23 of 23 Risk Register Jobs in the City of London

Job Title: Risk Analyst - Application Risk Assessment Location: London Wall, London (Hybrid - 3 days onsite per week) Start Date: ASAP Contract Duration: Until End of Year (Potential Extension) Inside IR35 About the Role Our client is seeking an experienced Risk Analyst - Application Risk Assessment to join their global Information Security team. In this key role, you … business and IT stakeholders, and recommending mitigation strategies-especially for applications processing classified or secret data . You'll be working closely with global teams, including IS, IT, and Risk Management, and will act as a champion for application security risk across the organization. Key Responsibilities Conduct Application Risk Assessments (ISARA) in line with global security standards … and frameworks Serve as the liaison between IS, IT, and business stakeholders to identify and assess application-related risks Facilitate the risk evaluation process , including formatting, data collection, and impact assessments Perform control assessments to determine control effectiveness Use defined risk methodologies (eg FAIR, ISO 31000) to rate risks and update internal risk registers Propose, document, and More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations security posture is … alignment with security industry standards such as NIST CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and … provide evaluation and treatment options, consultation on remediation approaches to address gaps and continue ongoing monitoring of remediation, re-assess until reduced to an acceptable level. Supporting Cybersecurity Risk Management strategies based on security findings and observations. Including informing improvements to organizational cybersecurity risk management processes, procedures and activities are identified across all security functions Profile and assign More ❯

hands on testing of Security controls. The Specialist applies their expertise to recommend corrective actions, improvements to security controls and runs lessons learned forums. You will also conduct regular risk assessments and maintain risk register in RSA Archer. The company operate a hybrid work policy and therefore you must be willing to commit to 2 days per … security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST CSF and NIST 800-53. Hands on testing of Security controls Conduct regular risk assessments and maintain risk register in RSA Archer. Represent security on audits and assessments, ensuring compliance with internal and external requirements. Identify assess and prioritize security risk … and provide evaluation and treatment options, consultation on remediation approaches to address gaps and continue ongoing monitoring of remediation, re-assess until reduced to an acceptable level. Supporting Cybersecurity Risk Management strategies based on security findings and observations. Including informing improvements to organizational cybersecurity risk management processes, procedures and activities are identified across all security functions Profile and More ❯

site access * Liaise with service providers (cleaning, HVAC, alarms, etc.) Strategic and Operational Delivery * Develop and manage annual plans for IT and Facilities * Identify risks and maintain the operational risk register * Report on projects and performance to senior leadership * Contribute to continuous improvement across systems and services Candidate Profile Essential: * Educated to degree level and Microsoft Certified * Significant More ❯

such as malware infections, phishing attempts, denial-of-service attacks, data breaches, etc. Liaise with stakeholders in relation to cyber security issues and provide recommendations. Maintain an information security risk register and assist with internal and external audits relating to information security. Conducting security awareness training and education for staff and users on best practices and emerging trends … in cyber security. Use vulnerability management to improve Infinigate’s security landscape. Performing risk assessments and vulnerability scans to identify and mitigate potential threats to the network, devices, applications, and data. Complete security audits of company solutions. Implementing and maintaining security policies, standards, procedures, and best practices to ensure compliance with regulatory and industry requirements. Researching and evaluating new More ❯

such as malware infections, phishing attempts, denial-of-service attacks, data breaches, etc. Liaise with stakeholders in relation to cyber security issues and provide recommendations. Maintain an information security risk register and assist with internal and external audits relating to information security. Conducting security awareness training and education for staff and users on best practices and emerging trends … in cyber security. Use vulnerability management to improve Infinigate’s security landscape. Performing risk assessments and vulnerability scans to identify and mitigate potential threats to the network, devices, applications, and data. Complete security audits of company solutions. Implementing and maintaining security policies, standards, procedures, and best practices to ensure compliance with regulatory and industry requirements. Researching and evaluating new More ❯

Project Initiation & Planning Define project scope, goals, deliverables, and success criteria in alignment with business objectives. Develop and maintain comprehensive project plans, including Gantt charts, resource forecasts, milestones, and risk registers. Conduct feasibility analysis, business case development, and secure project funding and governance approvals. Ensure alignment with internal methodologies and Lloyd's change governance standards. Project Execution & Delivery Lead … teams, and external vendors. Communicate project status, issues, and risks clearly through regular reporting and meetings. Manage stakeholder expectations and facilitate decision-making across multiple levels of the organization. Risk & Compliance Identify and assess operational, technical, financial, and regulatory risks associated with project delivery. Implement mitigation strategies and ensure compliance with all relevant standards, including Lloyd's Minimum Standards More ❯

