1 to 25 of 63 Risk Register Jobs in London

Senior Cyber Risk Analyst We are seeking a Senior Analyst with a robust background in cybersecurity risk assessment and internal security audits, complemented by broad technical expertise across modern IT environments. This role requires a deep understanding of desktops, mobile devices, networks, operating systems, and cloud services, as well as the ability to effectively communicate complex technical concepts … The ideal candidate will possess advanced analytical skills, relevant certifications, and experience working cross-functionally-including direct client engagement-to support regulatory and business objectives. Primary Responsibilities Conduct comprehensive risk assessments of information systems, applications, business processes, and underlying technical infrastructure-including desktops, phones, network devices, operating systems (Windows, macOS, Linux), and cloud platforms (AWS, Azure, GCP). Collaborate … closely with compliance, legal, IT, business stakeholders, and external clients to understand operational requirements, regulatory obligations, and risk tolerance. Serve as a technical point of contact for clients, addressing and managing their technical requirements, security concerns, and risk management needs. Clearly document identified risks and work with stakeholders to propose, evaluate, and track compensating controls that address security More ❯

and the security of private equity backing. It's an inspiring time to join the team! Looking for a self-starting highly motivated and detail-orientated Information Security Governance, Risk, and Compliance (GRC) Analyst to support the design, implementation, and ongoing improvement of our information security governance and risk management framework. This role is essential in ensuring the … organisation proactively manages information security risk across its employees, technologies, vendors, and operations and adheres to the regulatory and security standards pertinent to financial services while providing visibility to key stakeholders. Job Responsibilities Support the development, maintenance, and enforcement of information security policies, procedures, and standards Conduct risk assessments on technology systems, third-party vendors, and new services. … implemented and effective Assist in preparing for and responding to regulatory audits and compliance reviews (e.g., NIST CSF, ISO 27001, DORA, GDPR. ITGC) Maintain and update the information security risk register with appropriate scenarios and control frameworks Conduct regular control testing, evaluation and reporting findings to stakeholders Stay current on changes in regulations, industry standards, and emerging risks More ❯

such as malware infections, phishing attempts, denial-of-service attacks, data breaches, etc. Liaise with stakeholders in relation to cyber security issues and provide recommendations. Maintain an information security risk register and assist with internal and external audits relating to information security. Conducting security awareness training and education for staff and users on best practices and emerging trends … in cyber security. Use vulnerability management to improve Infinigate’s security landscape. Performing risk assessments and vulnerability scans to identify and mitigate potential threats to the network, devices, applications, and data. Complete security audits of company solutions. Implementing and maintaining security policies, standards, procedures, and best practices to ensure compliance with regulatory and industry requirements. Researching and evaluating new More ❯

such as malware infections, phishing attempts, denial-of-service attacks, data breaches, etc. Liaise with stakeholders in relation to cyber security issues and provide recommendations. Maintain an information security risk register and assist with internal and external audits relating to information security. Conducting security awareness training and education for staff and users on best practices and emerging trends … in cyber security. Use vulnerability management to improve Infinigate’s security landscape. Performing risk assessments and vulnerability scans to identify and mitigate potential threats to the network, devices, applications, and data. Complete security audits of company solutions. Implementing and maintaining security policies, standards, procedures, and best practices to ensure compliance with regulatory and industry requirements. Researching and evaluating new More ❯

site access * Liaise with service providers (cleaning, HVAC, alarms, etc.) Strategic and Operational Delivery * Develop and manage annual plans for IT and Facilities * Identify risks and maintain the operational risk register * Report on projects and performance to senior leadership * Contribute to continuous improvement across systems and services ________________________________________ Candidate Profile Essential: * Educated to degree level and Microsoft Certified * Significant More ❯

manner that fosters engagement and stakeholder buy-in. Demonstrate a strong desire to improve performance and make a difference by focusing on goals. Good project management skills, including managing risk registers and monthly reporting, with the ability to plan and deliver outcomes and benefits on multiple projects at the same time. Excellent organisational skills, with the ability to prioritise More ❯

operators, world-class consultants, former regulators and industry authorities with a shared commitment to telling clients what is really needed for turning change into a strategic business asset, managing risk and unlocking value at every stage of growth. To learn more, visit: The team: Alvarez and Marsal's Global Security Office is committed to delivering the highest standards of … security and compliance. We are seeking a highly skilled and motivated Information Security Risk Manager to lead on A&M wide information security risk management program and join our dynamic and growing team based in either our London or Tampa office. Position Summary: The Information Security Risk Manager will play a critical role in, and will be … responsible for, driving risk strategy, overseeing risk governance, managing senior-level reporting, and leading key information security risk initiatives across the Alvarez and Marsal. This role will be focused on managing and maintaining the Global Security Office Information Security Risk Register, its supporting processes, governance and reporting requirements. The successful candidate requires a strong understanding More ❯

