1 to 25 of 141 Risk Register Jobs in the UK excluding London

Service offerings, we take ownership of the tasks that distract Customers from what really matters; driving their businessobjectivesand strategic initiatives.We enable them to save time, and reduce costs and risk, by continually improving your technology estates, ensuring they drive value for their business. Go beyond simply ‘keeping the lights on’ and embrace the potential of our ASPIRE Managed Services … the testing of patches prior to deployment to validate functionality and compatibility. Utilize vulnerability scanning tools to identify weaknesses in the IT environment. Analyze and prioritize vulnerabilities based on risk impact and business-criticality. Oversee and enforce best practice for security hygiene; access reviews, vulnerability assessment, key rotation, etc Collaborate with internal teams to remediate identified vulnerabilities in a … processes and workflows, recommending and implementing improvements to enhance service quality. Collaborate with third-party vendors for tools and solutions, ensuring optimal performance and cost-effectiveness. Perform and maintain risk assessments, gap analysis, and risk register(s). Supporting external assessments. Supporting security Incident responses. Supporting the development of security policies and procedures. Qualifications Skills, Education & Qualifications More ❯

multidisciplinary delivery environments. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases, control matrices, and evidence submissions. Ensure alignment with applicable defence and industry standards and other MOD-aligned frameworks. Engage with engineering and project teams to ensure … governance. Liaise with client representatives, suppliers, and accreditation authorities to support the assurance lifecycle and manage stakeholder expectations. Support the preparation for and participation in technical reviews, audits, and risk acceptance activities. Contribute to delivering security risk management processes, threat modelling sessions, and security design assessments. Provide subject matter expertise on assurance requirements for secure communications, supply chain … on the programme needs. Evidence of ongoing professional development aligned with cybersecurity assurance, defence sector standards, and engineering-led delivery models. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory compliance in defence or safety-critical environments. Proven ability to produce and review assurance artefacts, including security management plans, risk registers, assurance cases, and audit More ❯

multidisciplinary delivery environments. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases, control matrices, and evidence submissions. Ensure alignment with applicable defence and industry standards and other MOD-aligned frameworks. Engage with engineering and project teams to ensure … governance. Liaise with client representatives, suppliers, and accreditation authorities to support the assurance lifecycle and manage stakeholder expectations. Support the preparation for and participation in technical reviews, audits, and risk acceptance activities. Contribute to delivering security risk management processes, threat modelling sessions, and security design assessments. Provide subject matter expertise on assurance requirements for secure communications, supply chain … on the programme needs. Evidence of ongoing professional development aligned with cybersecurity assurance, defence sector standards, and engineering-led delivery models. Essential Skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory compliance in defence or safety-critical environments. Proven ability to produce and review assurance artefacts, including security management plans, risk registers, assurance cases, and audit More ❯

Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the business … Proficiency with Atlassian suite (JIRA, Confluence) Advanced Microsoft Office skills including MS Project Experience creating comprehensive project plans and technical delivery documentation Strong strategic planning and organisational capabilities Advanced risk management and escalation skills Team leadership and staff motivation experience Budget management and resource allocation expertise Adaptability and innovative problem-solving abilities Exceptional time management with consistent delivery to More ❯

Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the business … Proficiency with Atlassian suite (JIRA, Confluence) Advanced Microsoft Office skills including MS Project Experience creating comprehensive project plans and technical delivery documentation Strong strategic planning and organisational capabilities Advanced risk management and escalation skills Team leadership and staff motivation experience Budget management and resource allocation expertise Adaptability and innovative problem-solving abilities Exceptional time management with consistent delivery to More ❯

Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the business … Proficiency with Atlassian suite (JIRA, Confluence) Advanced Microsoft Office skills including MS Project Experience creating comprehensive project plans and technical delivery documentation Strong strategic planning and organisational capabilities Advanced risk management and escalation skills Team leadership and staff motivation experience Budget management and resource allocation expertise Adaptability and innovative problem-solving abilities Exceptional time management with consistent delivery to More ❯

value projects across multiple industries. Managing the full project lifecycle – from planning and scoping through to delivery and reporting. Creating and maintaining detailed documentation including project plans, RAID logs, risk registers, and status updates. Coordinating with cross-functional teams and stakeholders to ensure aligned and timely delivery. Supporting business development activities such as RFPs, tenders, and proposal writing. Facilitating More ❯

