1 to 25 of 108 Permanent Risk Management Jobs in the South West

diverse personalities, characters, and perspectives. There really is a place for you here. Why Join KPMG as a Manager - IGH GRCS? KPMG's Governance, Risk and Compliance Services (GRCS) practice within IGH is an area of the firm with tremendous growth potential. GRCS is an integral part of our … Enterprise Risk advisory practice. We provide services relating to internal audit, internal control, corporate governance, risk management and related assurance projects. Clients are based in the public sector and our services deliver added value to clients using modern control assessment, risk management and audit techniques … focusing on strategic, management and operational issues as well as financial management and reporting controls. We also work closely with other consulting teams including our colleagues in Technology Risk and Cyber Risk to ensure our clients receive the best possible advice and assurance. What will you More ❯

Risk Lead Exam Technology Location: Cambridge (Hybrid 2 days/week in office) Day Rate: Competitive inside IR35 Duration: 6 months Start Date: ASAP Role Type: Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experienced Risk Lead to shape … and drive a robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As the Risk Lead , you will work across multiple technical and leadership teams, acting as the Risk Champion to ensure non-project IT risk is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such as Ofqual and ISO standards. Key Responsibilities: Design, implement and own Exam Technologys risk management framework, policies and procedures. Identify and mitigate IT risks More ❯

Risk Lead Exam Technology Location:Cambridge (Hybrid 2 days/week in office) Day Rate:Competitive inside IR35 Duration:6 months Start Date:ASAP Role Type:Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experiencedRisk Leadto shape and drive a … robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As theRisk Lead, you will work across multiple technical and leadership teams, acting as theRisk Championto ensure non-project IT risk … is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such asOfqualandISOstandards. Key Responsibilities: Design, implement and own Exam Technologys risk management framework, policies and procedures. Identify and mitigate IT risks in high-stakes assessment products and services. Lead real-time risk assessments More ❯

Risk Lead Exam Technology Location:Cambridge (Hybrid 2 days/week in office) Day Rate:Competitive inside IR35 Duration:6 months Start Date:ASAP Role Type:Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experiencedRisk Leadto shape and drive a … robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As theRisk Lead, you will work across multiple technical and leadership teams, acting as theRisk Championto ensure non-project IT risk … is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such asOfqualandISOstandards. Key Responsibilities: Design, implement and own Exam Technologys risk management framework, policies and procedures. Identify and mitigate IT risks in high-stakes assessment products and services. Lead real-time risk assessments More ❯

allowance, plus up to 10% performance bonus*, plus excellent benefits package. Logiq is a fast-growing Technology Company, providing cutting-edge solutions to high-risk clients across Private and Public Sector. Due to rapid growth in our Security Capability , we are looking for experienced Security Consultants to join our … team. What is Cyber Risk Management? Cyber risk management ensures that organisations can anticipate, withstand, and recover from cyber incidents, aligning security efforts with business objectives, regulatory requirements, and industry best practices. It involves applying risk-based decision-making to ensure security measures are proportionate … MOD’s cyber security transformation to Secure by Design (SbD), we are looking for team members and leaders who share our vision that cyber risk management is driven by business requirements and a holistic view of security that can guide clients to secure solutions that support their business More ❯

Risk Lead Exam Technology Location:Cambridge (Hybrid 2 days/week in office) Day Rate:Competitive inside IR35 Duration:6 months Start Date:ASAP Role Type:Risk Management | IT Governance | Regulatory Compliance Our client, a leading global consultancy, is seeking an experiencedRisk Leadto shape and drive a … robust risk management framework across cutting-edge Exam Technology services. This role is critical in ensuring high-stakes digital assessment products remain secure, compliant, and trusted. As theRisk Lead, you will work across multiple technical and leadership teams, acting as theRisk Championto ensure non-project IT risk … is effectively managed, aligned with corporate governance, and in full compliance with regulatory bodies such asOfqualandISOstandards. Key Responsibilities: Design, implement and own Exam Technologys risk management framework, policies and procedures. Identify and mitigate IT risks in high-stakes assessment products and services. Lead real-time risk assessments More ❯

functions. The first is Enterprise Architecture and Information Technology, which involves delivering IT services, including architecture and business analysis, IT project delivery, IT service management (and the IT service desk), infrastructure services, IT security, and innovation management. The second function is Data, Management Information (MI), and Reporting, which … IT Roadmap that aligns with the Business Plan and business objectives. Delivery of the IT Strategy and Roadmap is a key responsibility, encompassing budget management, talent acquisition, systems and solutions implementation, business engagement, and coordination with relevant third parties. Building strong and effective relationships with business stakeholders is crucial … to gain quality feedback, prioritising requirements, and ensure their effective delivery. You'll be required to develop a strategy and plan for Data & Information Management, Business Insight, and Reporting. Ensuring effective and reliable IT operations for all users, formalised into Service Level Agreements, is essential. Leading the management More ❯