Project Initiation & Planning Define project scope, goals, deliverables, and success criteria in alignment with business objectives. Develop and maintain comprehensive project plans, including Gantt charts, resource forecasts, milestones, and risk registers. Conduct feasibility analysis, business case development, and secure project funding and governance approvals. Ensure alignment with internal methodologies and Lloyd's change governance standards. Project Execution & Delivery Lead … teams, and external vendors. Communicate project status, issues, and risks clearly through regular reporting and meetings. Manage stakeholder expectations and facilitate decision-making across multiple levels of the organization. Risk & Compliance Identify and assess operational, technical, financial, and regulatory risks associated with project delivery. Implement mitigation strategies and ensure compliance with all relevant standards, including Lloyd's Minimum Standards More ❯

Project Initiation & Planning Define project scope, goals, deliverables, and success criteria in alignment with business objectives. Develop and maintain comprehensive project plans, including Gantt charts, resource forecasts, milestones, and risk registers. Conduct feasibility analysis, business case development, and secure project funding and governance approvals. Ensure alignment with internal methodologies and Lloyd's change governance standards. Project Execution & Delivery Lead … teams, and external vendors. Communicate project status, issues, and risks clearly through regular reporting and meetings. Manage stakeholder expectations and facilitate decision-making across multiple levels of the organization. Risk & Compliance Identify and assess operational, technical, financial, and regulatory risks associated with project delivery. Implement mitigation strategies and ensure compliance with all relevant standards, including Lloyd's Minimum Standards More ❯

relevant cost and revenue drivers associated with long-term contracts. The role requires the provision of support on Client opportunities by providing best in class commercial thought leadership, modelling, risk management and commercial innovation to optimize both our win chances and profitability of multi-tower services. Take the commercial lead on large, complex, domestic and international client opportunities by … ensuring profits are maximised, risks are understood and/or mitigated, and the client needs are met and exceeded. Utilisation of Joint Venture, Risk/Reward, Gain Sharing, flexible consumption/utility-based pricing and other pricing variations. Maintenance and development of innovative and commercially sustainable pricing models. Responsibility and creation of the contract P&L reporting of new … and the ability to generate savings to both the client and the company throughout the life of the contract. Responsible for the completion of asset financing requests, cashflow forecast, risk register, client pricing templates Analysis of existing and new pricing methodologies to help drive continuous improvement and competitiveness while remaining profitable. Governance Monitor and adhere to relevant Governance More ❯

relevant cost and revenue drivers associated with long-term contracts. The role requires the provision of support on Client opportunities by providing best in class commercial thought leadership, modelling, risk management and commercial innovation to optimize both our win chances and profitability of multi-tower services. What you'll be doing Position Summary & Objectives Commercial Modelling: Take the commercial … domestic and international client opportunities by ensuring profits are maximised, risks are understood and/or mitigated, and the client needs are met and exceeded. Utilisation of Joint Venture, Risk/Reward, Gain Sharing, flexible consumption/utility-based pricing and other pricing variations. Maintenance and development of innovative and commercially sustainable pricing models. Responsibility and creation of the … and the ability to generate savings to both the client and the company throughout the life of the contract. Responsible for the completion of asset financing requests, cashflow forecast, risk register, client pricing templates Analysis of existing and new pricing methodologies to help drive continuous improvement and competitiveness while remaining profitable. Governance: Monitor and adhere to relevant Governance More ❯

Facilitate workshops, meetings, and sprint planning sessions to ensure alignment and progress toward project goals. Maintain clear communication with senior leadership, providing updates on project milestones, risks, and budget. Risk and Issue Management Identify, track, and resolve risks, dependencies, and issues throughout the project lifecycle, ensuring minimal disruption to ongoing operations. Develop and maintain risk registers and mitigation More ❯

Facilitate workshops, meetings, and sprint planning sessions to ensure alignment and progress toward project goals. Maintain clear communication with senior leadership, providing updates on project milestones, risks, and budget. Risk and Issue Management Identify, track, and resolve risks, dependencies, and issues throughout the project lifecycle, ensuring minimal disruption to ongoing operations. Develop and maintain risk registers and mitigation More ❯

business units. Define scope, create project plans, and track progress against milestones. Collaborate with stakeholders to ensure business value is realized quickly. Maintain project documentation, including status updates and risk registers. Ensure alignment with business goals, preventing scope creep and delays. Support project analysis and contribute to solution design when needed. Key Competencies Strong communication and interpersonal skills, including More ❯