Senior Cybersecurity Risk Analyst (Remote) needed, £28.49ph PAYE - Reference: RQ Role Overview We are looking for a highly skilled and technically proficient Senior Cybersecurity Risk Analyst to join our team on an interim basis. This role is critical in identifying, assessing, and managing information security risks across the organization. The ideal candidate will have a strong technical background … the ability to translate threats into business risks, and experience working in fast-paced environments. Key Responsibilities - Conduct in-depth security risk assessments across systems, applications, and infrastructure. - Identify and evaluate technical and operational risks, vulnerabilities, and control gaps. - Translate complex technical threats into clear, actionable business risks. - Maintain and update the Cybersecurity Risk Register. - Produce detailed risk … the Security Operations Centre (SOC). - Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). - Review security aspects of tenders and conduct third-party/vendor risk assessments to ensure alignment with organisational security requirements. - Perform additional security-related tasks as directed by the Head of Information Security You will Ideally have - - Proven experience in technical More ❯

This role is crucial in ensuring IT risks are identified, measured, and actively managed to protect the organisation from potential impacts. You will develop and implement IT policies, conduct risk assessments, and ensure compliance with regulatory requirements while driving improvements in IT governance processes. Key Accountabilities * Identify, evaluate, and manage IT risks across infrastructure, data protection, and lifecycle management. … Own and maintain the IT risk register, ensuring mitigation plans are in place. * Align risk management frameworks with industry standards (ISO27001, NIST, CIS Critical Controls). * Lead IT audits, coordinate fieldwork, and track findings to ensure timely resolution. * Develop and implement IT policies, procedures, and security awareness initiatives. * Act as an SME, providing guidance on IT governance … compliance, and risk mitigation strategies. Required Skills & Qualifications * Proven experience in IT risk management, security governance, and compliance. * Strong knowledge of ISO27001, GDPR, PCI-DSS, and cybersecurity frameworks. * Experience in IT audit coordination and risk assessment methodologies. * Excellent communication and stakeholder management skills. * Desirable - Certifications such as CRISC, CISA, CISM, or CISSP Benefits * 10% discretionary performance related More ❯

adheres to best practices and legislation in data protection, information security, quality management, environmental compliance and industry-specific security standards. The ideal candidate will have experience in compliance management, risk assessment, audits, security frameworks and policy implementation. They will need to work across teams such as IT, Operations, Finance, Delivery and Engineering to ensure robust governance, risk management … and compliance Information security and Cyber Essentials Plus Oversee Cyber Essentials Plus compliance ensuring security controls are in place Work closely with the IT team to assess vulnerabilities, manage risk and implement cyber security policies Work with the Head of IT to manage incident response planning and ensure security incidents are managed in line with best practices Data protection … Assessments (DPIAs) Implement processes around Data Subject Access Requests (DSARs) and breach management Ensure compliance with any client and third-party data processing agreements (DPAs) and data retention rules Risk management and policy development Review, update, maintain and enforce policies and procedures related to: Information security Data protection Environmental sustainability Business continuity Incident response Supplier security assessment Maintain a More ❯

adheres to best practices and legislation in data protection, information security, quality management, environmental compliance and industry-specific security standards. The ideal candidate will have experience in compliance management, risk assessment, audits, security frameworks and policy implementation. They will need to work across teams such as IT, Operations, Finance, Delivery and Engineering to ensure robust governance, risk management … and compliance Information security and Cyber Essentials Plus Oversee Cyber Essentials Plus compliance ensuring security controls are in place Work closely with the IT team to assess vulnerabilities, manage risk and implement cyber security policies Work with the Head of IT to manage incident response planning and ensure security incidents are managed in line with best practices Data protection … Assessments (DPIAs) Implement processes around Data Subject Access Requests (DSARs) and breach management Ensure compliance with any client and third-party data processing agreements (DPAs) and data retention rules Risk management and policy development Review, update, maintain and enforce policies and procedures related to: Information security Data protection Environmental sustainability Business continuity Incident response Supplier security assessment Maintain a More ❯

adheres to best practices and legislation in data protection, information security, quality management, environmental compliance and industry-specific security standards. The ideal candidate will have experience in compliance management, risk assessment, audits, security frameworks and policy implementation. They will need to work across teams such as IT, Operations, Finance, Delivery and Engineering to ensure robust governance, risk management … and compliance Information security and Cyber Essentials Plus Oversee Cyber Essentials Plus compliance ensuring security controls are in place Work closely with the IT team to assess vulnerabilities, manage risk and implement cyber security policies Work with the Head of IT to manage incident response planning and ensure security incidents are managed in line with best practices Data protection … Assessments (DPIAs) Implement processes around Data Subject Access Requests (DSARs) and breach management Ensure compliance with any client and third-party data processing agreements (DPAs) and data retention rules Risk management and policy development Review, update, maintain and enforce policies and procedures related to: Information security Data protection Environmental sustainability Business continuity Incident response Supplier security assessment Maintain a More ❯

