1 to 25 of 26 Permanent Risk Register Jobs in the South East

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations security posture is … alignment with security industry standards such as NIST CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and … provide evaluation and treatment options, consultation on remediation approaches to address gaps and continue ongoing monitoring of remediation, re-assess until reduced to an acceptable level. Supporting Cybersecurity Risk Management strategies based on security findings and observations. Including informing improvements to organizational cybersecurity risk management processes, procedures and activities are identified across all security functions Profile and assign More ❯

Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the business … Proficiency with Atlassian suite (JIRA, Confluence) Advanced Microsoft Office skills including MS Project Experience creating comprehensive project plans and technical delivery documentation Strong strategic planning and organisational capabilities Advanced risk management and escalation skills Team leadership and staff motivation experience Budget management and resource allocation expertise Adaptability and innovative problem-solving abilities Exceptional time management with consistent delivery to More ❯

Role Overview We're looking for an experienced Senior Cyber Risk Analyst to join a purpose-driven organisation on a part-time basis . In this role, you'll take the lead in strengthening the organisation's security posture by driving forward incident response, vulnerability management, and compliance initiatives. You'll be a key player in embedding security best … Work 7-hour days, 3 days a week Act as a trusted advisor on information security matters, supporting projects, solution development, and change initiatives with expert guidance. Perform regular risk evaluations to uncover and address potential security gaps. Lead the end-to-end management of security incidents, ensuring swift and effective resolution. Design and deliver engaging training sessions to … Essentials Plus, ISO 27001, and PCI DSS. What you'll need to succeed Willingness to work 7-hour days, 3 days a week Demonstrated expertise in conducting technical security risk assessments and developing threat models. Comprehensive knowledge of core cybersecurity domains, including network, endpoint, and cloud security. Skilled at translating technical vulnerabilities into business-relevant language for diverse audiences. More ❯

such as malware infections, phishing attempts, denial-of-service attacks, data breaches, etc. Liaise with stakeholders in relation to cyber security issues and provide recommendations. Maintain an information security risk register and assist with internal and external audits relating to information security. Conducting security awareness training and education for staff and users on best practices and emerging trends … in cyber security. Use vulnerability management to improve Infinigate’s security landscape. Performing risk assessments and vulnerability scans to identify and mitigate potential threats to the network, devices, applications, and data. Complete security audits of company solutions. Implementing and maintaining security policies, standards, procedures, and best practices to ensure compliance with regulatory and industry requirements. Researching and evaluating new More ❯

stakeholders across the business, managing multiple projects and driving efficiencies through innovative technology solutions. Key Responsibilities: Lead and manage full lifecycle software implementation projects. Develop and maintain project plans, risk registers, and stakeholder communications. Ensure projects are delivered on time, within scope, and budget. Liaise with internal teams, external vendors, and clients to align project goals. Identify and mitigate More ❯

Lead and manage the full lifecycle of IT projects, from initiation and planning through to execution, monitoring, controlling, and closure. Develop and maintain comprehensive project documentation, including project plans, risk registers, issue logs, and progress reports. Effectively manage project budgets, timelines, resources, and scope, ensuring projects are delivered on time and within budget. Build and maintain strong relationships with More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procerdures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements , including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register , prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

councils response to critical cyber incidents, coordinating resolution efforts and informing senior stakeholders. Collaborate with security architects and technical teams to shape and implement cyber security policies, ensuring theyre risk-appropriate and business-friendly. Manage cyber security risks by embedding them into the corporate risk register and advising on appropriate mitigation strategies. Oversee the planning and execution … thinking with a focus on continuous improvement, service excellence, and innovation. Experience managing teams (of varying experience, including apprentices), budgets and suppliers, and working in a high-profile, high-risk environment. Why Join ECC? At ECC, youll be part of a collaborative and ambitious organisation that values creativity, innovation, and excellence. Youll have the opportunity to make a real More ❯

Cleared role, Candidates must hold a current DV level security clearance Overview As Cyber Security Assurance Consultant/IA Consultant is part of the Security Assurance Team (SAT), providing risk management and assurance of programme artefacts. The roles principally includes security manager on programmes of work collaborating across enterprises to produce end-to-end security solutions. Additional roles will … and Features aligned with the relevant Legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master . Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities . Liaise with Testers, Security Architects and Engineers to ensure smooth assurance process and timely delivery of contribution to assurance cases. … CoCo, RAR, SSP, POAM, OSMP (including SyOps). . Where delivery priorities permit, support the provision of Authority services when Authority is unable to provide such services . Propose Risk Register entries to the Security Lead or Security Assurance Lead as required to agree areas of residual risk with the Authority . Escalate relevant security issues via More ❯

