1 to 25 of 49 Permanent Risk Assessment Jobs in the UK excluding London

Security & Risk Analyst Reporting to: Group Director of Information Security Team: Information Security Location: Hybrid Role Purpose To own AI security and risk at Citation Group. Getting deep into how AI systems, integrations, and agentic workflows are built, connected, and exposed, and ensuring that what gets deployed … thrives on the pace of change, and who wants to build deep expertise in AI security as the field develops. Key Responsibilities Integration Risk Assessment Lead and perform security and risk assessments across all AI use cases, including new tools, workflows, agentic systems, and platform integrations, assessing ...

working practice Experience of working across professional boundaries. To demonstrate a deep understanding of health care. Sound knowledge of EPR functionality including care planning, risk assessment, physical health care Knowledge and experience of quality governance Proven ability to engage effectively with a broad range of multi-professional stakeholders … Experience of translating business requirements into information/system requirements, and producing other documentation associated with the implementation of IT systems; e.g. Business Cases, Risk Assessments, Risk/Issues Logs, Policies, Procedures, Process Maps, Work Plans. Skills and Aptitudes Essential Strong interpersonal and communication skills - both written ...

Description Your role will be to provide second line oversight of IT change risk across the group with a focus on technology transformation and change initiatives. The role will work collaboratively across the 3 lines of defence to challenge, support and provide oversight over the execution of IT change … initiatives. Your responsibilities will include: Deliver an effective second line IT change risk oversight approach, supporting framework and continuous improvement activity. Lead the assessment of programme and IT change risk as the line 2 subject matter expert in IT change, with a focus on technology transformation/ ...

policy and regulatory frameworks Lead technical security design across infrastructure, cloud and application environments Collaborate with SMEs across Identity, Security Testing and Privacy Conduct risk assessments and support threat modelling activities Provide clear justification of design decisions to both technical and non-technical stakeholders Ensure alignment to industry standards … Azure or Google Cloud Understanding of network security, encryption, authentication and access control Experience with security tooling such as SIEM, IDS, firewalls and vulnerability assessment tools Knowledge of threat modelling and risk assessment TO BE CONSIDERED: Please either apply through this advert or emailing me directly ...

safeguarding the integrity of our supply chain and ensuring uninterrupted delivery of essential materials and services. You will have experience in supply chain security, risk assessment, and compliance with MOD and HMG standards, as well as effective communication and stakeholder management skills. Role Requirements : Assess the confidentiality, integrity … requirements, policies, and procedures Provide regular reports to the LCST Programme Security Manager and offer guidance on supply chain security policies, best practices, and risk assessment Develop, review, and update supply chain security policies and procedures. Support the LCST Programme Security Manager by addressing supplier-related security incidents ...

interest in regulatory affairs, chemical compliance, strong communication skills, good people skills, drive, desire to succeed. VRS Regulatory is the Regulatory Affairs and Risk Assessment division of specialist scientific recruiter VRS. We focus on recruitment in Regulatory Affairs, Registrations, REACH, CLP, SDS Authoring, Product Safety, Compliance, Risk Assessment, Regulatory Toxicology, Regulatory Ecotoxicology and Environmental Fate in the chemicals, agrochemicals and biocides sectors. ...

Security Manager (Banking) The Skills You'll Need: Fluent in Mandarin and English, with working experience in Information Security/Cyber Security/IT Risk Management Your New Salary: Competitive depending on experience Location: Central London Job Status: Permanent, office based Summary: The Information Security Manager is responsible … governance, UK regulatory requirements, and industry best practices. Operating as a “1.5 Line of Defence” within the IT function, the role provides independent security risk oversight, challenges the effectiveness of IT security controls, and supports regulatory compliance and operational resilience. Information Security Manager - What You'll be Doing Each ...

