1 to 25 of 104 Contract Risk Management Jobs in the UK

Information Security & Risk Specialist Role: Information Security & Risk Specialist Specialism(s): Global Information Security, Risk Analysis, Cyber Security, Information Security, International Cyber Security, 3rd Party Security Compliance, Risk Management, Risk Reporting, Audit & Compliance, Cloud Infrastructure, ISO2700x, NIST, SOC2, PCI, GDPR, Risk Assessments Type … Contract, Inside IR35 Duration: 12 Months Location: London, On-Site Working (1 day remote per week) Start: ASAP/Urgent Information Security & Risk Specialist CPS Group UK are delighted to be working with a leading, global Entertainment brand to appoint an Information Security & Risk Specialist to join their ...

Please find below the updated job description for the Governance & Risk Management Consultant role: Need Active SC Clearance Role Summary We are looking for a Governance & Risk Management Consultant (15+ years experience) with strong expertise in compliance mapping, vulnerability risk management, and risk … across hybrid and cloud environments. Key Skills Required Security Controls Framework mapping (NIST, ISO 27001, NHS DSP Toolkit, NCSC CAF) Strong exposure to vulnerability risk management across hybrid and cloud estates (AWS, Azure) Governance oversight of vulnerability burn-down across platforms, applications, servers, and systems Compliance reporting aligned ...

SPEN are looking for a SAP Project Manager to join their Transformation project based in Glasgow. Role: SAP Asset Management Project Manager Business: Scottish Power Energy Networks Location: Glasgow/hybrid style working Duration: 12 month initial contract with renewal in line with the project Rate: Inside IR35, Umbrella … define and deliver the SAP Readiness projects with the support of SAP Application Managers, engage with NP&R stakeholders and the SAP Programme Management team to drive the successful deployment of SAP solutions, enhance operational efficiency, and support business and strategic initiatives. Accountability Statements Project Delivery Timeliness: Ensure that ...

Vendor Onboarding & Third Party Risk Management Consultant Contract until end of 2027 Remote with some travel to site (England, Ireland or Poland based) £(Apply online only) per day (IR35 status dependent on location of role) My client, in the Fintech industry are looking for an experienced Vendor Onboarding …/Third Party Risk Management Consultant to join a fast-paced, global organisation supporting vendor onboarding and risk assessment activities. You ll play a key role in ensuring vendors are onboarded efficiently, risk assessed appropriately, and fully compliant with internal governance and regulatory requirements. This ...

exciting opportunity to join the UK nuclear industry as a AMS Business Process Subject Matter Expert , supporting the effective use of the Asset Management System (AMS) to enable safe, efficient and compliant operations. Working within a complex and highly regulated environment, you will play a key role in supporting … critical business processes including work management, safety management and the maintenance of design integrity. The role offers the chance to work closely with multidisciplinary teams, applying your expertise to optimise system use, improve operational processes and contribute to the safe management of nuclear assets across the organisation. ...

Teams. We are seeking a ServiceNow IRM/GRC Architect with strong exposure to GenAI and Agentic AI capabilities to design and deliver intelligent risk, compliance, and governance solutions on the ServiceNow platform. The role will focus on embedding AI-driven insights, automation, and autonomous workflows into IRM processes … improve risk visibility, decision-making, and operational efficiency. Responsibilities Provides technical leadership to the team Creates and maintains a detailed view of the existing architecture Designs and collaboration with Business Process Analysts and Developers in the creation of a High-Level Solution Design Document. Defines and communicates ...

protecting sensitive systems and services. Due to ongoing programme demand, they are seeking an experienced Project Security Lead to strengthen cyber governance and risk management across a key capability. THE BENEFITS: Exposure to large scale Defence digital programmes Long term, stable contract High profile Defence programme environment … PROJECT SECURITY LEAD ROLE: As Project Security Lead, you will report into the Programme CISO and take ownership of security risk management across the system lifecycle. You will embed Secure by Design principles, ensure compliance with JSP 440 and JSP 453, and align activities to frameworks such ...

responsible for ensuring robust security solutions protecting our Service's sensitive data and IT infrastructure. This role involves contributing and reviewing designs, conducting risk assessments, developing security policies, and ensuring compliance with industry regulations. Responsibilities: Information Security - Lead in detecting and analysing security incidents including attacks, breaches, and identified … vulnerabilities and remediate any security gaps in line with the security incident management procedure. Information and Business Advice - Provide specialist advice on the interpretation and application of policies and procedures, resolving complex or contentious queries and issues and enabling others to take appropriate actions. Stakeholder Management - Plan ...

