and compliant. Working closely with internal IT teams and external suppliers, you’ll help manage cyber … risk, maintain compliance with relevant frameworks, and support continuous improvement in how we protect our business. Key Responsibilities Support the onboarding and assessment of third-party vendors and managed security service providers (MSSPs). Maintain an accurate register of suppliers and their associated security risks. Coordinate and oversee cyber audits, penetration tests, and remediation activities. Assist in maintaining … the organisation’s cyber risk register and conducting risk assessments for new systems or projects. Help develop, document, and maintain information security policies, procedures, and standards. Support compliance activities related to data protection and other relevant regulations. Contribute to incident response processes, including tracking and post-incident reviews. Stay informed about emerging cyber threats and work with More ❯

IT Risk & Policy Analyst - Leatherhead (2-3 days per week) - £35,000 per annum base + benefits** The IT Risk & Policy Analyst is responsible for managing IT risks, monitoring audit actions, maintaining IT policies and procedures, and supporting GDPR compliance. The role ensures effective governance and compliance across IT processes, providing a framework for the identification, mitigation, and … This position bridges technical and governance aspects, ensuring alignment with company standards and regulatory requirements, while fostering collaboration across teams to embed robust IT practices: Ensuring that all IT risk and IT audit actions are highlighted, monitored, and escalated where appropriate. Maintaining the suite of IT policies and procedures. Providing support to the Privacy Team in ensuring GDPR compliance. … Main accountabilities: Assisting in managing IT Risk Register inputs and outcomes, liaising with IT SLT & Group Assurance and external auditors as appropriate. Liaising with other teams to ensure SLAs in scope are met. Identifying policy/procedure gaps and working with SMEs to create the material. Managing review process for existing IT policies and procedures, updating, or archiving More ❯

ISO27001, IT Risk, IT Compliance, IT Controls, IT Audit, Policy. Governance, Security, Surrey area Your new company A specialist organisation in the Health/Medical sector offers hybrid working in this role based in North Surrey area. Your new role You will be working in the Risk team and will design, implement & maintain the Information Security Management System … ISMS) in accordance with ISO27001 in a company that manages highly sensitive data. You will support the firm's governance, addressing areas of risk and supporting plans to address these risks, including the compilation of business continuity plans (BCP). You will work closely with colleagues in IT to enhance the technology & control frameworks regarding information security compliance & cyber … threat security. Risk & Compliance You will lead the development, implementation, and continuous improvement of our Information Security Management System (ISMS) in line with ISO 27001 and other regulatory standards. Assessing security posture, identifying vulnerabilities, and developing mitigation strategies to manage enterprise-wide information security risks. Maintaining and enhancing the organisation's risk register and heat map, ensuring More ❯

negotiation of flow-down terms for non complex agreements with minimal supervision. Responsible for on-going supplier performance and supplier relationship management throughout the contract lifetime, including inputs to risk register and risk mitigation strategies. Support input into corporate and functional business continuity and disaster recovery plan. Implement legislative and international standards within the supply base. Support More ❯

the either the Vitality Bournemouth or London office. Full time, 35 hours per week. We are happy to discuss flexible working! Top 3 skills needed for this role: IT risk & compliance expertise – strong knowledge of controls and regulatory frameworks Capacity planning & performance monitoring – forecasting, optimisation, and tool usage Stakeholder communication – translating technical risks and influencing decisions What this role … is all about: As our IT Capacity and Risk Manager, you’ll play a pivotal role in ensuring our technology environment remains robust, compliant, and future-ready. Lead cross-team efforts to embed risk management and capacity planning, advancing IT operations and strategic goals with excellence and compliance.This is a high-impact role where you’ll translate complex … activities across infrastructure and applications Forecast resource needs based on business growth and usage trends Ensure systems meet SLAs without over-provisioning Identify performance bottlenecks and underutilised resources Governance & Risk Management Design and assess IT controls (e.g., access, change, application, general IT controls) Conduct gap analyses against different frameworks such as ISO 27001 Maintain and enhance the IT risk More ❯

