1 to 25 of 57 Contract Risk Management Jobs in the South East

Status: Inside Rate: £500 - £600 Lenghth: Initial 6 months, scope for extension Must have Active MOD DV Clearance In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 … and the NIST Cyber Security Framework. Produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide accurate and pragmatic remediation/risk management guidance …/advice in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic and interpersonal skills. Have a good understanding of modern IT technologies and services, such as Cloud Computing, AI (ISO42001), Mobile Computing, IT Security, Infrastructure technologies, Zero Trust, Data at Rest/In Transit More ❯

business is looking to hire an Operational Resilience, Business Continuity (Disaster Recovery specialist). The successful candidate will be responsible for developing and executing an IT disaster recovery (including risk management strategy) for enterprise infrastructure. You will also plan for ongoing maintenance. You will also ensure our clients IT infrastructure and services remain resilient and recoverable in the … event of disruption. In depth expertise in ITIL frameworks is essential. Previous experience in disaster recovery planning and risk management is also essential. The ability to work closely with business, technical and vendor stakeholders. Engagement via Umbrella Company Only; all taxes & NI deducted at source. General responsibilities: - Define/maintain IT disaster recovery framework ensuring alignment with business … continuity objectives. Conduct risk assessments of existing infrastructure services enabling identification of mitigation strategies. Develop and document disaster recovery plans and runbooks. Manage and run regular Disaster Recovery exercises. Compliance with ITIL best practices for risk and recovery management. Collaborate with service owners, dept. heads and vendors to ensure new DR processes are built into future designs. Advise More ❯

Security Consultant – GRC (Governance, Risk & Compliance) Location: Reading (Remote role with once or twice per month on-site) Rate: Negotiable (DOE) Contract: Until May 2026An excellent opportunity has arisen for an experienced Security Consultant (GRC) to join a global technology organisation that’s expanding its EMEA cyber security consulting practice and investing heavily in a new Centre of Excellence.This … is a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients — including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT .You’ll play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a … Responsibilities Deliver Cyber GRC consulting engagements end-to-end — from scoping and planning through to delivery and close-out. Provide advisory services covering areas such as Information Security Governance, Risk Management, Compliance, Business Continuity, and Cloud Security. Translate complex security and compliance requirements into actionable business solutions. Build trusted relationships with clients at both technical and senior management More ❯

rate. Please get in touch to discuss the rates via these different payment vehicles. The Role The PSA Principal Engineer will be a focal point for security and information risk matters within the Product Security Engineering (PSyE) team and will be able to apply their deep level of subject matter expertise and experience to ensure that submarine systems and … products are delivered and can be managed and supported through-life. They will be able to support the appropriate authorities/management to ensure the delivered solutions meet the specified contractual and regulatory requirements and can be operated securely, correctly and safely. Role Responsiblities: Not limited to... Risk Management Accreditation Document Set (RMADS). Security Strategy and … exhaustive). What are BAE Systems looking for from you? The PSA Principal Engineer will have a good understanding of the applicable regulations, standards, policies and guidance on information risk management, to be able to identify, analyse and evaluate information risks. They will be able to document and present risk management options to the business and More ❯

computing, modelling, simulation, software engineering, business systems, data acquisition, and core IT services. Within the Computing Division, the Enterprise Infrastructure Solutions unit is responsible for the design, delivery, and management of centrally supported IT infrastructure and applications. This includes enterprise compute platforms, data networks, UNIX/Linux/Windows environments, cloud services, data centres, commercial software solutions, and end … digital estate, encompassing enterprise IT, operational technology (OT), and research platforms. This role sits within the Information & Cyber Security Group and provides subject matter expertise in security architecture, cyber risk governance, and assurance frameworks. This is a cross-functional role with both advisory and hands-on responsibilities, focusing on security assurance, risk management and supporting architecture reviews … vulnerability management, risk assessments, cyber defence posture, driving technical assurance, and embedding risk-aligned security controls across IT and OT systems and secure-by-design practices. You will work across hybrid environments including cloud, infrastructure, applications, and OT systems. You will be responsible for designing and advising on security architecture patterns, reviewing and maintaining risk registers More ❯