Job Details: 1. Documentation & Security SME Advice Security Documentation Management: Prepare, review, and manage comprehensive security documentation to support project security objectives. Subject Matter Expert (SME) Review: Assess supplier security outputs to ensure alignment with security requirements and best practices. RMADS Management: Collaborate with suppliers to ensure the … Risk Management and Accreditation Document Set (RMADS) is appropriate for the current stage of the programme . 2. Security Impact Assessments & Integration Security Impact Assessments (SIAs): Support the identification, assessment, and mitigation of security risks associated with system changes. Codes of Connection (CoCo): Assist in developing Codes of … compliance with defence security frameworks. Bid Evaluation: Assist in reviewing supplier bids to assess their adherence to security requirements and accreditation standards. 5. Accreditation & Risk Management Accreditation Documentation: Prepare required documentation to achieve accreditation for applications hosted in defence on-premise, cloud, or hybrid environments. Risk Balance More ❯

us to deliver impact how and where it matters most. Connect to your opportunity As a Technical Analyst, you will provide support to Cybersecurity Risk Management team, Security Operations Centre (SOC), Global Event Monitoring Service (GEMS), Deloitte firms and cybersecurity service teams like Firewall Management, IDS/… IPS, Email protection amongst others. In this role you will: Focus on the analysis of Security Incident Event Management (SIEM) data, which includes: Provide Deloitte firms with cybersecurity data. Assist Deloitte Global and Deloitte firms with data extraction for ISO and PCI audit requirements. Support eDiscovery teams by providing … data relating to insider threats and legal matters. Build and maintain PowerBI dashboards. Support the cyber risk management team with data requests to support cyber risk management tasks. Work with and articulate highly complex datasets and analysis concisely. Connect to your skills and professional experience Do More ❯

Overview Expleo is a trusted partner for end-to-end, integrated engineering, quality services, and management consulting for digital transformation. We help businesses harness unrelenting technological change to deliver innovations that provide a competitive advantage and improve everyday life worldwide. As part of the Expleo Digital and Technology (DigiTech … or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases, control matrices, and evidence submissions. Ensure alignment with applicable defence and industry standards and other MOD-aligned frameworks. Engage with engineering … suppliers, and accreditation authorities to support the assurance lifecycle and manage stakeholder expectations. Support the preparation for and participation in technical reviews, audits, and risk acceptance activities. Contribute to delivering security risk management processes, threat modelling sessions, and security design assessments. Provide subject matter expertise on assurance More ❯

Overview Expleo is a trusted partner for end-to-end, integrated engineering, quality services, and management consulting for digital transformation. We help businesses harness unrelenting technological change to deliver innovations that provide a competitive advantage and improve everyday life worldwide. As part of the Expleo Digital and Technology (DigiTech … or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases, control matrices, and evidence submissions. Ensure alignment with applicable defence and industry standards and other MOD-aligned frameworks. Engage with engineering … suppliers, and accreditation authorities to support the assurance lifecycle and manage stakeholder expectations. Support the preparation for and participation in technical reviews, audits, and risk acceptance activities. Contribute to delivering security risk management processes, threat modelling sessions, and security design assessments. Provide subject matter expertise on assurance More ❯

and project documentation along with building and tracking project plans. Key Tasks: • Experience delivering systems from initiation to project close using agile and project management methodologies. • Work alongside CGI directors and clients to manage a variety of project deliveries, CGI members and partners. • Work alongside our agile teams and … client delivery managers to resolve any issues that arise within project delivery using risk tracking and mitigation strategies. • Liaising with appointed project assurance and security representatives to assure the overall direction and integrity of the project. • Adopting and apply appropriate technical and quality strategies and standards. Required qualifications to … be successful in this role • Stakeholder Management • Issue Management • Risk Management • Project Management • Leadership • Desired Competencies: • Change Management • Program Management • Negotiation • Agile • Quality Assurance #LI-UKA Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership More ❯

