1 to 25 of 47 Permanent Risk Management Jobs in Newport

diverse personalities, characters, and perspectives. There really is a place for you here. Why Join KPMG as a Manager - IGH GRCS? KPMG's Governance, Risk and Compliance Services (GRCS) practice within IGH is an area of the firm with tremendous growth potential. GRCS is an integral part of our … Enterprise Risk advisory practice. We provide services relating to internal audit, internal control, corporate governance, risk management and related assurance projects. Clients are based in the public sector and our services deliver added value to clients using modern control assessment, risk management and audit techniques … focusing on strategic, management and operational issues as well as financial management and reporting controls. We also work closely with other consulting teams including our colleagues in Technology Risk and Cyber Risk to ensure our clients receive the best possible advice and assurance. What will you More ❯

allowance, plus up to 10% performance bonus*, plus excellent benefits package. Logiq is a fast-growing Technology Company, providing cutting-edge solutions to high-risk clients across Private and Public Sector. Due to rapid growth in our Security Capability , we are looking for experienced Security Consultants to join our … team. What is Cyber Risk Management? Cyber risk management ensures that organisations can anticipate, withstand, and recover from cyber incidents, aligning security efforts with business objectives, regulatory requirements, and industry best practices. It involves applying risk-based decision-making to ensure security measures are proportionate … MOD’s cyber security transformation to Secure by Design (SbD), we are looking for team members and leaders who share our vision that cyber risk management is driven by business requirements and a holistic view of security that can guide clients to secure solutions that support their business More ❯

to further implement the Digital Operational Resilience Framework across the company e.g., refining and optimising existing policies, plans and procedures (in areas such as Risk Management, Incident Management, Business Continuity, Crisis Management, Third-Party Risk Management and Disaster Recovery), supporting the implementation of new … cross-functional workshops with business stakeholders to execute resilience activities such as End-to-End Function Mapping, Business Impact Assessments, Impact Tolerance Setting and Risk Assessments. Delivering workshops to facilitate testing programme planning and overseeing the ongoing execution and reporting of testing as per the test schedule and remediation … of gaps/vulnerabilities identified. Collating Management Information reporting from various business stakeholders on a quarterly basis to ensure effective reporting on resilience levels of Critical Functions to Senior Management and Board of Directors. Coordinating the activities of Contract Owners in terms of activities related to the outsourcing More ❯

Responsibilities 1. Documentation & Security SME Advice Security Documentation Management: Prepare, review, and manage comprehensive security documentation to support project security objectives. Subject Matter Expert (SME) Review: Assess supplier security outputs to ensure alignment with security requirements and best practices. RMADS Management: Collaborate with suppliers to ensure the Risk Management and Accreditation Document Set (RMADS) is appropriate for the current stage of the programme. 2. Security Impact Assessments & Integration Security Impact Assessments (SIAs): Support the identification, assessment, and mitigation of security risks associated with system changes. Codes of Connection (CoCo): Assist in developing Codes of Connection to … compliance with defence security frameworks. Bid Evaluation: Assist in reviewing supplier bids to assess their adherence to security requirements and accreditation standards. 5. Accreditation & Risk Management Accreditation Documentation: Prepare required documentation to achieve accreditation for applications hosted in defence on-premise, cloud, or hybrid environments. Risk Balance More ❯

allowance, plus up to 10% performance bonus*, plus excellent benefits package. Logiq is a fast-growing Technology Company, providing cutting-edge solutions to high-risk clients across Private and Public Sector. Due to rapid growth in our Security Capability , we are looking for experienced Security Consultants to join our … team. What is Cyber Risk Management? Cyber risk management ensures that organisations can anticipate, withstand, and recover from cyber incidents, aligning security efforts with business objectives, regulatory requirements, and industry best practices. It involves applying risk-based decision-making to ensure security measures are proportionate … MOD’s cyber security transformation to Secure by Design (SbD), we are looking for team members and leaders who share our vision that cyber risk management is driven by business requirements and a holistic view of security that can guide clients to secure solutions that support their business More ❯

our existing team in either Nottingham or Crewe. The Lead Information Manager is responsible for establishing, implementing, and overseeing best practices in Digital Information Management, including security policies, tools, governance, and training across our infrastructure and construction projects. Key aspects of the role include managing and maintaining, as product … owner, the corporate CDE ensuring compliance with ISO 19650 standards, promoting the effective adoption of information management practices across the business, and leading the Information Management (IM) team. Additionally, the role supports company-wide digital integration efforts and ensures the consistent delivery of high-quality data and document … control processes. Key Responsibilities Strategic Information Management Develop and implement the Aureos Information Management (IM) strategy, defining standardised IM practices across all Aureos sectors, frameworks and projects. Define, implement and promote standards and procedures to drive consistency and reduce risk. Oversee the establishment, control, and management of More ❯

