1 to 25 of 346 Risk Register Jobs in the UK

Service offerings, we take ownership of the tasks that distract Customers from what really matters; driving their businessobjectivesand strategic initiatives.We enable them to save time, and reduce costs and risk, by continually improving your technology estates, ensuring they drive value for their business. Go beyond simply keeping the lights on and embrace the potential of our ASPIRE Managed Services … the testing of patches prior to deployment to validate functionality and compatibility. Utilize vulnerability scanning tools to identify weaknesses in the IT environment. Analyze and prioritize vulnerabilities based on risk impact and business-criticality. Oversee and enforce best practice for security hygiene; access reviews, vulnerability assessment, key rotation, etc Collaborate with internal teams to remediate identified vulnerabilities in a … processes and workflows, recommending and implementing improvements to enhance service quality. Collaborate with third-party vendors for tools and solutions, ensuring optimal performance and cost-effectiveness. Perform and maintain risk assessments, gap analysis, and risk register(s). Supporting external assessments. Supporting security Incident responses. Supporting the development of security policies and procedures. Qualifications Skills, Education & Qualifications More ❯

Service offerings, we take ownership of the tasks that distract Customers from what really matters; driving their businessobjectivesand strategic initiatives.We enable them to save time, and reduce costs and risk, by continually improving your technology estates, ensuring they drive value for their business. Go beyond simply ‘keeping the lights on’ and embrace the potential of our ASPIRE Managed Services … the testing of patches prior to deployment to validate functionality and compatibility. Utilize vulnerability scanning tools to identify weaknesses in the IT environment. Analyze and prioritize vulnerabilities based on risk impact and business-criticality. Oversee and enforce best practice for security hygiene; access reviews, vulnerability assessment, key rotation, etc Collaborate with internal teams to remediate identified vulnerabilities in a … processes and workflows, recommending and implementing improvements to enhance service quality. Collaborate with third-party vendors for tools and solutions, ensuring optimal performance and cost-effectiveness. Perform and maintain risk assessments, gap analysis, and risk register(s). Supporting external assessments. Supporting security Incident responses. Supporting the development of security policies and procedures. Qualifications Skills, Education & Qualifications More ❯

Senior Cyber Risk Analyst We are seeking a Senior Analyst with a robust background in cybersecurity risk assessment and internal security audits, complemented by broad technical expertise across modern IT environments. This role requires a deep understanding of desktops, mobile devices, networks, operating systems, and cloud services, as well as the ability to effectively communicate complex technical concepts … The ideal candidate will possess advanced analytical skills, relevant certifications, and experience working cross-functionally-including direct client engagement-to support regulatory and business objectives. Primary Responsibilities Conduct comprehensive risk assessments of information systems, applications, business processes, and underlying technical infrastructure-including desktops, phones, network devices, operating systems (Windows, macOS, Linux), and cloud platforms (AWS, Azure, GCP). Collaborate … closely with compliance, legal, IT, business stakeholders, and external clients to understand operational requirements, regulatory obligations, and risk tolerance. Serve as a technical point of contact for clients, addressing and managing their technical requirements, security concerns, and risk management needs. Clearly document identified risks and work with stakeholders to propose, evaluate, and track compensating controls that address security More ❯

Information Security and Supplier Assurance Consultant Requisition ID 35730 Office Country United Kingdom Office City London Division Risk Management Contract Type Short Term Contract Length 12 months Posting End Date 26/06/2025 We are looking for a highly skilled Information Security and Supplier Assurance Consultant to join our Operational Risk Management (ORM) team at the … a unique opportunity to play a vital role in protecting the EBRD's Information Assets and IT Facilities, supporting the delivery of critical projects, and shaping our security and risk governance across the Bank. Your Role and Purpose As an Information Security and Supplier Assurance Consultant, you will support the Head of Information Security in managing Information Security (IS … key IS projects and driving supplier and project security assurance activities. Reviewing and updating IS policies, procedures, and the broader Information Security Framework. Providing technical security consultancy and managing risk assessments, including third-party and cybersecurity risks. Ensuring regulatory compliance and supporting internal/external reviews. Key Responsibilities Act as the Bank's IS technical consultant on Supplier and More ❯

of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Requisition ID 35730 Office Country United Kingdom Office City London Division Risk Management Contract Type Short Term Contract Length 12 months Posting End Date 26/06/2025 We are looking for a highly skilled Information Security and Supplier Assurance … Consultant to join our Operational Risk Management (ORM) team at the European Bank for Reconstruction and Development (EBRD). This is a unique opportunity to play a vital role in protecting the EBRD’s Information Assets and IT Facilities, supporting the delivery of critical projects, and shaping our security and risk governance across the Bank. Your Role and … key IS projects and driving supplier and project security assurance activities. Reviewing and updating IS policies, procedures, and the broader Information Security Framework. Providing technical security consultancy and managing risk assessments, including third-party and cybersecurity risks. Ensuring regulatory compliance and supporting internal/external reviews. Key Responsibilities Act as the Bank’s IS technical consultant on Supplier and More ❯

