1 to 25 of 80 Permanent Risk Management Jobs in the East of England

University Press & Assessment (CUPA) Location: Cambridge/Hybrid with 2 days a week minimum the office Contract: Permanent Join our organisation as a Security Risk Lead . Utilise your expertise and drive to safeguard operations in this impactful role. We are Cambridge University Press & Assessment, a world-leading academic … publisher and assessment organisation and a proud part of the University of Cambridge. About the role The Security Risk Lead plays a pivotal role by driving Cambridge University Press & Assessment's security risk management strategy. This position is responsible for identifying, assessing, and mitigating operational, financial, and … strategic security risks across the organisation to ensure a resilient and compliant security framework. Overseeing the Security Risk Manager, the Security Risk Lead will work closely with senior stakeholders to develop and embed risk management processes that align with the organisation's priorities. They will also More ❯

Vacancy: Cyber and IT Risk Manager The Purpose of the Cyber & IT Risk Manager is to complement and enhance Johnson Matthey's cyber security and IT/OT risk posture by identifying, assessing, analysing and communicating IT and cyber-security risks, and both the existence and efficacy … need talented individuals to help shape and lead us into our next century. Your responsibilities: Develop, implement, schedule and drive a cyber and IT risk management program which includes regular assessment, prioritisation, and review of remediation and mitigation activities, with clearly defined management ownership. Ensure that the … risk management program is aligned with business priorities and risk appetite, assessing and clearly communicating those risks in a non-technical, easily digestible manner that ensures all stakeholders can make informed decisions on these risks. Ensure that risks are assessed, recorded and communicated at the appropriate level More ❯

IT Risk Management Lead This is a hybrid role and would require you onsite in Brentwood 2 days per week. Role Purpose: We are looking for an IT Risk Management Lead who will be responsible for monitoring IT risks and ensuring that all controls are functioning … effectively and routinely. You will also manage each risk event from identification to conclusion, identifying any weaknesses in the control environment and putting into place actions to correct. Key Responsibilities and Accountabilities: Review and log all IT risks according to the ISO27001 framework, updating the Information Security Management System risk registers accordingly. o Prepare a monthly report for the CIO on highlighting a prioritised set of current risks Develop and maintain a register of all IT controls to ensure that they are routinely tested and working effectively. o Prepare monthly reporting for the CIO to evidence More ❯

IT Risk Management Lead This is a hybrid role and would require you onsite in Brentwood 2 days per week. Role Purpose: Our client is looking for an IT Risk Management Lead who will be responsible for monitoring IT risks and ensuring that all controls are … functioning effectively and routinely. You will also manage each risk event from identification to conclusion, identifying any weaknesses in the control environment and putting into place actions to correct. Key Responsibilities and Accountabilities: Review and log all IT risks according to the ISO27001 framework, updating the Information Security Management System risk registers accordingly. Prepare a monthly report for the CIO on highlighting a prioritised set of current risks Develop and maintain a register of all IT controls to ensure that they are routinely tested and working effectively. Prepare monthly reporting for the CIO to evidence the control More ❯

Risk Lead – Exam Technology Location: Cambridge (Hybrid – 2 days/week in office) Day Rate: Competitive inside IR35 Duration: 6 months Start Date: ASAP Role Type: Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experienced Risk Lead to shape … and drive a robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As the Risk Lead , you will work across multiple technical and leadership teams, acting as the Risk Champion to ensure non-project IT risk is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such as Ofqual and ISO standards. Key Responsibilities: Design, implement and own Exam Technology’s risk management framework, policies and procedures. Identify and mitigate IT More ❯

Risk Lead – Exam Technology Location: Cambridge (Hybrid – 2 days/week in office) Day Rate: Competitive inside IR35 Duration: 6 months Start Date: ASAP Role Type: Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experienced Risk Lead to shape … and drive a robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As the Risk Lead , you will work across multiple technical and leadership teams, acting as the Risk Champion to ensure non-project IT risk is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such as Ofqual and ISO standards. Key Responsibilities: Design, implement and own Exam Technology’s risk management framework, policies and procedures. Identify and mitigate IT More ❯