Fixed term contract role Role Overview We are seeking a Senior Security Design Consultant to provide expert cyber security consultancy, security design assurance and risk-based guidance across business and technology change. The role is responsible for assessing new and amended services, applications, cloud platforms and third-party solutions … ensure security risks are understood, controlled and aligned to organisational risk appetite, regulatory obligations and industry best practice. Key Responsibilities Lead security design reviews, threat modelling and risk assessments for applications, infrastructure, cloud services and third-party solutions. Define and recommend proportionate security controls, patterns and design guardrails ...

assurance requirements Collaborate with stakeholders to develop secure architectures and security-by-design solutions Identify and implement proportionate security controls that deliver effective risk reduction Produce high-quality technical security documentation and assurance artefacts Support security investigations, meetings, and occasional customer site visits Conduct security risk assessments … support accreditation activities within the UK defence domain Ensure compliance with frameworks such as the NIST Risk Management Framework (RMF) and NIST Cyber Security Framework (CSF) Plan, coordinate, or participate in CHECK/penetration testing activities Maintain awareness of emerging cyber security threats, trends, and best practices Essential Skills ...

regulatory compliance across both IT and service provider network environments. The role requires a strong blend of strategic leadership, technical cyber security expertise, operational risk management and telecommunicatio ns network security knowledge. The Security Manager will work closely with Network Engineering, Systems, NOC, Infrastructure, Field Operations and third-party … regulatory requirements. Ensure the confidentiality, integrity and availability of systems, data and network services across the organisation. Maintain ownership of the cyber security risk register, ensuring risks are identified, assessed, tracked and mitigated appropriately. Conduct regular security risk assessments, threat modelling and security posture reviews. Ensure compliance with ...

shaping and leading our information security capability across the business. This is a high-impact, customer-facing role where youll provide expert security, governance, risk and compliance advice to stakeholders and senior leadership, while helping us continuously strengthen our security posture. Youll join a forward-thinking organisation where information … corporate-level information security policies, standards and controls Oversee security architecture and engineering activities, ensuring security is built in by design Lead and support risk assessments, audits and certification activities, including ISO 27001, driving corrective actions where required Work closely with the SOC on cyber security incidents and investigations ...

with engineering teams, bid teams, customer stakeholders, internal cyber assurers and MOD-related security groups to ensure secure-by-design delivery, robust threat and risk assessment, effective security requirements management, and the production of cybersecurity artefacts required to support accreditation and assurance. Responsibilities Provide cyber engineering expertise across … maintain cyber engineering plans for projects and bids, including activities, artefacts, assumptions, dependencies and delivery effort. Generate, iterate and maintain threat models and cyber risk assessments throughout the project lifecycle, using appropriate frameworks and methods such as NIST RMF. Identify and define proportionate risk treatments by applying suitable ...

highly regulated environment, with a growing reliance on technology to support critical operations and transformation activity. The business continues to strengthen its technology risk and assurance capability, providing strong visibility and influence for audit professionals with IT expertise. Description Plan and deliver end-to-end IT audits, from scoping … risk assessment through to testing, analysis and reporting. Independently assess the design and operating effectiveness of IT general controls, including change management, user access management, technology resilience and disaster recovery. Provide assurance over major transformation programmes and significant technology projects. Play a key role in shaping and delivering ...

automation, capacity planning and monitoring tools including introducing such tooling. Threat Landscape: Deep understanding of common networking attack vectors and defense-in-depth strategies. Risk & Compliance: Board understanding of risk assessment methodologies, control frameworks (ISO 27001, NIST CSF, CIS Controls). SKILLS Analytical & Detail-Oriented: Keen … anomalies; precise documentation and follow-through. Communication: Clear written and verbal communicationtranslating technical detail into business-friendly risk insights. Collaboration: Works well with Infrastructure, Application, and Business teams; influences without authority. Self-Motivation: Proactive ownership; drives tasks to completion with minimal supervision. Process Discipline: Organizes workload, meets deadlines ...