Facilitate workshops, meetings, and sprint planning sessions to ensure alignment and progress toward project goals. Maintain clear communication with senior leadership, providing updates on project milestones, risks, and budget. Risk and Issue Management Identify, track, and resolve risks, dependencies, and issues throughout the project lifecycle, ensuring minimal disruption to ongoing operations. Develop and maintain risk registers and mitigation More ❯

business units. Define scope, create project plans, and track progress against milestones. Collaborate with stakeholders to ensure business value is realized quickly. Maintain project documentation, including status updates and risk registers. Ensure alignment with business goals, preventing scope creep and delays. Support project analysis and contribute to solution design when needed. Key Competencies Strong communication and interpersonal skills, including More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procerdures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements , including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register , prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

A leading financial services firm is looking for a Senior GRC Associate to help develop and maintain its IT Governance, Risk & Compliance framework. Key Responsibilities: Support IT risk assessments and control compliance activities Maintain risk registers and GRC documentation Assist with internal governance reviews and formal reporting Work with IT teams and third-party providers on GRC … 5+ years’ experience in IT GRC or Information Security Knowledge of ISO 27001, NIST, and (ideally) DORA Strong analytical, communication, and stakeholder engagement skills Experience with IT infrastructure risk and control assessments This is a great opportunity to join a well-established and forward-thinking team, where you'll be empowered to make a real impact on IT risk More ❯

Role : Vice President - Security, Risk Controls Assessor Location : 3 days WFH, 2 days on-site (Canary Wharf) Salary : £110,000 base salary + £19,000 bonus (DOE) Tired of archaic processes, multiple lines of reporting and slow decision-making processes? Then look no further. Lawrence Harvey are partnered with a true market-leader in the Global FinTech space. They … role: Develop, maintain, and align security policies, standards, and frameworks with industry best practices (e.g., NIST CSF, 800-53). Advise stakeholders on security best practices and support cybersecurity risk management strategies. Conduct and manage risk assessments, maintain the risk register (RSA Archer), and prioritize security risks across assets. Recommend and monitor remediation of security gaps … conducting test plans and testing security controls whilst ensuring compliance to NIST CSF/NIST 800-53/ISO27001/SOC I&II Strong background working within a Security Risk team Wider experience working with different Cyber Security teams Excellent attention to detail with planning/reporting data Competent in stakeholder management and cross-functional team collaboration Advantageous if More ❯

and maintain Power BI dashboards to deliver insights on office occupancy, forecasts, and time recording. Create productivity tools using Power Apps to replace legacy systems. Coordinate the quarterly corporate risk review: chair working-level meetings, challenge risk scoring, ensure directorates update risk registers, maintain the corporate risk register in Power BI, and escalate top risks More ❯

management of the finance function and IT infrastructure. Oversee the delivery of an IT transformation project, including cloud migration using Microsoft ecosystems (365, Dynamics, Azure). Manage financial reporting, risk registers, compliance, budgeting, and KPI dashboards. Lead a small finance team and manage relationships with key external suppliers, including IT and legal. Support the CEO, including attendance at board … charity settings. Experience in delivering complex IT transformation projects and managing accounting system migrations. Familiarity with project management methodologies (e.g. PRINCE2, Agile). Strong commercial acumen, supplier management, and risk handling capabilities. Desirable Experience: Background in the UK charity or non-profit sector. Experience with property and lease management. Understanding of government grant administration and fundraising processes. Proficiency with More ❯

and planning through to construction, commissioning, and handover Oversee project teams, contractors, and consultants to ensure quality, cost, and programme objectives are met Develop and maintain detailed project plans, risk registers, and stakeholder communications Provide expert guidance on procurement strategies, contract administration, and technical coordination Ensure compliance with relevant standards, safety regulations, and client specifications Act as the key More ❯

critical initiative. What You’ll Do Lead and own delivery of a complex, high-visibility transformation project Collaborate with stakeholders across multiple departments and time zones Maintain roadmaps, schedules, risk registers, and governance documentation Align deliverables to strategic goals and monitor benefit realisation Manage multiple workstreams and lead cross-functional teams to execution Report project status, manage risks and … organisations Comfortable applying and coaching a blend of Agile, Waterfall, and Scaled Agile methodologies Excellent stakeholder management and the ability to bridge technical and non-technical teams Strong planning, risk management, and budgeting skills Experience managing onboarding or enterprise-wide implementation projects is a plus A proactive and collaborative mindset, always seeking to solve complex problems Apply today to More ❯