About the Role We're seeking a highly experienced Principal Product Security Engineer to join one of our clients Product Security Engineering teams, supporting the delivery and through-life management of secure submarine systems and products. As a key focal point for security and information risk, you'll apply deep technical expertise to ensure that solutions are designed … policies, and best practices across major defence programmes. Key Responsibilities Provide expert advice on Product Security to engineering and project teams. Analyse system architectures to identify threats, vulnerabilities, and risk mitigation strategies. Develop and manage Product Security analysis using recognised risk assessment techniques. Contribute to the development of Product Security strategies, policies, and guidance. Recommend and present appropriate … Represent Product Security at design reviews, ensuring security considerations throughout the system lifecycle. Manage concurrent work across multiple security programmes and provide technical leadership to junior engineers. Support incident management and contribute to key project documentation including RMADS, Security Strategies, and accreditation evidence. Key Deliverables & Accountabilities Delivery of Risk Management Accreditation Document Sets (RMADS) and associated security More ❯

Defence companies based in Frimley. Knowledge, Skills and Qualifications Knowledge: The PSA Principal Engineer will have a good understanding of the applicable regulations, standards, policies and guidance on information risk management, to be able to identify, analyse and evaluate information risks. They will be able to document and present risk management options to the business and … information assurance marketplace, including products, suppliers and key threats, and will also have an understanding of the direction of potential future technologies. Proven experience of assessing and managing information risk in line with industry good practice. Experience of assessing and advising on controls to support Product Safety. Proven experience of applying Product Security/Information Security concepts to applicable More ❯

Defence companies based in Frimley. Knowledge, Skills and Qualifications Knowledge: The PSA Principal Engineer will have a good understanding of the applicable regulations, standards, policies and guidance on information risk management, to be able to identify, analyse and evaluate information risks. They will be able to document and present risk management options to the business and … information assurance marketplace, including products, suppliers and key threats, and will also have an understanding of the direction of potential future technologies. Proven experience of assessing and managing information risk in line with industry good practice. Experience of assessing and advising on controls to support Product Safety. Proven experience of applying Product Security/Information Security concepts to applicable More ❯

Responsibilities Programme Leadership: Drive the end-to-end delivery of the infrastructure transformation programme, ensuring objectives, scope, timelines, and budgets are achieved. Planning & Governance: Develop programme plans, dependencies, and risk registers. Establish clear governance structures and provide regular reports to senior stakeholders. Technical Delivery Oversight: Work with engineers, architects, and vendors to ensure solutions meet technical standards and security … requirements. Stakeholder Management: Engage with IT leadership, business units, and external vendors to align technical outcomes with organisational goals. Vendor & Partner Coordination: Manage third-party suppliers, ensuring contracts, SLAs, and deliverables meet agreed quality standards. Risk & Issue Management: Identify, assess, and mitigate technical and delivery risks to maintain momentum and control. Change & Transition Management: Oversee testing … cut over planning, and service transition to minimise business disruption. Financial Management: Track programme budgets, forecasts, and resource costs to maintain effective financial control. Reporting: Produce clear, executive-level dashboards and progress updates highlighting risks, milestones, and key decisions. Team Leadership: Lead, motivate, and coordinate project managers, technical leads, and subject matter experts. Deputy Responsibilities: Act as deputy for More ❯

you will play a pivotal role in achieving strategic objectives for both our organisation and our Defence and National Security customers. Day-to-Day of the Role: Oversee the management of multiple projects within the programme, ensuring they align with the overall business strategy and objectives. Utilise advanced project management methodologies such as Prince2, Agile, and Safe to … with senior stakeholders to define programme goals, requirements, and deliverables. Coordinate with various business lines to ensure seamless integration and delivery of programme components. Ensure compliance with local programme management policies, procedures, and methodologies. Monitor programme progress, addressing potential issues and adjusting as necessary to stay on track. Establish and maintain programme governance structures and processes. Manage financial aspects … of the programme, including budgeting, forecasting, and ensuring the visibility of financial impacts on Business Line Profit & Loss. Lead risk management efforts across the programme, ensuring risks are identified, assessed, and mitigated effectively. Ensure that all programme milestones are achieved and that corresponding deliverables are accepted by the customer. Required Skills & Qualifications: Proven experience as a Programme Manager More ❯