Security Risk Lead months + +DV cleared +On site in Warton +Inside IR35 Skills: +Proven demonstrable experience operating in a security risk role +MOD experience +DV clearance We are seeking an experienced S ecurity Risk Lead to lead cyber risk management and assurance across … Leaflet 5C), JSP 453 and alignment to the National Institute of Standards and Technology (NIST) RMF and CSF frameworks. Key Responsibilities Lead continuous risk management within agreed risk appetite. Develop and maintain security artefacts (SMP, SAL, Risk Assessments, IR & Vulnerability Plans). Oversee governance, architectural security ...

Security Risk Lead +6 months + +SC cleared +Remote working - occasional travel to Corsham +Inside IR35 + 550 - 590 a day Skills: + Proven demonstrable experience operating in a security risk role +MOD experience +SC clearance We are seeking an experienced S ecurity Risk Lead to lead … cyber risk management and assurance across a high-profile Defence programme. Reporting to the Programme CISO, you will embed Secure by Design principles across the full system lifecycle, ensuring compliance with JSP 440 (Leaflet 5C), JSP 453 and alignment to the National Institute of Standards and Technology (NIST ...

Responsibilities Provide portfolio-level security leadership , ensuring secure-by-design principles are embedded throughout delivery Work with senior stakeholders to define security outcomes, risk appetite, and governance Establish and own the security risk management and assurance framework , aligned to legislation, regulation, policy, standards, and best practice Define … implementation to ensure consistency and coherence across the portfolio Provide technical assurance of cyber security analysis, designs, and assurance evidence Manage the portfolio security risk register and conduct security maturity assessments Act as the primary security interface with SROs, SLT, and portfolio engineering and delivery teams Own and deliver ...

split of 50% home working and 50% onsite. This role supports the OMNIA Security Assurance Lead by carrying out a comprehensive Initial Security Risk Assessment for the MOD CTTP programme-analysing risks, threats, vulnerabilities, architectures and compliance requirements, and producing the formal assessment report. It also supports stakeholder engagement … coordinating with delivery partners, and helping present the final assessment. Key Responsibilities: Working closely with the OMNIA Security Assurance Lead to conduct Initial Security Risk Assessment Report activities in alignment with MOD Secure by Design (ISN2023/09) assurance activities. Attending workshops and meetings, both in-person and virtually ...

Services Consultancy. Key skills and experience: Experience working in Critical National Infrastructure (CNI) and secure Government environments. Key Responsibilities include Planning and oversight, Resource Management, Risk Management, Stakeholder Management, Performance Monitoring, Budget Management, Team Leadership, Collaboration and Communication. Project Manager lead the Planning, Execution ...

processes. Working knowledge of Summit FT, MetaData, API, STP, STK, RDBMS, SQL, and basic banking business concepts. Experience with Summit Modules: Documentation, Accounting, Credit Risk Management, Market Risk Management, Trade Processing, STP, Payments, and Settlements. Familiarity with Summit Entity, STP, SMT, Desktop, Workflow, and Environment Configurations. ...

clear network security product vision aligned with Zero Trust principles, organizational governance frameworks, and regulatory compliance requirements. Deep understanding of security policy lifecycle management, identity and access management integration, micro-segmentation strategies, and continuous verification principles. Skilled in managing network security product backlog prioritized based on risk … Proxy services, Network Access Control (NAC), Next[1]Generation Firewalls (NGFW), Intrusion Detection/Prevention Systems (IDS/IPS), and Security Information & Event Management (SIEM) integration, spanning physical, virtual, and cloud environments. Strong understanding of network security technology fundamentals including Zero Trust Architecture (ZTA) principles, Software[1]Defined Perimeter ...

Analyst – 3-month contract – Fully Remote My Customer is looking for an experienced GRC Analyst to join the organisation to strengthen governance, risk, and compliance practices and will lead the delivery of ISO 27001 certification within the next 12 months . The GRC Analyst will focus on maintaining current … above standards in relation to contracts and vendor relationships is essential. Key Skills & Experience from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST ...

convergence of physical and digital worlds through technology, engineering and manufacturing expertise to boost our clients' competitiveness. Your responsibilities will include: * Client liaison * Bid management * Project planning * Task Tracking and reporting * Revenue management * Profitability * Productivity * Forecasting and project finances * Risk management * Quality control * Continuous process improvement … Problem resolution * Resource allocation * Client satisfaction. Essential * Experience of delivering complex software engineering development projects and subcontracted hardware projects in a leading/management role throughout the project life cycle * Experience of delivering complex £20m+ development projects in Aerospace or Defence sectors. * 10 years' experience in project and programme ...