A leading financial services firm is looking for a Senior GRC Associate to help develop and maintain its IT Governance, Risk & Compliance framework. Key Responsibilities: Support IT risk assessments and control compliance activities Maintain risk registers and GRC documentation Assist with internal governance reviews and formal reporting Work with IT teams and third-party providers on GRC … 5+ years’ experience in IT GRC or Information Security Knowledge of ISO 27001, NIST, and (ideally) DORA Strong analytical, communication, and stakeholder engagement skills Experience with IT infrastructure risk and control assessments This is a great opportunity to join a well-established and forward-thinking team, where you'll be empowered to make a real impact on IT risk More ❯

modelling or analysis Role model best practice, with focuses on efficiency and long term success Monitor the latest techniques and solutions being utilised in the wider industry Maintain departmental risk registers providing evidence and commentary for controls, updates for Mitigation Actions and maintaining control matrices and attestations. Comply with the requirements, and act in accordance with, the Group Code More ❯

effective implementation of that strategy to meet company requirements Maintain an ethically sound workplace culture of inclusivity, openness, ownership, collaboration, ambition, innovation, agility, and respect Responsibility for maintaining department risk registers (as applicable), providing evidence and commentary for controls, updates for Mitigation Actions and maintaining control matrices and attestations. Also, to ensure that your employees are aware of their More ❯

and maintain Power BI dashboards to deliver insights on office occupancy, forecasts, and time recording. Create productivity tools using Power Apps to replace legacy systems. Coordinate the quarterly corporate risk review: chair working-level meetings, challenge risk scoring, ensure directorates update risk registers, maintain the corporate risk register in Power BI, and escalate top risks More ❯

are communicated to relevant Departments and appropriate resources can be allocated and efficiently managed so that work is completed in accordance with the Programme. To develop and maintain a risk register To monitor and control cost of assigned projects To communicate and co-ordinate the flow of data and relevant information between all parties. To produce progress reports … engineering disciplines (design/test/manufacturing) Extensive experience of presentation design, development and delivery including customer facing Some experience of multi-faceted, externally facing negotiations Some experience in Risk Management techniques and their application Broad experience of managing customer interface Relationship building/interpersonal skills Thorough communication written, oral and presentation skills Thorough planning, organising and administration skill More ❯

s IT, Telecoms & Hardware. You will be required to manage specialist IT 3 rd service partners/consultants. The role involves having a strong focus on IT security, managing risk, and remaining compliant (CE/DRP/ISO). Roles & Responsibilities: Stay up to date with innovative IT solutions and identify opportunities for improvements in business and IT operations. … Ensure proactive measures are in place to protect against cyber threats and IT risks, maintaining an up-to-date IT risk register and implementing appropriate mitigation strategies. Support the creation and administration of IT Disaster Recovery (DRP) and Business Continuity Plans (BCP) to ensure operational resilience in the event of a crisis. Oversee the Change Management process to More ❯

management of the finance function and IT infrastructure. Oversee the delivery of an IT transformation project, including cloud migration using Microsoft ecosystems (365, Dynamics, Azure). Manage financial reporting, risk registers, compliance, budgeting, and KPI dashboards. Lead a small finance team and manage relationships with key external suppliers, including IT and legal. Support the CEO, including attendance at board … charity settings. Experience in delivering complex IT transformation projects and managing accounting system migrations. Familiarity with project management methodologies (e.g. PRINCE2, Agile). Strong commercial acumen, supplier management, and risk handling capabilities. Desirable Experience: Background in the UK charity or non-profit sector. Experience with property and lease management. Understanding of government grant administration and fundraising processes. Proficiency with More ❯

senior leadership and DTS teams to identify and address emerging threats. Represent the organisation in external networks and vendor relationships to share best practices and influence product development. Governance, Risk & Compliance Ensure technical security risks are documented and managed within the risk register. Own and manage services/processes in line with ITSM best practices. Maintain and review More ❯

milestones. The Deputy Implementation Manager will: • Lead and manage all Agile elements of the contract • Confirm scope, produce forecasts, and ensure accuracy of reporting data for billing • Own the risk management process and escalate critical risks to the wider Programme Lead • Provide management oversight across testing, security, and service-delivery workstreams • Track and report progress, both internally and to … as the on-site escalation point for CGI work-stream leads and Authority stakeholders • Deputise for the Programme Lead, ensuring continuous representation and on-site presence Key Duties & Responsibilities • Risk Management & Mitigation: Maintain the risk register, drive mitigations, and flag critical issues • Progress Tracking: Monitor and report progress against Fixed-Price and Time & Materials deliverables • Resource Management … qualifications to be successful in this role • Proven experience managing Agile programmes in a client-facing environment • Strong track record of overseeing Fixed-Price and T&M deliverables • Excellent risk-management skills with the ability to escalate and communicate effectively • Demonstrable leadership in coordinating cross-functional workstreams (testing, security, service delivery) • Exceptional stakeholder-management and communication abilities Why Join More ❯