Risk Lead – Exam Technology Location: Cambridge (Hybrid – 2 days/week in office) Day Rate: Competitive inside IR35 Duration: 6 months Start Date: ASAP Role Type: Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experienced Risk Lead to shape … and drive a robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As the Risk Lead , you will work across multiple technical and leadership teams, acting as the Risk Champion to ensure non-project IT risk is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such as Ofqual and ISO standards. Key Responsibilities: Design, implement and own Exam Technology’s risk management framework, policies and procedures. Identify and mitigate IT More ❯

Risk Lead – Exam Technology Location: Cambridge (Hybrid – 2 days/week in office) Day Rate: Competitive inside IR35 Duration: 6 months Start Date: ASAP Role Type: Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experienced Risk Lead to shape … and drive a robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As the Risk Lead , you will work across multiple technical and leadership teams, acting as the Risk Champion to ensure non-project IT risk is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such as Ofqual and ISO standards. Key Responsibilities: Design, implement and own Exam Technology’s risk management framework, policies and procedures. Identify and mitigate IT More ❯

Risk Lead Exam Technology Location:Cambridge (Hybrid 2 days/week in office) Day Rate:Competitive inside IR35 Duration:6 months Start Date:ASAP Role Type:Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experiencedRisk Leadto shape and drive a … robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As theRisk Lead, you will work across multiple technical and leadership teams, acting as theRisk Championto ensure non-project IT risk … is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such asOfqualandISOstandards. Key Responsibilities: Design, implement and own Exam Technologys risk management framework, policies and procedures. Identify and mitigate IT risks in high-stakes assessment products and services. Lead real-time risk assessments More ❯

Risk Lead Exam Technology Location:Cambridge (Hybrid 2 days/week in office) Day Rate:Competitive inside IR35 Duration:6 months Start Date:ASAP Role Type:Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experiencedRisk Leadto shape and drive a … robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As theRisk Lead, you will work across multiple technical and leadership teams, acting as theRisk Championto ensure non-project IT risk … is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such asOfqualandISOstandards. Key Responsibilities: Design, implement and own Exam Technologys risk management framework, policies and procedures. Identify and mitigate IT risks in high-stakes assessment products and services. Lead real-time risk assessments More ❯

Risk Lead Exam Technology Location:Cambridge (Hybrid 2 days/week in office) Day Rate:Competitive inside IR35 Duration:6 months Start Date:ASAP Role Type:Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experiencedRisk Leadto shape and drive a … robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As theRisk Lead, you will work across multiple technical and leadership teams, acting as theRisk Championto ensure non-project IT risk … is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such asOfqualandISOstandards. Key Responsibilities: Design, implement and own Exam Technologys risk management framework, policies and procedures. Identify and mitigate IT risks in high-stakes assessment products and services. Lead real-time risk assessments More ❯

policy, standards, and exemption services to enable controls and supporting control practices to be embedded and optimised across the organisation. Includes optimisation of underpinning risk and control indicators. Implementation of Security Risk Management & Assurance. Provide subject matter expert knowledge on developing security risk management and … risk assurance services that enable effective, and data driven risk management and reporting across operations. This includes the capability to monitor and report effectiveness of risk management within the product development lifecycle and supply chain. Ability to Gather and Review Evidence For Compliance. Complete discovery … includes the controls used within the product development lifecycle and supply chain. Stakeholder Engagement. Build and maintain trusted relationships with stakeholders to embed security risk practices into operational activities. This includes providing guidance and thought leadership on risk best practice and assurance to technical and non-technical stakeholders. More ❯