Requirements: Proven commercial experience working as an IT Project Manager, ideally within healthcare/clinical environments. Strong application integration and migration experience. Brings strong expertise within the Governance and Risk space, with a solid understanding of regulatory requirements and risk management frameworks. The ability to articulate challenges around business change. Demonstrates a high level of awareness and … practical experience with risk registers, risk assessments, and facilitating or contributing to risk meetings. Excellent communication and stakeholder management skills. Demonstrates a proactive approach and takes full ownership of responsibilities and outcomes. Proactively seeks information to ensure clarity and alignment with tasks and objectives. Nice to have: Clinical/Healthcare sector experience Merger and Acquisition (M More ❯

Threat Intelligence Centre (TIC) efforts and ensuring alignment with strategic planning objectives, managing major projects that enhance global cyber threat intelligence capabilities. The ideal candidate should have strong project management experience, excellent communication skills, a deep understanding of cybersecurity operations, and the ability to collaborate effectively with global teams. ELIGIBLE APPLICANTS: (O) Eligible visa: Permanent residence, Spouse, Partner, Working … SALARY: up to £58k, depending on experience START: Nov-Dec 2025 LOCATION: London (office-based) Cybersecurity Project Manager Main Responsibilities: Lead the end-to-end management of TIC activities while ensuring alignment with their global cybersecurity strategy Develop and maintain detailed activity plans, timelines, budgets, and resource allocations Manage TIC accounting, financial operations, and budget forecasts to ensure cost … Facilitate communication and coordination with global stakeholders across regions (Japan, EMEA, Americas, Asia Pacific, India) to ensure alignment of requirements and deliverables Track activity progress, manage risks, and implement risk mitigation strategies to ensure successful outcomes Drive standardisation of threat intelligence protocols, tools, and governance across the region Partner with technology, compliance, and risk management teams to More ❯

to the next level? Our client is on the lookout for a talented Technical Business Analyst to support the implementation of a cutting-edge SaaS solution for Third Party Management (TPM). If you thrive in a dynamic environment and have a knack for bridging the gap between business needs and technical solutions, we want to hear from you … Position Overview: As a Technical Business Analyst, you will play a pivotal role in leading the technical implementation of Process Unity while ensuring alignment with procurement workflows and risk management objectives. Your expertise in business/systems analysis, particularly within the banking or financial services sector, will be invaluable as you navigate the complexities of third-party risk … and configuration. Key Responsibilities: Lead the Charge: Drive the technical implementation of ProcessUnity, ensuring seamless integration with procurement workflows. Bridge the Gap: Act as the IT representative between vendors, risk business, and internal technology teams. Gather Insights: analyse and document technical and non-functional requirements, translating them into detailed Technical Requirements Documents (TRDs). Collaborate & Facilitate: Work closely with More ❯

the ISO 27001 certification lifecycle - including audits, remediation, and recertification. Collaborate with technical and product teams to embed security standards and oversee incident response procedures. Drive measurable improvements in risk reduction and compliance maturity through strong audit oversight and playbook management. Digital & Clinical Safety Partner with IT, Clinical, Legal, and Executive teams to align on digital safety practices. Maintain … Safety Policies, ensuring compliance with DCB0129/0160 and the Medical Device Directive. Oversee training compliance for clinical and digital safety roles, ensuring safety case documentation remains current. Quality Management Lead the Quality Management System (QMS) aligned to ISO 9001, maintaining full documentation and audit readiness. Manage the ISO 9001 audit programme and guide remediation efforts. Support executive … decision-making by maintaining clear visibility of organisational compliance. Cross-Domain Governance Administer governance committee operations, risk registers, and action logs across IG and Cyber domains. Maintain accurate and auditable records of training, compliance, and risk activities to support evidence-based reporting. Who You Are A trusted leader who sees the bigger picture and delivers with consistency. Excellent More ❯