Harvey's IT environment and enterprise applications, you will be responsible for the operational management of the Company's Information Security Management System and ensuring that our IT governance, risk management, and compliance measures are effective and implemented. The role will support the implementation and maintenance of security controls across the group, aligned with our cyber security policy, group … are as secure as possible. Create and maintain security documents (policies, standards, baselines, guidelines, and procedures). Maintain & improve Business Continuity and Disaster Recovery plans. Contribute to the IT risk register and mitigation plans. Ensure Endpoint security compliance, including Mobile Device Management. Organise audits, external and internal vulnerability scans, web, infrastructure and application penetration tests and ensure remediation … effectively with technical and non-technical colleagues at all levels in the organisation. Essential Previous experience within a cyber/information security role. Strong knowledge and understanding of security risk assessment, including security testing principles and tools. Network, operating system, application and organisational security concepts. An investigative and analytical nature with a focus on ensuring the organisation is as More ❯

the progress of satisfying the requirements Ensure project documentation is established according to the project and programme management processes (eg requirements, project plans, finances, system FMEAs, design release approvals, risk register, change management documentation) Identify project risks and liaise with key stakeholders to ensure suitable mitigation plans are in place and coordinate business discussions to resolve any time More ❯

IT Risk & Compliance Manager Location: Newport Job Type: Full-time, Hybrid (1 day per week) Salary: 60 - 70K plus benefits We are seeking an IT Risk & Compliance Manager to join our client's IT team. This role is crucial in ensuring IT risks are identified, measured, and actively managed to protect the organisation from potential impacts. You will … develop and implement IT policies, conduct risk assessments, and ensure compliance with regulatory requirements while driving improvements in IT governance processes. Key Accountabilities * Identify, evaluate, and manage IT risks across infrastructure, data protection, and lifecycle management. * Own and maintain the IT risk register, ensuring mitigation plans are in place. * Align risk management frameworks with industry standards … fieldwork, and track findings to ensure timely resolution. * Develop and implement IT policies, procedures, and security awareness initiatives. * Act as an SME, providing guidance on IT governance, compliance, and risk mitigation strategies. Required Skills & Qualifications * Proven experience in IT risk management, security governance, and compliance. * Strong knowledge of ISO27001, GDPR, PCI-DSS, and cybersecurity frameworks. * Experience in IT More ❯

IT Risk & Compliance Manager Location: Newport Job Type: Full-time, Hybrid (1 day per week) Salary: 60 - 70K plus benefits We are seeking an IT Risk & Compliance Manager to join our client's IT team. This role is crucial in ensuring IT risks are identified, measured, and actively managed to protect the organisation from potential impacts. You will … develop and implement IT policies, conduct risk assessments, and ensure compliance with regulatory requirements while driving improvements in IT governance processes. Key Accountabilities Identify, evaluate, and manage IT risks across infrastructure, data protection, and lifecycle management. Own and maintain the IT risk register, ensuring mitigation plans are in place. Align risk management frameworks with industry standards … fieldwork, and track findings to ensure timely resolution. Develop and implement IT policies, procedures, and security awareness initiatives. Act as an SME, providing guidance on IT governance, compliance, and risk mitigation strategies. Required Skills & Qualifications Proven experience in IT risk management, security governance, and compliance. Strong knowledge of ISO27001, GDPR, PCI-DSS, and cybersecurity frameworks. Experience in IT More ❯

products and recycling services in more than 30 different countries across EMEA with over 30,000 colleagues. About the role Reporting to Head of I&T GRC, Governance and Risk Lead will be responsible for driving information and cyber security awareness, delivering security awareness training including phishing and facilitation of cyber scenario desktop simulations across central and manufacturing site … legal, data protection and digital security and business stakeholder in relation to supplier information and cyber security due diligence and requirements. As the successful candidate you will also lead risk-based party security assurance, management, and continuous improvement activities. In addition, facilitate and coordinate IT risk management risk register, tools, process, reporting and review. You will … take responsibility for managing a subset of aspects of ISO 27001 related documentation and control activities. As the I&T Governance and Risk Lead you will have the responsibility of aspects of the I&T GRC scope, delegated and assigned by the Head of I&T GRC. Key Accountabilities Engage with key IT and business stakeholders in relation to More ❯

