7 of 7 Permanent Risk Assessment Jobs in the South West

plus 28.97% employer pension contributions, hybrid working, flexible hours, and great work life balance. The Enterprise Security Risk Analyst is a senior analytical and leadership role within DWPs Enterprise Security Risk Management (ESRM) function. The postholder leads one of the departments four security risk domains Cyber & Information … Security, Personnel Security, Physical Security, or Supply Chain Security and is responsible for producing high-quality enterprise-level security risk assessments that inform decision-making at the highest levels including Director General Finance, the Executive Team, and Departmental Audit & Risk Assurance Committee (DARAC). This role has evolved ...

transferred electronically must be undertaken with regard to the Trust Information Governance and Information Security policies. The post holder must adhere to the Trust risk assessment and risk management processes. The post holder must adhere to infection control policies and procedures. Undertake mandatory training and any other … required. Ability to work remotely or from hot desk facilities at different sites is essential. General Safeguarding people responsibility Safeguarding children and adults at risk of abuse or neglect is a collective responsibility. There is an expectation that all staff develop and maintain their role relevant safeguarding people competencies ...

with real-world national security impact, while enjoying hybrid working and strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident … systems Operating in regulated, high-assurance, or defence-related environments Working across engineering teams to embed security early in design Producing security architecture artefacts, risk assessments, and design assurance Engaging with stakeholders to translate security risk into business impact Eligibility for SC clearance (or ability to obtain ...

include: Advising and supporting companies, organisations, programmes or projects on all aspects of cyber security Producing formal deliverables such as security policies, operating procedures, risk assessments, security assurance management plans, and audits Liaising and working closely with customers to meet project/programme deadlines Understanding, assessing, and articulating business … information security risk at a technical and business process level Reviewing the effectiveness of existing security controls and proposing proportionate security improvements Supporting business development by developing and managing relationships with existing and new customers Job Requirements: Essential Skills & Experience: Recognised industry cyber security certifications or qualifications (e.g., CISSP ...

processes Collaborate with suppliers and partners on support and project delivery Maintain knowledge base documentation and technical guides Provide technical input, effort estimation and risk assessment Communicate clearly with both technical and non-technical stakeholders Provide regular updates on progress, risks and blockers Ensure delivered solutions are secure ...

. Evaluate performance data to feed into automation operational excellence activity to deliver improvements in efficiency and operability within production. Ownership of site panel risk assessment register, periodic health checks and remedial/improvement actions. Specialist automation support to site improvement initiatives. Utilise specialist skills and systems access ...

remediation and post incident review. Oversee security monitoring, alerting and response processes, working closely with managed service providers where applicable. Conduct and coordinate vulnerability assessment and remediation activities across infrastructure, endpoints, applications and cloud services. Support regulatory, client and internal audits (e.g. ISO 27001), including evidence gathering, control validation … cyber security platforms from multiple vendors. Proven experience working in regulated environments with formal audit and compliance requirements. Strong understanding of cyber security frameworks, risk management and control assurance. Ability to clearly articulate technical security risks to non-technical stakeholders. Highly desired experience: Security operations (SecOps), incident response ...