and support to regional Partners and business units within the EMEA region on security-related compliance matters. Develop and maintain regional security performance metrics and dashboards to track compliance, risk, and awareness levels, and report regularly to global and regional leadership. EMEA Regional Support and Implementation Support both global and regional information security teams where region-specific restraints block … and ensure they are aligned with the firm’s strategy, goals and objectives. Advise regional Partner, Business, and IT stakeholders across the EMEA region regarding information security threats, overall risk levels, and emerging threats relevant to the firm at both regional and global levels. Lead the identification, assessment, and mitigation of information security risks across business units within the … EMEA region, maintaining a regional risk register and reporting key risks to the CISO and regional leadership. Improve information security awareness across the firm’s business units within the EMEA region. Partner with HR and Learning & Development to deliver targeted security training and capability-building programmes across business units in the EMEA region. Act as the regional escalation More ❯

security advisor to client stakeholders, including CISOs, security teams, IT management, and executive leadership. Work with different delivery partners across a complex product and service ecosystem to pragmatically manage risk and drive successful outcomes. Develop and own the programme delivery and security services operational risk register. Develop deep, trusted relationships across the client organization, fostering open communication and … insights and best practices with the client's security team to foster continuous improvement. Support executive engagement/peer relationships across the UK Public Sector and international peers. Security Risk Management & Remediation Conduct cybersecurity risk assessments, vulnerability analyses, and maturity assessments for clients. Develop and implement client-specific cybersecurity roadmaps, strategies, policies, and procedures. Provide expert advice on … and managing security controls. Assist clients with compliance requirements related to various regulations (GDPR, CCPA, HIPAA, PCI DSS, etc.) and standards (e.g., ISO 27001, SOC 2). Manage security risk committees to support client cyber risk management practices. Track and manage remediation of security audit and compliance findings for clients. Review security metrics and lead remediation programs within More ❯

Adopt a continuous improvement approach to the management of Information Technology, Information Security and Privacy. Ensure that main stakeholders are informed and consulted via an effective Management Review process. Risk Identify information security threats and manage an effective Vulnerability Management Process. Maintain an effective, proactive Risk Management Framework. Manage and maintain the Satalia Risk Register. Ensure an More ❯

Requisition ID 35706 Office Country United Kingdom Office City London Division Risk Management Contract Type Short Term Contract Length 12 months Posting End Date 03/06/2025 About the Role The European Bank for Reconstruction and Development ( EBRD) is seeking an Information Security and Privacy Consultantto support the Head of Information Security in managing the Bank’s … ensure that the Bank maintains high standards of security, privacy, and compliance, contributing to our mission of promoting sustainable development across our regions of operation. About the Department Operational Risk Management ( ORM) is part of the Bank’s Risk Management group and forms the second line of defence . ORM is responsible for independently identifying, assessing, and supporting … data subject requests and support the Personal Data Review Panel on personal data- related complaints. Advise on IT and business projects with respect to InfoSec and privacy risks. Maintain risk registers , provide ongoing risk analysis, and contribute to risk mitigation plans. Support completion and review of Privacy Impact Assessments ( PIAs) and Data Protection Impact Assessments ( DPIAs). More ❯

13.08.2025 Job Description: Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases, control matrices, and evidence submissions. Ensure alignment with applicable defence and industry standards and other MOD-aligned frameworks. Engage with engineering and project teams to ensure … governance. Liaise with client representatives, suppliers, and accreditation authorities to support the assurance lifecycle and manage stakeholder expectations. Support the preparation for and participation in technical reviews, audits, and risk acceptance activities. Contribute to delivering security risk management processes, threat modelling sessions, and security design assessments. Provide subject matter expertise on assurance requirements for secure communications, supply chain … on the programme needs. Evidence of ongoing professional development aligned with cybersecurity assurance, defence sector standards, and engineering-led delivery models. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory compliance in defence or safety-critical environments. Proven ability to produce and review assurance artefacts, including security management plans, risk registers, assurance cases, and audit More ❯

multidisciplinary delivery environments. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases, control matrices, and evidence submissions. Ensure alignment with applicable defence and industry standards and other MOD-aligned frameworks. Engage with engineering and project teams to ensure … governance. Liaise with client representatives, suppliers, and accreditation authorities to support the assurance lifecycle and manage stakeholder expectations. Support the preparation for and participation in technical reviews, audits, and risk acceptance activities. Contribute to delivering security risk management processes, threat modelling sessions, and security design assessments. Provide subject matter expertise on assurance requirements for secure communications, supply chain … on the programme needs. Evidence of ongoing professional development aligned with cybersecurity assurance, defence sector standards, and engineering-led delivery models. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory compliance in defence or safety-critical environments. Proven ability to produce and review assurance artefacts, including security management plans, risk registers, assurance cases, and audit More ❯

