1 of 1 Contract Risk Register Jobs in West London

observability practices. Map findings to compliance frameworks (e.g., ISO 27001, SOC 2, or NHS DSPT where applicable). Produce a comprehensive gap analysis, risk register (with severity and likelihood ratings), and prioritised remediation backlog. Define minimum DevOps guardrails for the next delivery phase (e.g., mandatory checks, branch protection … audit) DevOps Audit Report (executive summary + detailed findings). Compliance mapping (ISO 27001 Annex A/SOC 2 trust principles) with gap list. Risk register including mitigations, effort, and impact estimates. Prioritised remediation backlog and proposed guardrails for Phase 2. RACI for change/release management ...