14 of 14 Permanent Risk Assessment Jobs in the Midlands

About SPS: Special Projects and Services Limited (SPS) is a UK-based security and risk management company founded in 1991. Operating globally, SPS provides crisis response, risk assessment, medical operations support, and project management in high-risk or complex environments. Known for its expertise in global assistance and specialist security operations, SPS was acquired by Concentric … in 2025, strengthening its position as a trusted provider of integrated risk and crisis management solutions. Overview: You will support the delivery of IT services across the UK business, assisting with technical support, device management, and ongoing tech ops projects. This role provides structured, hands-on training in IT systems administration, cyber security, and compliance, contributing to the smooth … Assistance Program for personal needs. Enrolment into the pension scheme to which SPS contributes 3% of your salary. Credentity protection - Eclipse Digital Protection by Concentric. Free access to our Risk Intelligence Dashboard and GEAR App. Providing 24/7 access to trusted risk intelligence and remote support, helping you stay informed, prepared, and protected wherever you operate. Dedicated More ❯

various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training and monitoring of Staff compliance Enhance and maintain a high Microsoft 365 secure score by implementing … Microsoft advisories Identify, assess, and mitigate security risks to the organisation's data and infrastructure Oversee the creation and document management of polices and standards Complete a full assessment of all third-party applications Provide regular security reports to the CISO as required Advise the CISO, IT Team and the wider business on matters relating to cyber security Skills … environments, including the ability to assess third-party platforms, suppliers, and software for security risks Proven experience in developing and implementing information security policies, procedures, and controls. Familiarity with risk assessment methodologies and tools Regulated background essential Experience in managing information security incidents and conducting investigations Excellent communication and interpersonal skills, with the ability to effectively collaborate with More ❯

stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001 and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training and monitoring of Staff compliance Enhance and maintain a high Microsoft 365 secure score by implementing … Microsoft advisories Identify, assess, and mitigate security risks to the organisation's data and infrastructure Oversee the creation and document management of polices and standards Complete a full assessment of all third-party applications Provide regular security reports to the CISO as required Advise the CISO, IT Team and the wider business on matters relating to cyber security Skills … environments, including the ability to assess third-party platforms, suppliers, and software for security risks Proven experience in developing and implementing information security policies, procedures, and controls. Familiarity with risk assessment methodologies and tools Desirable: Experience of working within Defence, UK government and/or a commercial security supplier Professional certifications in information security, such as CISSP or More ❯

checkpoints to validate that new systems and applications meet defined security requirements before deployment. Drive continuous improvement in DevSecOps maturity, using metrics and feedback loops to refine processes, reduce risk exposure, and accelerate secure delivery. Collaborate with enterprise architects, engineering leads, and product owners to ensure security is embedded from ideation through to deployment and maintenance. Champion threat modelling … and secure design practices, ensuring development teams proactively identify and mitigate risks during the design phase. Mentor and upskill engineering teams on secure coding, architectural risk assessment, and DevSecOps principles to build a culture of shared security ownership. Key Performance Indicators (KPIs) Secure Architecture Compliance Rate: Percentage of projects that meet defined secure architecture standards and pass architecture More ❯

aligning with regulatory changes and business growth as well as being responsible for defining and designing AML & Sanctions detection controls for new or amended products and propositions. Applying model risk management principles where relevant, this role includes the ownership of the continuous monitoring program for relevant AML and Sanction technology controls, ensuring they remain effective whilst demonstrating effective model … corruption, and regulatory requirements Leadership & Stakeholder Management: Ability to lead teams and collaborate with senior stakeholders, regulators, and law enforcement Analytical & Problem-Solving Skills: Strong data analysis, investigative, and risk assessment capabilities Regulatory Knowledge: Understanding of FCA, PRA, AML/CTF, and sanctions regulations in financial services Technology Proficiency: Experience with financial crime detection systems, AI, and data … us before you apply to see what the possibilities are for this role. Proud to be a Disability Confident Committed Employer We're proud to offer an interview or assessment to every disabled applicant who meet the minimum criteria for our vacancies. As part of the application process, disabled applicants can opt in for the Disability Confident Interview Scheme. More ❯