Are you ready to lead the Governance, Risk & Compliance function for a fast-growing European technology powerhouse? My client, a dynamic and innovative digital transformation partner, provides IT infrastructure, managed services, and cloud solutions to mission-critical sectors across Europe. They’re seeking an experienced Head of GRC to … shape, lead, and scale their risk and compliance strategy across multiple jurisdictions. This is a high-impact leadership role where you'll drive GRC maturity, contribute to strategic decisions, and ensure operational resilience in a company that’s modernising and securing critical digital ecosystems. What You'll Be Doing … Define and implement governance structures, policies, and procedures that align with international best practices and regulatory requirements (e.g., ISO 27001, NIS2, GDPR). Oversee risk management frameworks, including enterprise risk, cyber risk, and third-party/vendor risk. Collaborate cross-functionally with Security, Legal, Operations, and More ❯

will set global commissioning process standards to ensure scalable, repeatable design and construction solutions. What youll do Global QA/QC and Cx Program Management: Manage global QA/QC and commissioning programs, enabling regional market adjustments where necessary to ensure consistency across all regions. Establish Global Standards: Define …/QC teams to enhance local capabilities and ensure consistent application of global standards. Innovation and Continuous Improvement: Drive innovation by integrating modern quality management tools and techniques into workflows, ensuring the latest technologies and best practices are communicated throughout the team. What youll need Bachelors degree in Civil … Electrical, or Mechanical Engineering, Construction Management or related field. Ideally Chartered or professional registration within any of the following engineering disciplines: Civil, Electrical, Mechanical. LEED AP certification (a plus). Experience: 10+ years of experience in datacenter and/or technically demanding developments focused on Quality Assurance and Control More ❯

what you will be involved in: Identify security requirements and ensure the integration of security controls during the product development lifecycle Develop and implement risk management strategies Perform security threat modelling and risk assessments applying security controls to mitigate any threats identified Collaborate with the development teams … Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) If this all sounds like something More ❯

preferred) Type: Full-Time Salary: £30,000–£35,000 (DOE) About usecure At usecure, we help MSPs and channel partners deliver world-class human risk management solutions to their clients. Our automated platform makes it easy to run effective security awareness training, phishing simulations, policy management and … additional leave City-centre co-working space in Manchester City Centre Join a fast-growing, remote-first company shaping the future of human cyber risk management Be part of a supportive, collaborative team culture where your work truly matters Work closely with an experienced Channel Marketing Manager and More ❯

SC Security Cleared Cyber Assurance Coordinator SME required with proven experience in security assurance and risk management within defence, government, or high-security environments. Suited candidates must have strong knowledge of security frameworks and standards such as RMADS, NIST, DEF STAN, and policies. You will also have experience … with accreditation processes and developing security risk balance cases. Familiarity with codes of connection (CoCo), Secure by Design, and security impact assessments (SIAs). This career opportunity will suit a Security Assurance specialist with a Security/Cyber background and will provide you with broad workload. Responsibilities will include … 1. Documentation & Security SME Advice 2. Security Impact Assessments & Integration 3. Drafting Security Requirements 4. Procurement & Bid Evaluation 5. Accreditation & Risk Management 6. Ensuring Coherence & Interoperability 7. Compliance & Reporting Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will take place next week, so More ❯

to manage client implementation projects for our Pharmacovigilance SaaS solutions. The ideal candidate will be a dynamic client facing services professional with extensive project management experience in the life science technology domain. This is a strategic role requiring deep project management expertise, pharmaceutical domain knowledge, and excellent leadership … skills. Key Responsibilities: Lead end-to-end project management of client software implementations, upgrades, and integrations. Develop and manage project plans, including timelines, budgets, and resource demand, and author project initiation documents. Coordinate cross-functional, global teams to ensure successful project delivery. Serve as the primary point of contact … and costs, ensuring any changes are documented and approved through formal change control processes. Develop and maintain comprehensive project documentation, including project initiation documents, risk management plans, and post-project reviews. Ensure all projects comply with industry regulations, particularly those related to pharmacovigilance and data privacy (e.g. GxP More ❯