ensuring a comprehensive purchase review is carried out by the team to ensure cost-effective and value add purchase on technological equipment, software, contracts and systems. Maintain the IT Risk Register, reporting to the Board any internal information security issues and incidents providing solutions and recommendations to resolution. Support the Board in the management of Group Risk on all IT related matters and report on risk levels and mitigation monthly. Skills & experience Extensive experience in IT, ideally have experience of operating at strategic level and reporting up to Board level Worked in a complex IT environment which is solution focussed Experience of leading large complex IT projects in a fast-paced environment Strong leadership and … written communication skills including the ability to explain technical concepts and technologies to senior leaders including non-technical members of staff Good understanding of data privacy (GDPR) governance and risk management activities and how this influences IT and business operations Excellent understanding of the Microsoft eco-system, particularly M365, D365 F&O, Power Suite & Fabric Proven experience with Data More ❯

staff members. We care for approximately 1.5 million people annually, including over 200,000 emergency cases. Leeds Teaching Hospitals is committed to our process of redeploying 'at risk' members of our existing workforce to new roles. As such, all our job adverts are subject to this policy and we reserve the right to close, delay or remove adverts while … jobholder will be responsible for the design and creation of robotic process automation (RPA) solutions and for the integration of these into, and between, existing systems. Providing cost-effective, risk-controlled, robust, reliable, responsive and secure automation solutions, this role will support clinical and corporate transformation needs to assist the organisation in delivering its strategy. The jobholder will be … Ensure the RPA processes meet the required performance standards. Ensure that unplanned variation in service delivery (activity, income, expenditure, capacity, performance) is identified and appropriate, timely action taken. 10. Risk Management and Governance Work collaboratively with colleagues to ensure that effective governance arrangements and performance management systems are in place. Work collaboratively with colleagues to ensure that all risks More ❯

IT Risk and Policy (GRC) Analyst Permanent - Up to 38k + strong benefits Location: Hybrid - Leatherhead Your new company A leading construction and development company in Surrey is currently looking for an IT Risk and Policy (GRC) Analyst to come in and support the existing IT Risk & Policy Manager with the day-to-day tasks involved with … role is full-time, with a hybrid working pattern, usually around 2/3 days a week in the office. Your new role You will be supporting the IT Risk & Policy Manager across a broad variety of work, with the ability to gain a lot of different experience across multiple areas. The Analyst is responsible for managing IT risks … and governance aspects, with a focus on standards and regulations, whilst ensuring collaboration across the business to ensure strong IT practices are put in place. Ensuring that all IT risk and IT audit actions are highlighted, monitored, and escalated where appropriate. Maintaining the suite of IT policies and procedures. Providing support to the Privacy Team in ensuring GDPR compliance. More ❯

IT Risk and Policy (GRC) Analyst Permanent - Up to £38k + strong benefits Location: Hybrid - Leatherhead Your new company A leading construction and development company in Surrey is currently looking for an IT Risk and Policy (GRC) Analyst to come in and support the existing IT Risk & Policy Manager with the day-to-day tasks involved with … role is full-time, with a hybrid working pattern, usually around 2/3 days a week in the office. Your new role You will be supporting the IT Risk & Policy Manager across a broad variety of work, with the ability to gain a lot of different experience across multiple areas. The Analyst is responsible for managing IT risks … and governance aspects, with a focus on standards and regulations, whilst ensuring collaboration across the business to ensure strong IT practices are put in place. Ensuring that all IT risk and IT audit actions are highlighted, monitored, and escalated where appropriate. Maintaining the suite of IT policies and procedures. Providing support to the Privacy Team in ensuring GDPR compliance. More ❯

organisations navigate complex business challenges with confidence. With a strong presence in the UK, we partner with companies across industries to deliver best-in-class advisory services in accounting, risk, cyber security, technology, and business transformation. We pride ourselves on combining technical expertise with a practical, hands-on approach, helping our clients strengthen resilience, meet regulatory requirements, and stay … ahead in an increasingly digital and risk-driven landscape. Technical and Domain Experience: Conduct cybersecurity maturity and risk assessment and for clients. Practical experience implementing security controls, in areas such as MDR, IAM, Network Security, Cloud Deployments. Advise clients on cybersecurity strategy, metrics and reporting for various levels of stakeholders, including Audit Committees and Board of Directors. Build … risk management practices for clients, including policies, procedures, Risk Register, etc. Previous experience as a systems administrator, systems engineer, or security analyst. Understanding of operating system hardening principles, network design principles, and systems security. Guide clients in establishing cybersecurity policies, standards, and procedures. Manage cybersecurity training & awareness services for clients from design to implementation. Understanding of security More ❯