Liverpool), with flexibility for remote working and occasional travel to other business locations as required.This role offers the opportunity to make a real impact by embedding best practices, reducing risk, and fostering a culture of operational resilience. About the role: Reporting to the Head of Information Security Risk & Assurance, the ISBP plays a central role in embedding information … security, business continuity, and risk management across our organisation.You'll support a broad range of stakeholders across the following business units:Retail Operations -Supply Chain & Logistics -Support Centre. Your responsibilities will include: Business continuity & incident response Leading crisis simulations and scenario-based exercises with stakeholders Supporting disaster recovery planning and testing Delivering security incident response training and playbooks Coordinating … business continuity planning and improvement tracking Acting as a liaison during major incidents and assisting with post-incident reviews Information security risk & assurance Promoting security governance across business units Managing risk registers and facilitating quarterly risk reviews Coordinating audits, assessments, and compliance checks Supporting third-party due diligence and vulnerability remediation You'll work closely with internal More ❯

system design, deployment, and ongoing operations. Define cybersecurity requirements within the client's environment, including rail-specific systems, legacy OT, and modern industrial platforms. Support developing and delivering security risk assessments, threat models, and control frameworks following the relevant standards. Contribute to the production and review of assurance artefacts, including security cases, risk registers, control implementation evidence, and … depth understanding of operational technology (OT) environments, including SCADA systems, field devices, industrial protocols, and control network architectures. Firm grounding in cybersecurity principles for critical infrastructure, including threat modelling, risk analysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT/IT systems within large engineering or infrastructure programmes. … safety standards. Strong communication and stakeholder engagement skills, with the ability to liaise confidently across engineering, programme delivery, assurance, and regulatory audiences. Ability to produce high-quality documentation, including risk assessments, technical guidance, assurance artefacts, and audit-ready deliverables. Familiarity with UK cybersecurity regulations and sector guidance, including the NIS Regulations, CNI expectations, and industry-specific frameworks. Capable of More ❯

various team members in the Information Technology department to ensure that systems and networks are always designed, developed, deployed, and managed with an emphasis on strong, effective security and risk management controls. The Cyber Security Analyst leads the firm's vulnerability management program, manages the annual cybersecurity assessments and penetration tests, and researches and reports on emerging threats to … help the firm take pre-emptive risk mitigation steps. Effectively correlates and analyzes security events within UFP's systems environment to proactively detect threats and mitigate attacks before they occur. Cyber Security Analyst Duties and Responsibilities: Studies evolving threats and other industry developments related to cyber security. Researches/evaluates emerging cyber security threats and ways to manage them. … users. Liaises with stakeholders in relation to cyber security issues and provides future recommendations. Generates reports for both technical and non-technical staff and stakeholders. Maintains an information security risk register and assists with internal and external audits relating to information security. Creates and conducts employee training programs related to cyber security. Monitors and mitigates 'phishing' emails and More ❯

Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing to DPIAs ? Supporting HMG Secure-by-Design assurance across the entire delivery lifecycle ?️ Feeding into control … frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing ?️ Experience working in the UK Public Sector, ideally with the NHS/NHSE and government design principles ️ Hands-on experience in Agile/DevOps More ❯

Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing to DPIAs ? Supporting HMG Secure-by-Design assurance across the entire delivery lifecycle ?️ Feeding into control … frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing ?️ Experience working in the UK Public Sector, ideally with the NHS/NHSE and government design principles ️ Hands-on experience in Agile/DevOps More ❯

Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing to DPIAs ? Supporting HMG Secure-by-Design assurance across the entire delivery lifecycle ?️ Feeding into control … frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing ?️ Experience working in the UK Public Sector, ideally with the NHS/NHSE and government design principles ️ Hands-on experience in Agile/DevOps More ❯

Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing to DPIAs ? Supporting HMG Secure-by-Design assurance across the entire delivery lifecycle ?️ Feeding into control … frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing ?️ Experience working in the UK Public Sector, ideally with the NHS/NHSE and government design principles ️ Hands-on experience in Agile/DevOps More ❯

Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing to DPIAs ? Supporting HMG Secure-by-Design assurance across the entire delivery lifecycle ?️ Feeding into control … frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing ?️ Experience working in the UK Public Sector, ideally with the NHS/NHSE and government design principles ️ Hands-on experience in Agile/DevOps More ❯