SaaS, Cloud or high growth technology companies. Key Responsibilities: Strategic Security Leadership: Define and implement a global security strategy aligned with business goals and risk appetite. Advise executive leadership on threat landscapes, risk posture, and security innovation Security Architecture & Operations: Oversee the design and operation of our global … cloud security infrastructure across AWS, GCP, and/or Azure. Drive robust incident response, threat detection, and remediation processes. Risk Management & Compliance: Lead risk assessments and ensure adherence to international compliance standards (SOC 2, ISO 27001, GDPR, HIPAA, etc.). Establish a robust control environment to support … from the ground up. Team & Vendor Leadership: Build and lead a high-performing, globally distributed security team. Oversee security budgets, tooling, and third-party risk management. Required Qualifications: 10+ years in cybersecurity leadership, including 3–5 years at a senior level within a SaaS or cloud-native environment. Expert More ❯

data processes that drive operational improvements. Collaborate with cross-functional teams to ensure data-related initiatives are properly planned, scheduled, and managed. Participate in risk management and change management processes related to data infrastructure. Participate in quality reviews of designs, prototypes, and other work products to ensure … of data engineering concepts, such as ETL processes, data pipelines, and data quality management. Hands-on experience with SQL (e.g., writing queries, basic database management). Familiarity with data tools and platforms (e.g., Python, Power BI, Tableau, or similar visualization tools). Attention to detail across large data sets More ❯

DefStan 05-138 Issue 3 and DefStan 05-139 Issue 1 . If you're an experienced professional with strong capabilities in threat modelling , risk assessment , and secure systems architecture , we want to hear from you. Role Responsibilities: Integrate security controls throughout the product development lifecycle Conduct detailed threat … modelling and risk assessments using recognised tools Lead the implementation of risk management strategies based on industry best practices (NIST, ISO) Work closely with development teams to ensure secure-by-design principles are followed Identify and propose mitigations for security vulnerabilities in solution architectures Maintain and evolve … Ability to identify, assess and mitigate risks across software and hardware product ecosystems Strong written and verbal communication skills, including the ability to convey risk to non-technical audiences Ideal Candidate Traits: Analytical thinker with strong problem-solving skills Detail-oriented with excellent planning and organisational abilities Resilient, proactive More ❯

design and implementation, across several of the skills and technologies below: Microsoft Defender for Endpoint Microsoft Defender for Office 365 Microsoft Sentinel Tenable Vulnerability Management (Or similar technology) Azure Security understanding Azure update Manager/Other Patching technologies Qualifications: Microsoft Security Certifications (eg SC200) Pen Testing/Related Certifications … be provided if required. Microsoft Intune (Focused on Security, not the full suite) Microsoft Defender for Cloud Apps, Identity Cloud CSPM Suites Privileged Access Management (PAM) Tooling Cloud Email Security Solutions Certs CSTM, Cyber Essentials Assessor KEY COMPETENCIES REQUIRED FOR ROLE In line with our company values every employee … quality, being attentive to detail and willing to try to improve one’s own performance. Understanding and adherence to quality procedures. Decision Taking and Risk Management – Willingness to take difficult decisions and have confidence in your decision making and attitude to risk and impact. Respect Communication – Clarity More ❯

of a technical nature including frameworks such as ISO27001/2:2005/13 &DORA Ownership of Strategic, Operational and Tactical IT Security and Risk Management, technical and legislative mandates Programme/Project management of large and corporate security transformation and change programmes Development of the companies … the area of Enterprise Architecture, GRC and Advisory capabilities Full P&L ownership of Cyber Technology and/or Advisory Practices Programme/Project management of large corporate security transformation/change programmes £140,000 - £160,000 plus significant bonus and benefits EA First Ltd are acting as an More ❯

businesses big and small but most importantly, opened up new avenues of data intelligence for businesses with machine learning, AI and connected data. From risk management through to opportunity identification, our industry-leading solutions, power decisions for companies by turning their data into actionable insights that help them … members. • Develop and implement security policies, processes, and procedures to comply with SOC2 and ISO27001 standards. • Participate in Steering groups for Identity and Access Management and Data Protection • Setting and aligning team objectives and tasks to help achieve the overall Information Security and Compliance function’s strategy and goals … reporting requirements • Coordinate with different teams to ensure the organization’s information security posture is maintained and improved. • Conduct regular Technical Readiness Reviews and risk assessments to identify potential vulnerabilities, risks and implement corrective actions in planned changes to applications, environments, and configurations • Participate in the Request For Information More ❯

About Us: Beazley Security is a global cybersecurity firm committed to helping clients enable advanced cyber defenses that reduce risk with quantifiable results. We’re comprised of top talent from private industry, government, intelligence, and law enforcement who are specialists in threat detection, incident response, digital forensics, offensive security … risk management, and cyber resilience. As a subsidiary of specialty insurance giant, Beazley Insurance, we’ve been at the forefront of cyber insurance management and breach response activities for business clients in the US, UK, and Europe since 2017. As Beazley Security, the company will have an More ❯