and timely submission. Track and close TQs and raise timely RFIs related to design inputs and stakeholder requirements. Support the preparation and maintenance of design trackers, interface registers, technical risk registers, and submission logs. Assist in reviewing SCADA/EMS interface documentation, signal lists, and auxiliary equipment specs. Work with the Design Interface Manager to ensure compliance with UK … standards and electrical safety regulations (ENA, G99, BS, IEC, etc.). Participate in internal design review meetings and contribute to risk assessments (e.g., HAZID/HAZOP). Contribute to lessons learned and continuous improvement initiatives across the design portfolio. Participate in occasional site visits to support design coordination meetings, surveys, and technical resolution. Coordinate the preparation, review, and submission … of a wide range of technical documents (as listed in the Master Documents Register) in collaboration with internal engineering teams and subject matter experts. Ensure all submissions are reviewed for compliance with Employer’s Requirements, Envision’s engineering standards and applicable codes and standards prior to client submission. Qualification and expertise: Degree-qualified in Electrical Engineering or related discipline More ❯

and global teams. Key Responsibilities: Lead commercial modelling for complex domestic and international client opportunities, ensuring profitability and alignment with strategic goals Develop and maintain innovative pricing models, including risk/reward, utility-based, and gain-share frameworks Create and manage contract P&Ls, ensuring financial sustainability over the contract lifecycle Produce asset financing requests, risk registers, client … governance processes and obtain relevant approvals Present commercial solutions to internal leadership including country and regional boards Advise on transactional structures, cross-border tax implications, logistics, and foreign exchange risk Collaborate with legal and procurement teams to secure favourable terms with clients and vendors Act as the commercial point of contact for key client opportunities, attending client meetings as More ❯

Framework (ICF): The IT Department operates circa 80 Internal Controls over Financial Reporting. The role includes monitoring compliance for ICF controls in order to flag controls that are at risk of failing earlier, documenting operating procedures for ICF controls in order to be used as reference documents for the teams and auditors. Testing of control operation in line with … the bank’s ICF testing methodology. Risk Register: Raising issues related to non-compliant controls in the banks Risk Register system, agreeing remediation actions with owners and monitoring progress of remediation. SWIFT CSP attestation: Assistance in gathering evidence and testing of controls in support the annual SWIFT CSP compliance assessment. Audit: assisting the external audit process … order to ensure timely remediation of any failures. Completion of control testing to validate compliance in line with the ICF testing methodology Assist in documenting control deficiency waivers and risk acceptances where required in line with the existing risk acceptance procedures. Update the IT Risk Register, liaise with issue and action owners in order to ensure More ❯

Build and maintain data visualisations using Power BI to deliver business data insights Experience of using Power BI, Power Query, Power Automate and the Dataverse Coordinate the quarterly corporate risk review process and collation of the risk register Creating new and improving current systems/processes to improve productivity using modelling tools. What you need to do More ❯

the Establishment Certificate Holder in meeting responsibilities. Develop business continuity plans with stakeholders. Manage buildings and estates projects. Ensure health & safety compliance and training. Update business continuity plan and risk register regularly. Support HTA regulations compliance. Oversee fire safety and first aid arrangements. #J-18808-Ljbffr More ❯

IP vendors: negotiate PDK access, mask slots, MPW shuttles, wafer starts, corner‐split strategies and yield‐learning plans. Own silicon CAPEX/OPEX budgets, mask and backend costs, and risk registers. Drive make/buy decisions for IP, EDA, test hardware and probe cards. Skills & Experience 15 + years in semiconductor development, with 3 + complex ASICs driven from More ❯

gain hands-on experience in a high-trust, high-performance environment. You’ll be responsible for prospecting, outreach, nurturing and booking qualified meetings with senior decision-makers (e.g. Chief Risk Officers, Heads of Business Continuity, Crisis Managers). You'll be paid per meeting booked, per qualified meeting held, per business case sent, per proposal sent, and a large … targets and demonstrating commitment, you’ll be offered a full-time salaried Senior Account Executive position if you want. About Battleground: We're Battleground - a proven global leader in risk and resilience tech. Our platform, Battleground Live, empowers organisations to: Actively manage risk and resilience – from enterprise risk registers through to control environments and real-time impact … reporting Streamline business continuity and crisis response Prove resilience to boards and regulators We work closely with internal risk, resilience, and governance teams, giving them the tools to move faster, respond with confidence, and demonstrate control when it matters most. Growth on Your Terms Direct mentorship from founders scaling globally Fast track to full time paid Senior AE for More ❯