us to deliver impact how and where it matters most. Connect to your opportunity As a Technical Analyst, you will provide support to Cybersecurity Risk Management team, Security Operations Centre (SOC), Global Event Monitoring Service (GEMS), Deloitte firms and cybersecurity service teams like Firewall Management, IDS/… IPS, Email protection amongst others. In this role you will: Focus on the analysis of Security Incident Event Management (SIEM) data, which includes: Provide Deloitte firms with cybersecurity data. Assist Deloitte Global and Deloitte firms with data extraction for ISO and PCI audit requirements. Support eDiscovery teams by providing … data relating to insider threats and legal matters. Build and maintain PowerBI dashboards. Support the cyber risk management team with data requests to support cyber risk management tasks. Work with and articulate highly complex datasets and analysis concisely. Connect to your skills and professional experience Do More ❯

automation. My client are currenlty looking for a Senior Business Analyst who is experienced in doing end to end implementations and implementing 3rd party risk management. Key Responsibilities: Lead the full project lifecycle for privacy and risk management tools (OneTrust or similar) from discovery to delivery. Collaborate … with internal teams and stakeholders to gather business requirements and translate them into functional specs. Drive the implementation of third-party risk management frameworks, aligning with compliance and procurement policies. Analyze and optimize workflows and processes to improve operational efficiency and reduce risk exposure. Provide system configuration … support, user training, and post-implementation reviews. Stay current with industry trends, regulatory changes, and best practices in data privacy and risk management. Required Skills & Experience: Proven experience as a Business Analyst within the food retail or related sector. Strong hands-on experience with OneTrust or similar GRC/ More ❯

Project Delivery Manager to lead the implementation of a large-scale finance systems replacement programme. This role involves managing project coordination, planning, budgeting, scheduling, risk management, and stakeholder engagement to ensure successful delivery. The ideal candidate will have a strong background in programme management, change management … systems replacement programme, ensuring it is completed on time, within budget, and to the required quality. Develop and implement project plans, governance frameworks, and risk management strategies. Manage project teams, external vendors, and key stakeholders to drive collaboration and successful outcomes. Monitor project interdependencies, ensuring seamless integration with … other initiatives. Lead change management efforts, ensuring user adoption and business readiness. Control budgets and resource allocation, ensuring efficient use of funds and personnel. Provide regular reports and updates to senior stakeholders, facilitating informed decision-making. Skills & Experience Required: Proven experience managing large-scale IT or finance transformation projects More ❯

read on……. This global financial services firm based in Norwich, are looking to recruit an Associate to join their expanding Data and Service Management division. The role is central to business operations and hence we’re looking for candidates, you are comfortable in a client facing role, proactive … co-ordinate the monthly and quarterly service and governance packs in line with contractual client requirements To support the Associate Director with data governance, risk and control projects and able to present any findings with confidence To work with internal and external stakeholders on a regular basis and to … open and confident communication style and the ability to adapt to a changing environment To be the first point of contact for all new risk event registrations, and to monitor each event through the Risk Management process. This will include the collation of risk data and More ❯

please read on. This global financial services firm based in Norwich, are looking to recruit an Associate to join their expanding Data and Service Management division. The role is central to business operations and hence were looking for candidates, you are comfortable in a client facing role, proactive and … co-ordinate the monthly and quarterly service and governance packs in line with contractual client requirements To support the Associate Director with data governance, risk and control projects and able to present any findings with confidence To work with internal and external stakeholders on a regular basis and to … open and confident communication style and the ability to adapt to a changing environment To be the first point of contact for all new risk event registrations, and to monitor each event through the Risk Management process. This will include the collation of risk data and More ❯

Looking to join a fast growing FinTech in Cambridge? Due to expansion, we're recruiting for a Payment Risk & Incidents Lead to join a dynamic team, where you can have a significant impact on the company's growth and develop your role and career as the business evolves. This … role offers a great deal of variety, covering operations and risk management including: Support with monthly fees and interest allocation to client accounts. Payment Investigations, supporting timely resolutions of reconciliation discrepancies and client queries. Support the development of Risk Control Self Assessments (RCSA). Produce monthly risk reporting, providing insights into the current risk profile and management of controls effectiveness. Support and assist Risk development of Payments projects and releases, highlighting areas that require management response plans. Support Management with the development of 1LOD risk oversight, embedding controls and performing More ❯