About the job About Us: Our client are a dynamic and innovative fintech company specialising in collateral management solutions for the derivatives market. Their cutting-edge technology empowers financial institutions to manage risk, optimise operations, and enhance transparency in the fast-paced trading ecosystem. Based in London, we … to nurture your development and offer new opportunities at every stage. You'll interact with and learn from people across various functions, including relationship management, software development, and product strategy. The work you do will have a direct impact on clients, providing measurable value from day one. What we … degree in a quantitative or analytical field (e.g., Economics, Maths, Finance) from a top university in recent years. Knowledge of derivatives markets, products, and risk management, with a desire to deepen this expertise. A detail-oriented mindset with a curiosity about the 'why' behind your work. Comfort with More ❯

discover why there’s really no place like Principality; https://www.principality.co.uk/careers Our Information Security team are hiring an Information Security Risk & Consulting Lead. Reporting directly to the Information Security Manager, the role will be to provide specialist information security risk management advisory and … Providing first line oversight and challenge of application and secure development change requests. Reviewing and updating information security policies, standards, procedures, governance requirements and risk assessments. Being a Subject Matter Expert (SME) support in relation to the development of, Cloud and Application Security. Reviewing high level and key design … improvements in security within the change process. Providing scoping, and scheduling of Penetration testing, via internal SME’s and External trusted providers. Preparing security risk/impact assessments, reports, measurement indicators (MI), presentations and high-level summaries for key stakeholders. Perform frequent research and attend industry events to maintain More ❯

teams. Facilitate clear and effective communication, coordinate dependencies, provide timely updates, address concerns or issues promptly, and promote collaboration and teamwork. Team Leadership and Management: Lead and manage a global team of technical consultants, including onshore and offshore employees and contractors, by cultivating a positive, collaborative, and resultsoriented work … environment that encourages productivity and support. Stakeholder Management: Engage with technical stakeholders to gather feedback, understand their requirements, and manage expectations. In partnership with the Project Manager, keep them informed about project progress, risks, and any changes in scope by providing or contributing to weekly status reports, using client … specific or standardized templates. Risk Management: Identify and mitigate technical risks, challenges, and potential roadblocks, proactively communicating them to the Project Manager. Collaborate with the technical project team to gather detailed information and explore solution options for addressing these risks. Change Management: Identify potential change orders and More ❯

or CISSP are preferred. Extensive experience with enterprise DLP technologies , including Microsoft Purview, M365, and Proofpoint . Proficiency in DLP policy development and management , with the ability to write, configure, and develop policies to protect sensitive data and ensure regulatory compliance. Familiarity with End-User Behaviour Analytics (EUBA) and … Insider Risk Management processes and tools. Proven experience in analysing and responding to DLP alerts and incidents , collaborating with the Incident Response team for remediation. Strong knowledge of data classification methodologies and associated compliance frameworks. An understanding of security DLP best practices and frameworks, including GDPR, HIPAA , and … non-technical stakeholders. For the DLP Manager role Background in DLP and cloud solutions, and leadership experience 2-3 years in team lead or management roles, including reporting and DLP. Skills Data loss, Prevention, security, Microsoft Purview, Microsoft 365 Why Join This Organisation? This global leading professional services company More ❯

in advancing trade finance strategies and contributing to a growing, dynamic team. Responsibilities : Assess credit for structured trade and commodity finance transactions, focusing on risk identification and mitigation. Enhance portfolio and risk management systems using programming languages like Python and databases such as SQL/MongoDB. Collaborate … with a team with planning to scale their trade finance capital. Qualification : 2–4 years of experience in trade or commodity finance risk, ideally in banking or hedge funds. Strong skills in credit modelling, portfolio optimization, and technical tools like Python and SQL/MongoDB. A proactive, adaptable approach More ❯

a skilled Business Analyst to support a strategic initiative focused on consolidating 14 separate Concur instances into a unified, enterprise-wide travel and expense management system. This role is crucial in gathering and analysing requirements, documenting existing system configurations, collaborating with stakeholders, and supporting both the solution design and … of the target-state design that aligns with business goals. Assist with user acceptance testing (UAT), including data validation and issue resolution. 5. Project & Risk Management Assistance Work alongside the Project Manager to track tasks, identify risks, and produce progress reports. Monitor milestone delivery and flag issues as … documentation, facilitation, and communication skills. Experience working with cross-functional teams across business and IT units. Understanding of Agile and/or Waterfall project management methodologies is preferred. Additional Information Pay rate, up to £500/day rate (Inside IR35) Remote role - please note, we are only accepting candidates More ❯