Senior Cybersecurity Risk Analyst (Interim) Fully Remote | 3-Month Contract | £260/day (Inside IR35 via umbrella) We’re working with a leading UK charity who are looking to bring in a Senior Cybersecurity Risk Analyst to support during a critical period. This is a hands-on, technically focused interim contract — ideal for someone with strong experience in … risk assessment, threat modelling, and stakeholder communication. You’ll be working closely with IT, SOC, and business teams to identify and manage technical risks, translate vulnerabilities into business impact, and support the Head of Information Security with day-to-day risk oversight. What You’ll Be Doing: Carrying out technical security risk assessments across infrastructure, applications, and … suppliers. Translating threats into clear, business-aligned risk narratives . Maintaining and updating the Cybersecurity Risk Register . Supporting SOC escalations and incident investigations. Reviewing third-party security posture and assessing vendor risk during tenders. Producing risk reports and presenting findings to technical and non-technical stakeholders. What We’re Looking For: Strong hands-on More ❯

Our mission is to simplify and enhance how payments are made and processed. As we continue to grow and evolve, we are seeking a dynamic and experienced Head of Risk to join our team. Responsibilities Enterprise Risk Management (ERM) : Develop and maintain a robust ERM framework aligned with UK and Irish regulatory requirements (PRA, FCA, CBI). Identify … assess, and manage key risks, establish risk appetite, maintain risk registers, and provide regular reports to leadership Operational Resilience : Implement resilience frameworks, conduct scenario testing and business impact analyses, and establish business continuity and disaster recovery plans Wind-Down Planning : Maintain and regularly update the company's wind-down plan, ensuring compliance with recovery and resolution regulations Incident … Reporting & Management : Oversee incident reporting, conduct root cause analysis, and ensure timely and accurate regulatory submissions Audit Collaboration : Manage internal and external audits, align risk controls with audit recommendations, and facilitate audit processes Regulatory Compliance : Stay ahead of evolving UK & EU regulatory requirements, ensuring compliance with AML/KYC, data protection, and consumer duty regulations while managing regulatory reporting More ❯

Contract type Permanent Contract Job summary We are seeking a proactive Information Security Specialist skilled in security operations, threat intelligence, and risk management. This role is crucial for maintaining robust security protocols, identifying vulnerabilities, and ensuring compliance with security standards. The ideal candidate will have a strong background in IT infrastructure security, preferably within financial institutions, experience with network … response activities including malware analysis and threat hunting. Collaborate with the CERT team in maintaining an up-to-date threat landscape and contributing to the incident response playbooks. Security Risk Management and Compliance Support the maintenance of the IT security risk register and assist with internal and external security audits. Contribute to security reporting and tracking security … risk indicators. Candidate criteria Minimal education level Bachelor Degree/BSc Degree or equivalent Academic qualification/Speciality CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CNA). Experience Proven experience in an information security role is essential. Required skills Dynamic, creative, and proactive. Committed to continuous learning and staying updated with the latest technologies. Ability to work More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk, outsourcing compliance, and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS, and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procedures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements, including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register, prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procerdures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements , including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register , prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procerdures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements , including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register , prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

Contract type Permanent Contract Job summary We are seeking a proactive Information Security Specialist skilled in security operations, threat intelligence, and risk management. This role is crucial for maintaining robust security protocols, identifying vulnerabilities, and ensuring compliance with security standards. The ideal candidate will have a strong background in IT infrastructure security, preferably within financial institutions, experience with network … response activities including malware analysis and threat hunting. Collaborate with the CERT team in maintaining an up-to-date threat landscape and contributing to the incident response playbooks. Security Risk Management and Compliance Support the maintenance of the IT security risk register and assist with internal and external security audits. Contribute to security reporting and tracking security … risk indicators. Candidate criteria Minimal education level Bachelor Degree/BSc Degree or equivalent Academic qualification/Speciality CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CNA). Experience Proven experience in an information security role is essential. Required skills Dynamic, creative, and proactive. Committed to continuous learning and staying updated with the latest technologies. Ability to work More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk, outsourcing compliance, and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS, and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procedures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements, including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register, prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procerdures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements , including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register , prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procedures. Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA's outsourcing requirements , including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register , prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

SEO, CRO, accessibility, and performance. Manage scope, costs, and timelines of workstreams. Collaborate with the PMO Analyst and Resources Manager to align resource allocation with project milestones. Maintain a risk register and monitor delivery progress. Adhere to ISO standards to oversee quality and security of solutions delivered. Work with Sales & Client Services teams to identify new opportunities and … scope potential projects. Participate in pre-sales activities, including scoping, proposals, tenders, and client pitches. Review Statements of Work (SoWs) for accurate scoping and risk management. Engage actively in the CACI delivery community by sharing best practices, mentoring others, and continually improving delivery processes. Skills & Experience Experience delivering web-related projects for large government agencies or similar organizations, following … Laravel or equivalent). Experience managing software workstreams in an agile environment. Strong stakeholder engagement skills, capable of handling difficult situations and resolving conflicts. Commercial awareness, including budget tracking, risk management, and forecasting. Ability to build and lead high-performing teams with clear communication and collaboration. Eligibility for security clearance, requiring UK citizenship and residence in the UK for More ❯