In broad terms, you should have as many of the following as possible: Experience of owning a security risk management system for highly regulated products based on recognised frameworks such as aerospace, nuclear, automotive, rail or oil & gas; People management, mentoring and development skills Practical experience of … would be desirable, but not essential , if you also had one or more of: Practical experience of ISO27001/27004/27005 or NIST Risk Management Framework (RMF); Knowledge of UK/NATO Information Assurance/Accreditation frameworks; Knowledge of EASA/FAA Airworthiness Certification frameworks; Awareness of … current crypto technologies, Key Management Systems & practical COMSEC; Chartered Engineer status with a recognised body; Awarded or looking to achieve an NCSC Certified Cyber Professional (CCP) recognition; Awareness of Information Security (INFOSEC), Communications Security (COMSEC), Transmission Security (TRANSEC), Product Safety and their inter-relationship; Experience of producing and delivering More ❯

you will do Strategic Leadership: Develop and implement a comprehensive power roadmap that aligns with the company's long-term goals and objectives Team Management: Lead and mentor a team of high-performing utility program managers, fostering a culture of excellence and continuous improvement Project Oversight: Oversee the execution … the highest quality standards Stakeholder Collaboration: Work closely with internal and external stakeholders, including engineering, construction, and operations teams, to ensure seamless project delivery Risk Management: Identify and mitigate risks associated with power projects, ensuring compliance with all regulatory requirements and industry standards Innovation: Stay abreast of the … environment in GID What we are looking for Strong knowledge of construction methodologies, building codes, safety regulations, and industry best practices Excellent leadership, team management, communication, and interpersonal skills Understanding of engineering principles and best practices In-depth knowledge of regulatory requirements and industry standards Understanding of substation design More ❯

Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. You will … ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based … risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance More ❯

Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. You will … ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based … risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance More ❯

Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. You will … ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based … risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance More ❯

Sizewell C! The Sizewell C (SZC) project requires a Data Analyst to contribute to the Civil Works Alliance Supply Chain team, focusing on data management and analysis. The role involves developing data management tools and processes to support strategic decision-making and information quality. Key Responsibilities Gather information … from multiple sources and develop reports for Supply Chain Performance Reviews, Risk Management, Programme Management, and Budget Management. Create Power BI dashboards and migrate existing ones as needed. Manage data stewardship and data quality in procurement systems. Improve data quality across the Civils Works Alliance through effective … with Microsoft Power Apps. Strong teamwork and collaboration skills. Ability to quickly learn new skills and adapt to technical and business challenges. Strong data management and analytical skills, especially with large datasets. Good understanding of Office365 tools (Excel, PowerPoint, Word, SharePoint, Teams). Knowledge of model-driven apps and More ❯

Sizewell C! The Sizewell C (SZC) project requires a Data Analyst to contribute to the Civil Works Alliance Supply Chain team, focusing on data management and analysis. The role involves developing data management tools and processes to support strategic decision-making and information quality. Key Responsibilities Gather information … from multiple sources and develop reports for Supply Chain Performance Reviews, Risk Management, Programme Management, and Budget Management. Create Power BI dashboards and migrate existing ones as needed. Manage data stewardship and data quality in procurement systems. Improve data quality across the Civils Works Alliance through effective … with Microsoft Power Apps. Strong teamwork and collaboration skills. Ability to quickly learn new skills and adapt to technical and business challenges. Strong data management and analytical skills, especially with large datasets. Good understanding of Office365 tools (Excel, PowerPoint, Word, SharePoint, Teams). Knowledge of model-driven apps and More ❯