office, 2 days if living more than 1.5 hours away) We are working with a global client seeking a GRC Analyst to focus on risk management, compliance, and policy. You will be responsible for developing and implementing internal control frameworks and defining policies in line with industry standards … such as NIST and ISO 27001. Collaboration with various business units will be key to reducing risk and ensuring compliance with regulations. Key Responsibilities: Focus on risk management and compliance, including policy and standards development. Map internal controls to industry standards such as NIST and ISO 27001. … define security policies, ensuring alignment with organizational goals. Develop and manage compliance frameworks using Microsoft tools such as SharePoint, Power BI, Power Automate, and Risk Automate. Work closely with security operations, procurement, risk management, and technology teams across various regions. Identify and deliver service/control improvements More ❯

systems, such as EPoS hardware and software. This supports Trading's long-term model and seeks to optimise its contribution through omni-channel, stock management, and measurement & reporting opportunities. The role also focuses on enhancing the broader value of Trading's estate for Cancer Research UK through delivering potential … across Trading, Technology, Finance, Legal/Procurement, Health & Safety, Learning & Development, Human Resources and Internal Comms to support test & trials, rollout delivery and change management, supporting the successful adoption of any new technology across the Trading estate on time, budget and meeting objectives Create and oversee clear Project Management plans, using effective project management disciplines, including Stakeholder Engagement at all levels, Governance, Project Planning, Financial and Risk Management and Measurement & Reporting Ensure Senior Leadership and other key stakeholders are informed and supported well in advance, through key communications, meeting agenda's, minutes and actions management More ❯

Business Unit: Model Risk & Analytics, Risk Salary range: up to £41,000 per annum DOE + red-hot benefits Location : Remote Work from anywhere in the UK Contract Type: Permanent Our team The Risk Data team sits within Model Risk & Analytics (MR&A) we are responsible … as we play a key role in numerous bank-wide projects such as BCBS 239 responsible for the delivery and accuracy of Non-Retail Risk data monitor and validate Risk data to ensure that a wide range of stakeholders can use it with confidence for activities including portfolio … manipulating and validating data to support other business units and fulfil regulatory obligations. Rebuilding, streamlining, and automating existing data processes. Providing SME knowledge for Risk data for numerous bank-wide projects Investigation and resolution of Data Quality Issues (DQIs) within the Bank's numerous data sources and repositories. Designing More ❯

edge products and technology. Key Accountabilities : Identify security requirements and ensure the integration of security controls during the product development lifecycle. Develop and implement risk management strategies using relevant risk assessment frameworks & perform security threat modelling and risk assessments using various threat modelling tools Communicate risk findings and recommendations to stakeholders, including senior management and product teams, while collaborating with the development teams to ensure the adoption of secure by design principles to reduce risk. Identify security risks that arise from potential solution architectures, advising and assuring alternate solutions or counter measures to mitigate … by Design. Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) Why Join? You'll gain More ❯

edge products and technology. Key Accountabilities : Identify security requirements and ensure the integration of security controls during the product development lifecycle. Develop and implement risk management strategies using relevant risk assessment frameworks & perform security threat modelling and risk assessments using various threat modelling tools Communicate risk findings and recommendations to stakeholders, including senior management and product teams, while collaborating with the development teams to ensure the adoption of secure by design principles to reduce risk. Identify security risks that arise from potential solution architectures, advising and assuring alternate solutions or counter measures to mitigate … by Design. Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) Why Join? You'll gain More ❯

AtkinsRéalis is one of the world's leading design, engineering, and project management consultancies. We have the breadth and depth of expertise to respond to the most technically challenging and time critical projects. Protecting the security of our home and of our citizens abroad is one of government's … manage security assurance activities of Defence systems, ensuring compliance with Defence, corporate or regulatory requirements and secure use in operational environments. Perform Cyber Security risk assessments, determining the most cost-effective deployment of security controls and solutions in line with business risk appetite, protecting information assets from loss … services we deliver. What you can bring? Essential: Experience of delivering technical Cyber Security consultancy in multi-disciplined environments. Experience of Information Assurance, including risk assessments, risk management and the deployment of appropriate controls. An excellent communicator, verbal (active listener) and written (able to write concisely). More ❯

nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Job Title: STARA(R) - Enterprise Security Threat and Risk Consultant Location: London - Guildford, Gloucester, London, Manchester, Leeds (Hybrid working) Grade: GG10-GG13 Referral Bonus: £5000 What You'll Be Doing As an Enterprise … Security Threat and Risk Consultant, you will lead and deliver advanced threat and risk assessments across physical, personnel, cyber, and governance domains. Working on mission-critical programmes in government, financial, CNI, and defence, your role will shape how organisations understand and manage threats in the context of a … hybrid threat environment and evolving adversary tactics. You'll collaborate with internal and external stakeholders, advise on strategic risk posture, and ensure delivery of high-impact STARA® engagements. Responsibilities Lead, deliver and support Security Threat and Risk Assessments (STARA®) across ICT, Operational Technology, physical, and personnel security Analyse More ❯

Lead programme delivery, ensuring projects meet time, cost, and performance goals. • Manage multidisciplinary teams and act as the primary liaison with government stakeholders. • Apply risk management, Earned Value Management (EVM), and project governance frameworks. • Oversee commercial negotiations and influence business development strategies. Essential Requirements • Proven experience in … managing complex defence or intelligence programmes. • Strong understanding of UKIC/MoD environments and classified project lifecycles. • Expertise in contract negotiation, risk management, and financial oversight. • Proficiency in EVM, PRINCE2, MSP, or similar methodologies. The Benefits • Salary – Up to £85,000 (DoE) • 4-day workweek option & hybrid working More ❯

overseeing security infrastructure to protect products and systems from security threats. This role ensures security controls are integrated throughout the software development lifecycle, performs risk assessments, and collaborates with stakeholders to mitigate vulnerabilities. The Security Architect will also contribute to security compliance and best practices, ensuring products meet regulatory … and industry standards. The Role Key Responsibilities: Identify security requirements and integrate controls into product development. Conduct risk assessments, threat modeling, and vulnerability analysis. Develop and implement risk management strategies using security frameworks. Collaborate with development teams to ensure security best practices and secure-by-design principles. … across the organization. The Person Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP). Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling More ❯

and accurate record of all contracts and legal documentation, ensuring full compliance with internal record-keeping standards and utilizing the Group’s Contract Lifecycle Management (CLM) system. Strategic Legal Support: Provide legal advice to management on key strategic initiatives, identifying and addressing potential legal challenges early in the … legal and compliance awareness across the business. Enhance or create legal templates, processes, and procedures to improve the efficiency of the legal function. Legal Risk Management: Oversee litigation processes and manage legal risks, ensuring that all relevant matters are addressed with due diligence and in line with the … disciplinary procedures, collective labor relations, immigration issues, and other HR legal concerns. Reporting & Communication: Ensure clear and consistent reporting of legal matters to senior management and the Group Legal Department. Keep stakeholders informed on legal risks and activities, providing regular updates on key legal matters. Other responsibilities related to More ❯

and accurate record of all contracts and legal documentation, ensuring full compliance with internal record-keeping standards and utilizing the Group’s Contract Lifecycle Management (CLM) system. Strategic Legal Support: Provide legal advice to management on key strategic initiatives, identifying and addressing potential legal challenges early in the … legal and compliance awareness across the business. Enhance or create legal templates, processes, and procedures to improve the efficiency of the legal function. Legal Risk Management: Oversee litigation processes and manage legal risks, ensuring that all relevant matters are addressed with due diligence and in line with the … disciplinary procedures, collective labor relations, immigration issues, and other HR legal concerns. Reporting & Communication: Ensure clear and consistent reporting of legal matters to senior management and the Group Legal Department. Keep stakeholders informed on legal risks and activities, providing regular updates on key legal matters. Other responsibilities related to More ❯

of product components and systems—from initial conception to production and ongoing maintenance. Technical Engagement Contribute to technical discussions with teams and support delivery management and technical leads to align solutions with customer requirements. Assist in eliciting requirements from stakeholders to ensure technical solutions meet business objectives. Innovation & Prototyping … employing modern development practices such as Agile or similar approaches. Foster a culture of continuous improvement, where knowledge sharing and experimentation are encouraged. Security & Risk Management Work with security and policy stakeholders to ensure zero trust architectures and risk management practices are integrated throughout the development More ❯

what you will be involved in: Identify security requirements and ensure the integration of security controls during the product development lifecycle Develop and implement risk management strategies Perform security threat modelling and risk assessments applying security controls to mitigate any threats identified Collaborate with the development teams … Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) If this all sounds like something … Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including More ❯