scheduling and planning internal and external testing activities, and support the collation and communication of security reports. You'll also liaise with technical and non-technical stakeholders to discuss risk, remediation options, and compliance requirements across operational areas. INFORMATION SECURITY ANALYST ESSENTIAL SKILLS * Strong understanding of core cyber and information security principles* Hands-on experience conducting vulnerability scanning and … industry-standard security practices and tooling* Awareness of emerging security technologies and trends* Understanding of PCI DSS (current version)* Excellent communication, documentation, and organisational skills* Pragmatic approach to governance, risk, and stakeholder engagement TO BE CONSIDERED: Please either apply through this advert or email me directly via .For further information please call me on/.By applying for this … for us to process and submit (subject to required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Cyber Security, Vulnerability Management, Penetration Testing, Risk Assessment, Compliance, PCI DSS, Security Tooling, Governance, SIEM, Endpoint Security, Security Investigations More ❯

SPICE (ASPICE) process framework, including systems engineering, software engineering, coding, and all levels of functional testing. Beyond core development, ESS also integrates critical supporting processes such as project management, risk assessment, functional safety, and cybersecurity, ensuring compliance with ASPICE standards and delivering reliable, secure, and high-quality embedded systems & solutions. The Role: We are seeking a highly skilled … BMS development in accordance with ISO 26262 (ASIL levels AD) Define and maintain safety goals, safety requirements, and safety concepts for BMS components and systems Conduct hazard analysis and risk assessments (HARA), FMEA, FTA, and other safety analyses Collaborate with cross-functional teams (hardware, software, systems, validation) to ensure safety compliance Support safety case development and documentation for internal More ❯

senior role, you will : Develop and enhance security assurance frameworks across projects and platforms Define and maintain security non-functional requirements for new solutions Guide teams through secure design, risk assessment, and architecture best practice Lead identity and access management governance, including MFA, RBAC, PAM and zero-trust initiatives Partner with architecture, infrastructure, and delivery teams to uplift … threats, technologies, and industry trends What you’ll bring: Strong experience designing and implementing security architecture in complex environments Deep knowledge of identity, access, cloud security, secure development, and risk management Familiarity with Azure or AWS, DevSecOps practices, and infrastructure as code Excellent communication and influencing skills, with the ability to drive change Relevant certifications (CISSP, CEH, OSCP, GCIH More ❯

senior role, you will: Develop and enhance security assurance frameworks across projects and platforms Define and maintain security non-functional requirements for new solutions Guide teams through secure design, risk assessment, and architecture best practice Lead identity and access management governance, including MFA, RBAC, PAM and zero-trust initiatives Partner with architecture, infrastructure, and delivery teams to uplift … threats, technologies, and industry trends What you'll bring: Strong experience designing and implementing security architecture in complex environments Deep knowledge of identity, access, cloud security, secure development, and risk management Familiarity with Azure or AWS, DevSecOps practices, and infrastructure as code Excellent communication and influencing skills, with the ability to drive change Relevant certifications (CISSP, CEH, OSCP, GCIH More ❯

convictions, cautions, reprimands, and final warnings that are not protected under the Exceptions Order 1975. Any offer of employment will be conditional upon a satisfactory DBS certificate and a risk assessment of any disclosed information. We are committed to fair recruitment and will consider disclosed information on a case-by-case basis, in line with our policy on More ❯

convictions, cautions, reprimands, and final warnings that are not protected under the Exceptions Order 1975. Any offer of employment will be conditional upon a satisfactory DBS certificate and a risk assessment of any disclosed information. We are committed to fair recruitment and will consider disclosed information on a case-by-case basis, in line with our policy on More ❯

in conjunction with this vacancy only. KEY SKILLS Application Security, AppSec, OWASP, Threat Modelling, Secure Development Lifecycle, Code Review, DAST, SAST, CI/CD, Penetration Testing, Supply Chain Security, Risk Assessment, Software Security, Automation More ❯

SPICE (ASPICE) process framework, including systems engineering, software engineering, coding, and all levels of functional testing. Beyond core development, ESS also integrates critical supporting processes such as project management, risk assessment, functional safety, and cybersecurity, ensuring compliance with ASPICE standards and delivering reliable, secure, and high-quality embedded systems & solutions. The Role: We are looking for a passionate More ❯

activity and provide programme wide performance insights Promote best practice and actively contribute to STEM events for children and young people Ensure full compliance with safeguarding, health and safety, risk assessment and related policies Build strong cross team relationships to support effective planning and coordination of programme delivery Set the strategy for the Delivery Team and ensure it More ❯