IR35 We are seeking an Agile BA (x1) with recent experience working with top-tier, enterprise-level financial services clients to lead Agile teams through the delivery of critical risk-data and risk-reporting improvements under BCBS 239, Basel III/IV and relevant PRA/FCA frameworks. Your background with large financial services organisations will be key … onsite (non-negotiable) Contract Type: Contract Duration: 12 months initial Sector: Banking You’ll guide teams working on a key regulatory project – focusing on data consolidation, data aggregation and risk-reporting – ensuring regulators’ requirements for accurate, timely data are met across stress and normal conditions. This programme is pivotal to strengthening the bank’s risk-management capabilities … PRA/FCA compliance) within enterprise-level financial services clients Agile pedigree: CSM, PSM or equivalent Agile certification Stakeholder engagement: exceptional communicator, able to work with business, technology and risk teams to keep delivery on track Contract stability: evidence of longevity in previous assignments (minimal short stints) Banking exposure: experience within a top-tier UK bank or similar enterprise More ❯

IR35 We are seeking an Agile BA (x1) with recent experience working with top-tier, enterprise-level financial services clients to lead Agile teams through the delivery of critical risk-data and risk-reporting improvements under BCBS 239, Basel III/IV and relevant PRA/FCA frameworks. Your background with large financial services organisations will be key … onsite (non-negotiable) Contract Type: Contract Duration: 12 months initial Sector: Banking You’ll guide teams working on a key regulatory project – focusing on data consolidation, data aggregation and risk-reporting – ensuring regulators’ requirements for accurate, timely data are met across stress and normal conditions. This programme is pivotal to strengthening the bank’s risk-management capabilities … equivalent Agile certification; track record of coaching teams, facilitating all Scrum ceremonies, removing impediments and driving continuous improvement Stakeholder engagement: exceptional communicator, able to work with business, technology and risk teams to keep delivery on track Contract stability: evidence of longevity in previous assignments (minimal short stints) Banking exposure: experience within a top-tier UK bank or similar enterprise More ❯

role to define project requirements and objectives. Partner with customers and business lines to manage project delivery, ensuring acceptance, closedown, and handover to service. Maintain compliance with local project management policies, procedures, and methodologies. Compile status reports from team members across the project and address issues as appropriate. Establish and report project Key Performance Indicators to the Senior Project … milestones. Required Skills & Qualifications: Proven experience in managing projects within the Defence & National Security sector. Strong capability in delivering various projects through the full project lifecycle. Familiarity with project management methodologies such as Prince2, Agile, and Safe. Effective risk management and financial oversight skills. Excellent stakeholder management abilities. Must hold DV Active clearance; SC clearance is More ❯

understanding of UK GDPR, EU GDPR, and the Data Protection Act 2018 Experience delivering data privacy compliance frameworks and/or programmes Familiarity with information governance and information security management systems (ISO27001) Excellent communication and stakeholder management skills Proven ability to lead projects, manage risk, and influence across matrix environments Desirable certifications: CIPP (Certified Information Privacy Professional … and maintain the affiliate's local privacy framework, ensuring compliance with applicable privacy legislation and Roche's internal governance Lead local data privacy initiatives, including training, awareness campaigns, and risk management programmes Conduct and oversee Data Protection Impact Assessments (DPIAs) and ensure privacy by design in all projects and processes Manage personal data breaches and incidents, including investigation More ❯

collaboration, sharing knowledge and contributing to a positive delivery culture. What you'll bring Experience supporting the delivery of business services in secure or complex environments. Understanding of service management frameworks (e.g. ITIL, DDaT) and operational governance. Ability to manage service issues, coordinate with stakeholders, and contribute to improvement initiatives. Familiarity with business systems, identity management, and secure … and service reliability. Core areas (must have): Service Delivery & Coordination: Experience supporting the delivery and transition of business services, ensuring readiness and performance. Governance & Compliance: Understanding of service governance, risk management, and alignment with internal and external standards. Stakeholder Engagement: Ability to communicate effectively with internal customers, technical teams, and external partners. Service Documentation & Process Management: Experience More ❯

collaboration, sharing knowledge and contributing to a positive delivery culture. What you'll bring Experience supporting the delivery of business services in secure or complex environments. · Understanding of service management frameworks (e.g. ITIL, DDaT) and operational governance. · Ability to manage service issues, coordinate with stakeholders, and contribute to improvement initiatives. · Familiarity with business systems, identity management, and secure … and service reliability. Core areas (must have): Service Delivery & Coordination: Experience supporting the delivery and transition of business services, ensuring readiness and performance. · Governance & Compliance: Understanding of service governance, risk management, and alignment with internal and external standards. · Stakeholder Engagement: Ability to communicate effectively with internal customers, technical teams, and external partners. · Service Documentation & Process Management: Experience More ❯