threat intelligence feeds, or monitoring tools. Performance Monitoring and Reporting Define and monitor key security performance indicators (KPIs). Produce regular security reports for senior management and boards. Track risk registers, exceptions, and remediation actions related to security. Stakeholder Engagement and Leadership Act as the senior security point of contact for internal and external stakeholders. Provide advice and consultancy More ❯

the security of new applications and programs prior to installation or upgrade and within the Software Development Lifecycle. Participates in ensuring that Information Security risks are identified, and the risk register is continually maintained and reviewed. Provides monthly risk reporting to the Information Security Manager. Responsible for ensuring that all servers and other IT related equipment is More ❯

the security of new applications and programs prior to installation or upgrade and within the Software Development Lifecycle. Participates in ensuring that Information Security risks are identified, and the risk register is continually maintained and reviewed. Provides monthly risk reporting to the Information Security Manager. Responsible for ensuring that all servers and other IT related equipment is More ❯

the security of new applications and programs prior to installation or upgrade and within the Software Development Lifecycle. Participates in ensuring that Information Security risks are identified, and the risk register is continually maintained and reviewed. Provides monthly risk reporting to the Information Security Manager. Responsible for ensuring that all servers and other IT related equipment is More ❯

threat intelligence feeds, or monitoring tools. Performance Monitoring and Reporting Define and monitor key security performance indicators (KPIs). Produce regular security reports for senior management and boards. Track risk registers, exceptions, and remediation actions related to security. Stakeholder Engagement and Leadership Act as the senior security point of contact for internal and external stakeholders. Provide advice and consultancy More ❯

security health checks Provide expert advice and guidance on all cyber security related matters and ensure the wider technology teams are engaged and supported Manage and drive the security risk register Ensure our suppliers and vendors are appropriately assessed against our security controls frameworks and comply with our security standards and any certification claims Promote a culture of … Excellent written and verbal communication skills with the ability to translate technical speak into easy to understand noncomplex language Able to engage with senior leaders to promote, and enable risk based decision making Working Hours 09.00 - 17.30 Monday- Friday Apply for this position Full Name Email Phone Upload CV/Resume Allowed Type(s): .pdf, .doc, .docx By using … this form you agree with the storage and handling of your data by this website. Register with us and one of our experienced iPeople recruits will let you know when the perfect job becomes available. Do you know someone you think would be perfect for one of our job vacancies? Subscribe to get notifications when new job openings are More ❯

Construction Cloud (ACC) and SharePoint for document control, mark-ups, and collaboration with PMO teams. Reporting: Produce weekly progress reports, track blockers, and provide clear next steps and recommendations. Risk Management: Maintain a project risk register and trace all risks back to cost and time impacts. Compliance & Safety: Ensure adherence to all safety standards and regulatory requirements. More ❯

at all times by maintaining quality controlprocesses. Export to LFPSE Main duties of the job Provide front line telephone and e-mail assistance to local users for the Trust Risk management software analysing their difficulties to ensuring their problems are resolvedProvide a strong and focused technical and operational support function to users and to provide operational support to the … clinical governance & risk team membersSupport new team members during their induction.Support with the development and delivery of training packages for Datix Risk Management and DatixWeb for staff throughout the Trust.Maintain the security of the system ensuring a complete log of all users, access permissions, and new installations, removing access for leaversBe proficient with the use of the Datix … corrections where necessary in order to meet internal and external reporting requirements Be responsible for quality checking data in order to upload electronic data reports routinely from the Datix Risk Management System to the National Reporting Learning System (NPSA NRLS) Input incidents onto the incident reporting database (Datix) as required.Analysis of data to aid identifying trends and escalating to More ❯