multidisciplinary delivery environments. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases, control matrices, and evidence submissions. Ensure alignment with applicable defence and industry standards and other MOD-aligned frameworks. Engage with engineering and project teams to ensure … governance. Liaise with client representatives, suppliers, and accreditation authorities to support the assurance lifecycle and manage stakeholder expectations. Support the preparation for and participation in technical reviews, audits, and risk acceptance activities. Contribute to delivering security risk management processes, threat modelling sessions, and security design assessments. Provide subject matter expertise on assurance requirements for secure communications, supply chain … on the programme needs. Evidence of ongoing professional development aligned with cybersecurity assurance, defence sector standards, and engineering-led delivery models. Essential Skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory compliance in defence or safety-critical environments. Proven ability to produce and review assurance artefacts, including security management plans, risk registers, assurance cases, and audit More ❯

My client, an International Financial Services firm based in London, are looking for an IT Security Governance and Risk AVP to join their growing team. They would like individuals to come from Financial Services background. You have to be in the office two times per week. Feedback from the Hiring Manager on CV's he has seen so far … t seem to have experience in conducting testing of controls specifically, they have more technical management of security tools or policy strategy focused. About the IT Security Goverance and Risk AVP role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations security posture is robust … alignment with security industry standards such as NIST CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation's information assets and environments. Understanding security gaps and More ❯

more cost effective. Trillions of dollars' worth of currency flows through our systems each day. Created by the market for the market, our unrivalled global settlement infrastructure reduces systemic risk and provides standardization for participants in many of the world's most actively traded currencies. We deliver huge efficiencies and savings for our clients: in fact, our approach to … netting shrinks funding requirements by over 96% on average, so clients can put their capital and resources to better use. CLS products are designed to enable clients to manage risk most effectively across the full FX lifecycle - whether through more efficient processing tools or market intelligence derived from the largest single source of FX executed data available to the … a supportive and inclusive working environment in which everyone is encouraged to be open and forward-thinking. Job information: Functional title - AVP, IT Security Specialist Department - Security Governance and Risk Management Corporate level - Associate Vice President Report to - Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security More ❯

Vice President, Security Governance, Risk and Assurance About CLS: The full job description covers all associated skills, previous experience, and any qualifications that applicants are expected to have. CLS is the trusted party at the centre of the global FX ecosystem. Utilized by thousands of counterparties, CLS makes FX safer, smoother and more cost effective. Trillions of dollars' worth … of currency flows through our systems each day. Created by the market for the market, our unrivalled global settlement infrastructure reduces systemic risk and provides standardization for participants in many of the world's most actively traded currencies. We deliver huge efficiencies and savings for our clients: in fact, our approach to multilateral netting shrinks funding requirements by over … on average, so clients can put their capital and resources to better use. CLS products are designed to enable clients to manage risk most effectively across the full FX lifecycle - whether through more efficient processing tools or market intelligence derived from the largest single source of FX executed data available to the market. Our ambition to make a positive More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations security posture is … alignment with security industry standards such as NIST CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and … provide evaluation and treatment options, consultation on remediation approaches to address gaps and continue ongoing monitoring of remediation, re-assess until reduced to an acceptable level. Supporting Cybersecurity Risk Management strategies based on security findings and observations. Including informing improvements to organizational cybersecurity risk management processes, procedures and activities are identified across all security functions Profile and assign More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations security posture is … alignment with security industry standards such as NIST CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and … provide evaluation and treatment options, consultation on remediation approaches to address gaps and continue ongoing monitoring of remediation, re-assess until reduced to an acceptable level. Supporting Cybersecurity Risk Management strategies based on security findings and observations. Including informing improvements to organizational cybersecurity risk management processes, procedures and activities are identified across all security functions Profile and assign More ❯

Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the business … Proficiency with Atlassian suite (JIRA, Confluence) Advanced Microsoft Office skills including MS Project Experience creating comprehensive project plans and technical delivery documentation Strong strategic planning and organisational capabilities Advanced risk management and escalation skills Team leadership and staff motivation experience Budget management and resource allocation expertise Adaptability and innovative problem-solving abilities Exceptional time management with consistent delivery to More ❯

Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the business … Proficiency with Atlassian suite (JIRA, Confluence) Advanced Microsoft Office skills including MS Project Experience creating comprehensive project plans and technical delivery documentation Strong strategic planning and organisational capabilities Advanced risk management and escalation skills Team leadership and staff motivation experience Budget management and resource allocation expertise Adaptability and innovative problem-solving abilities Exceptional time management with consistent delivery to More ❯

Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the business … Proficiency with Atlassian suite (JIRA, Confluence) Advanced Microsoft Office skills including MS Project Experience creating comprehensive project plans and technical delivery documentation Strong strategic planning and organisational capabilities Advanced risk management and escalation skills Team leadership and staff motivation experience Budget management and resource allocation expertise Adaptability and innovative problem-solving abilities Exceptional time management with consistent delivery to More ❯

value projects across multiple industries. Managing the full project lifecycle – from planning and scoping through to delivery and reporting. Creating and maintaining detailed documentation including project plans, RAID logs, risk registers, and status updates. Coordinating with cross-functional teams and stakeholders to ensure aligned and timely delivery. Supporting business development activities such as RFPs, tenders, and proposal writing. Facilitating More ❯

and the security of private equity backing. It's an inspiring time to join the team! Looking for a self-starting highly motivated and detail-orientated Information Security Governance, Risk, and Compliance (GRC) Analyst to support the design, implementation, and ongoing improvement of our information security governance and risk management framework. This role is essential in ensuring the … organisation proactively manages information security risk across its employees, technologies, vendors, and operations and adheres to the regulatory and security standards pertinent to financial services while providing visibility to key stakeholders. Job Responsibilities Support the development, maintenance, and enforcement of information security policies, procedures, and standards Conduct risk assessments on technology systems, third-party vendors, and new services. … implemented and effective Assist in preparing for and responding to regulatory audits and compliance reviews (e.g., NIST CSF, ISO 27001, DORA, GDPR. ITGC) Maintain and update the information security risk register with appropriate scenarios and control frameworks Conduct regular control testing, evaluation and reporting findings to stakeholders Stay current on changes in regulations, industry standards, and emerging risks More ❯

Senior Cybersecurity Risk Analyst (Remote) needed, £28.49ph PAYE - Reference: RQ Role Overview We are looking for a highly skilled and technically proficient Senior Cybersecurity Risk Analyst to join our team on an interim basis. This role is critical in identifying, assessing, and managing information security risks across the organization. The ideal candidate will have a strong technical background … the ability to translate threats into business risks, and experience working in fast-paced environments. Key Responsibilities - Conduct in-depth security risk assessments across systems, applications, and infrastructure. - Identify and evaluate technical and operational risks, vulnerabilities, and control gaps. - Translate complex technical threats into clear, actionable business risks. - Maintain and update the Cybersecurity Risk Register. - Produce detailed risk … the Security Operations Centre (SOC). - Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). - Review security aspects of tenders and conduct third-party/vendor risk assessments to ensure alignment with organisational security requirements. - Perform additional security-related tasks as directed by the Head of Information Security You will Ideally have - - Proven experience in technical More ❯

Role Overview We're looking for an experienced Senior Cyber Risk Analyst to join a purpose-driven organisation on a part-time basis . In this role, you'll take the lead in strengthening the organisation's security posture by driving forward incident response, vulnerability management, and compliance initiatives. You'll be a key player in embedding security best … Work 7-hour days, 3 days a week Act as a trusted advisor on information security matters, supporting projects, solution development, and change initiatives with expert guidance. Perform regular risk evaluations to uncover and address potential security gaps. Lead the end-to-end management of security incidents, ensuring swift and effective resolution. Design and deliver engaging training sessions to … Essentials Plus, ISO 27001, and PCI DSS. What you'll need to succeed Willingness to work 7-hour days, 3 days a week Demonstrated expertise in conducting technical security risk assessments and developing threat models. Comprehensive knowledge of core cybersecurity domains, including network, endpoint, and cloud security. Skilled at translating technical vulnerabilities into business-relevant language for diverse audiences. More ❯

hands on testing of Security controls. The Specialist applies their expertise to recommend corrective actions, improvements to security controls and runs lessons learned forums. You will also conduct regular risk assessments and maintain risk register in RSA Archer. The company operate a hybrid work policy and therefore you must be willing to commit to 2 days per … security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST CSF and NIST 800-53. Hands on testing of Security controls Conduct regular risk assessments and maintain risk register in RSA Archer. Represent security on audits and assessments, ensuring compliance with internal and external requirements. Identify assess and prioritize security risk … and provide evaluation and treatment options, consultation on remediation approaches to address gaps and continue ongoing monitoring of remediation, re-assess until reduced to an acceptable level. Supporting Cybersecurity Risk Management strategies based on security findings and observations. Including informing improvements to organizational cybersecurity risk management processes, procedures and activities are identified across all security functions Profile and More ❯