Title: Business Analyst Location: Wokingham Contract Type: 6 - month contractor position (with potential for extension) Are you ready to make a significant impact in the world of security asset management? Our client is on the lookout for a dynamic Business Analyst to support the successful delivery of the Security Asset Refresh Programme! If you're passionate about turning requirements … a Business Analyst, you will play a crucial role in ensuring that our new or upgraded security assets not only meet operational needs but also align with compliance and risk management standards. Your analytical skills will be essential in capturing requirements and assessing business impacts. Key Responsibilities: Requirements Management: Elicit, document, and validate business, functional, and non … standards. Business Case and PID Development: Lead analytical support for developing a robust Business Case aligned with organisational strategy. Collaborate with stakeholders to articulate the case for change, emphasising risk mitigation and operational efficiency. draught critical sections of the Project Initiation Document (PID). Skills & Experience Required Strong background in business analysis within technology or security programmes. Knowledge of More ❯

to the Portfolio Manager, leading from the front to drive delivery excellence, embed agile practices, and ensure the smooth execution of business-critical initiatives. Key Projects Include: Master data management project, the function's largest agile initiative Cloud automation and data quality management rollouts Development of board-level and governance dashboards Contributing to wider operational and property-related … agile/waterfall) setting. You Will Bring: Proven experience delivering complex technology and operational change projects Strong Agile background, ideally Scrum Master or SAFe certified Solid understanding of governance, risk management, and portfolio oversight Excellent communication and stakeholder engagement skills, including at C-suite level Experience in structured corporate environments (Life Sciences, Financial Services, or similar) Exposure to … data, cloud, or automation initiatives Property relocation or workplace transformation experience (advantageous) Qualifications: Professional project management certification (PRINCE2, PMP, AgilePM) Agile qualification (Scrum Master, SAFe, etc More ❯

collaboration, sharing knowledge and contributing to a positive delivery culture. What You'll Bring: Experience supporting the delivery of business services in secure or complex environments. Understanding of service management frameworks (e.g. ITIL, DDaT) and operational governance. Ability to manage service issues, coordinate with stakeholders, and contribute to improvement initiatives. Familiarity with business systems, identity management, and secure … and service reliability. Core Areas (must have): Service Delivery & Coordination: Experience supporting the delivery and transition of business services, ensuring readiness and performance. Governance & Compliance: Understanding of service governance, risk management, and alignment with internal and external standards. Stakeholder Engagement: Ability to communicate effectively with internal customers, technical teams, and external partners. Service Documentation & Process Management: Experience More ❯

Python, SQL, and Spark for data engineering tasks. Financial Services Domain Proven track record of delivering data solutions within banking, insurance, or investment sectors. Familiarity with regulatory requirements and risk management frameworks. Architecture & Design Ability to create conceptual, logical, and physical data models. Soft Skills Excellent communication and stakeholder management skills. Strong problem-solving and analytical mindset. More ❯

Role Overview Our client is seeking an experienced, hands on Senior Information Security Analyst to support both their technical security work and governance, risk and compliance (GRC). You will assess risks, review supplier and project security, respond to security questionnaires and tenders, support incident investigations, and help maintain compliance with Cyber Essentials Plus, ISO 27001, DSPT and GDPR. … Responsibilities Conduct risk assessments for systems, projects and third parties; document findings and remediation. Review and respond to supplier/security questionnaires and tender submissions. Support vulnerability and patch management; interpret scans and prioritise fixes. Advise IT teams on alerts, incidents and security configuration (M365/Azure/Defender/DLP/Conditional Access). Maintain risk … network security, ideally within Microsoft ecosystems (e.g., Azure, M365, Defender suite, DLP, Conditional Access). Skilled in evaluating supplier security through questionnaires, procurement documents, and assurance reviews. Knowledgeable in risk management practices and frameworks such as ISO 27005 and NIST RMF. Familiar with key compliance standards including ISO 27001, Cyber Essentials Plus, DSPT, and GDPR. Capable of interpreting More ❯