Vendor Manager Specialist Day Rate: £500–£600 (Inside) Location: London (Hybrid) Contract: 12 months Overview A leading financial services organisation is seeking a Vendor Management Specialist to support the rollout of a vendor risk management system and deliver BAU vendor lifecycle activities. The role covers EMEA … APAC and includes work on emerging third-party AI governance. Key Responsibilities Vendor Risk System (Archer or similar) Migrate vendor records into the risk system and liaise with senior stakeholders. Track progress and provide regular updates. Support alignment between global risk functions and regional business units. Apply ...

Title: Resilience Vulnerability Management Lead Contract Length: 10 months (initial) Location: Sheffield Hybrid Sector: Financial Services IR35 Status: Inside IR35 Overview We are working with a leading financial services organisation to recruit an experienced Resilience Vulnerability Management Lead for an initial 10-month contract. This role is critical … supporting the organisations Operational Resilience and Vulnerability Management objectives, ensuring Important Business Services (IBS) are resilient, well-governed, and compliant with internal standards and regulatory expectations. You will work in a hybrid model from Sheffield, collaborating closely with IT Service Owners, Service Sustainability Leads, and senior stakeholders across technology ...

design, and enterprise stakeholder engagement . You will help define how AI is adopted securely, at scale, and in line with regulatory and operational risk requirements. You will be responsible for defining and driving the AI Strategy, building a clear and practical AI Target Operating Model, and overseeing … portfolio, roadmap, and governance framework across the organisation. Working closely with senior stakeholders across security, risk, and business functions, you will ensure AI adoption is secure, compliant, and aligned to wider strategic priorities. Key Responsibilities Define and articulate the AI Strategy and AI portfolio in alignment with wider business ...

Birmingham 3 days p/w The Security Compliance Analyst will join a dynamic Information Security and Data Privacy team. You will support security risk management measures across compliance, data protection and third-party supply chain risk reduction, with a strong focus on supplier assurance and data … suppliers work only with the Personal Identifiable Information (PII) required, promoting strong data minimisation practices. Supporting the team in developing and improving third-party risk management processes and improvement plans. Assisting with the categorisation and tiering of the supplier risk register. Contributing to security and privacy compliance ...

Title: Information Governance Officer Line Management Responsibility: None Job Purpose To support the Council in ensuring that all information systems and services comply with current data protection legislation and statutory requirements, including the Freedom of Information Act (FOIA) and Subject Access Requests (SARs). The role will … statutory obligations under the Freedom of Information Act and other relevant legislation. Manage and report on the Council’s data breach register. Participate in risk management processes to mitigate compliance risks. Escalate non-compliance risks appropriately to senior governance officers (DPO, SIRO, Caldicott Guardian, Monitoring Officer, S151 Officer ...

Knowledge, Skills and Qualifications Knowledge: * The PSA Principal Engineer will have a good understanding of the applicable regulations, standards, policies and guidance on information risk management, to be able to identify, analyse and evaluate information risks. * They will be able to document and present risk management … suppliers and key threats, and will also have an understanding of the direction of potential future technologies. Proven experience of assessing and managing information risk in line with industry good practice. * Experience of assessing and advising on controls to support Product Safety. * Proven experience of applying Product Security/ ...

Recovery Specialist will play a critical role in strengthening Homes Englands operational resilience. You will be joining a highly skilled and collaborative Digital and Risk community, committed to safeguarding mission-critical services and ensuring business continuity across the agency. This role will lead the development and implementation …/27, ensuring testing is structured, proportionate and aligned to government standards. You will work collaboratively with Digital, Business Continuity and Risk Management partners, as well as function owners and other key stakeholders. You will take a leading role in the design and execution of scenario-based exercises ...

required. Measure of Success * Successful delivery of programmes to agreed scope, timelines, quality, and strategic outcomes. * Predictable and transparent delivery plans and reporting. * Effective management of risks, dependencies, and cross-team impacts. * Strong stakeholder confidence in delivery leadership and governance. * Smooth implementation and handover into live operations. Key skills … understanding of technology delivery, system integrations, and platform-based architectures. * Ability to work effectively with Product, Architecture, Engineering, and Business stakeholders. * Strong planning, dependency management, risk management, and governance skills. * Experience working with third-party vendors, partners, and system integrators. * Confident decision-maker, able to balance scope ...