Group bank account administrator, overseeing access control and banking operations. Manage the Group’s annual insurance renewal process, ensuring adequate coverage and cost-effectiveness. Maintain ownership of the finance risk register and Business Continuity Plan, mitigating financial and operational risks. Ensure the Group Finance Manual is regularly updated, accessible, and aligned with current policies and procedures. Conduct monthly More ❯

as Group bank account administrator, overseeing access control and banking operations. Manage the Groups annual insurance renewal process, ensuring adequate coverage and cost-effectiveness. Maintain ownership of the finance risk register and Business Continuity Plan, mitigating financial and operational risks. Ensure the Group Finance Manual is regularly updated, accessible, and aligned with current policies and procedures. Conduct monthly More ❯

Technology, Data & Security Reporting To: Senior Assurance Manager Overview A leading organisation operating in a regulated environment is looking for an Assurance Analyst to support the development of its risk and assurance capabilities within Technology, Data & Security (TD&S). This hybrid role is central to ensuring effective risk oversight and regulatory compliance, with approximately 50% of the … role dedicated to risk management activities . Key Responsibilities Support the implementation and maintenance of risk, assurance, and compliance frameworks across TD&S. Ensure the maintenance of Risk Registers, proactively working with departments in identifying new risks. Track emerging risks which may become operational risks. Conduct control self-assessments and support assurance activities across critical technology domains. … Provide clear and concise reporting to senior stakeholders and governance committees. Interpret complex risk and regulatory information and communicate it effectively to diverse stakeholders. Monitor compliance with internal policies, licence conditions, and regulatory obligations. Promote a culture of accountability, integrity, and proactive risk management. Essential Skills & Experience: Strong experience in risk management, audit, assurance, or compliance. Ideally More ❯

and global teams. Key Responsibilities: Lead commercial modelling for complex domestic and international client opportunities, ensuring profitability and alignment with strategic goals Develop and maintain innovative pricing models, including risk/reward, utility-based, and gain-share frameworks Create and manage contract P&Ls, ensuring financial sustainability over the contract lifecycle Produce asset financing requests, risk registers, client … governance processes and obtain relevant approvals Present commercial solutions to internal leadership including country and regional boards Advise on transactional structures, cross-border tax implications, logistics, and foreign exchange risk Collaborate with legal and procurement teams to secure favourable terms with clients and vendors Act as the commercial point of contact for key client opportunities, attending client meetings as More ❯

place and monitored monthly for the successful commercial delivery of the project Produce and analyse progress reports, updated costs, and forecasts Ensure correct commercial engagement of subcontractors Implement the risk management process, review risk registers and check risk controls Review the CVRs monthly with the project teams, implementing necessary actions. Complete and distribute the Contract Initiation/ More ❯

Framework (ICF): The IT Department operates circa 80 Internal Controls over Financial Reporting. The role includes monitoring compliance for ICF controls in order to flag controls that are at risk of failing earlier, documenting operating procedures for ICF controls in order to be used as reference documents for the teams and auditors. Testing of control operation in line with … the bank’s ICF testing methodology. Risk Register: Raising issues related to non-compliant controls in the banks Risk Register system, agreeing remediation actions with owners and monitoring progress of remediation. SWIFT CSP attestation: Assistance in gathering evidence and testing of controls in support the annual SWIFT CSP compliance assessment. Audit: assisting the external audit process … order to ensure timely remediation of any failures. Completion of control testing to validate compliance in line with the ICF testing methodology Assist in documenting control deficiency waivers and risk acceptances where required in line with the existing risk acceptance procedures. Update the IT Risk Register, liaise with issue and action owners in order to ensure More ❯

Review and guide commissioning plans, ensuring alignment with overall project milestones. Foster a proactive, delivery-focused team culture with a strong emphasis on accountability and ownership. Track project KPIs, risk registers, and commercial performance, ensuring operational and commercial teams work in close alignment. Provide regular leadership updates during visits to head office and site. Maintain strong relationships with clients More ❯