Requirement 4 Provide security assurance support for complex programmes, service transitions, and higher-classification environments in line with SoR Requirement 1 Contribute to risk management activities, including RAID logs and programme risk registers Coordinate Security Improvement Plans and support the implementation of security controls Engage with programme teams … Assist in maintaining consistent assurance practices across multiple workstreams and programmes Relevant Experience Minimum 5 years' experience in security assurance, cyber security governance, or risk management roles Strong understanding of: JSP453 JSP440 DEFSTAN 05-138 Experience working within Defence environments or programmes Demonstrable experience supporting security assurance activities within ...

seeking a Cyber GRC Administrator to join its growing cyber security function. This opportunity is suited to someone with experience in Cyber Security, Governance, Risk & Compliance, IT Audit, or Information Assurance who is looking to develop their career in a broad and varied GRC role. The Role … support the organisation's cyber governance and compliance activities, helping to maintain security controls, manage risk, coordinate audits, and ensure ongoing compliance with industry standards and regulatory requirements. Key Responsibilities Support the day-to-day operation of cyber governance and compliance processes. Assist with internal audits and monitor remediation ...

expand, including the use of common tooling that will facilitate the tracking and reporting of assurance actions. We are also developing NIST compliant risk assessment methodology and tooling that is raising our quality and customer confidence, you will be part of these developments. The role in PITSM … cleared or Candidates should be willing to undergo DV Clearance. Experience in delivering accredited security solutions in sensitive government scenarios Essential Skills & Experience Risk & Assurance Strong grasp of Confidentiality, Integrity, Availability & Safety (CIA+S), with practical risk management experience Experience in assurance processes for secure/sensitive systems using ...

access to senior leadership for those who earn it. The Opportunity A newly created senior role with genuine scope. As Head of Business Continuity, Risk, Compliance and Resilience, you will build and lead an integrated framework covering operational resilience, IT risk, supplier assurance and crisis management. This … shaping the strategy. You will report into the senior IT leadership team and have direct Board exposure through regular reporting to the Audit & Risk Committee. Key Responsibilities Business Continuity & Resilience Own and continually improve the Business Continuity Management (BCM) framework Design and run disaster recovery simulations and resilience exercises ...

cyber security with the product development teams to ensure cyber security and privacy is being designed into products Represent cybersecurity and privacy in the Risk Assessment as a subject matter expert including: cybersecurity threat management process continuous technical analysis and monitoring of cyber security signals Lead customer cybersecurity … years of Cybersecurity and Privacy Compliance 5-10 years of Cloud Security Experience (AWS preferred) 5 years experience leading product cyber security projects and risk management activities in medical device or healthcare domain (preferred) Experience in cross-functional cyber security activities including Product Defense in Depth, security technology, regulatory ...

Join our Credit Underwriting team The credit underwriting team is a business critical, growing, and dynamic team led by the Head of Credit & Commercial risk who reports into the Group Financial Controller. The team work closely with the sales team, financial reporting, and various areas of business operations. … numerate underwriter will work closely with our finance and sales teams as well as external stakeholders, insurance brokers and customers alike, to maintain credit risk controls within an existing framework and provide a unique service to our customers. As a Credit Underwriting Manager, you'll be responsible for: Analyse ...

Join our Credit Underwriting team The credit underwriting team is a business critical, growing, and dynamic team led by the Head of Credit & Commercial risk who reports into the Group Financial Controller. The team work closely with the sales team, financial reporting, and various areas of business operations. … numerate underwriter will work closely with our finance and sales teams as well as external stakeholders, insurance brokers and customers alike, to maintain credit risk controls within an existing framework and provide a unique service to our customers. As a Credit Underwriting Manager, you'll be responsible for: Analyse ...

/Corsham access would be ideal. Key experience areas include: Security Architecture Secure by Design NCSC CAF/NIST/ISO27001 Threat modelling and risk assessment Cloud Security (AWS/Azure/GCP) Security assurance and accreditation activities Defence or wider Public Sector environments Strong stakeholder engagement ...

meet customer requirements. Anticipating that systems will be attacked or misused, Project Security features 2 key areas; Minimising cyber-attack vulnerabilities Minimising the risk of abuse/exploitation What you’ll do Routine : Undertake Project Security risk analysis Ensure project Security deliverables and processes are developed and delivered … series. Experience in delivering project documentation using SbD principles. Experience in Security/Information Assurance e.g. CESG Good Practice Guides. Experience in Security risk assessment e.g. NCSC methodology Commitment to quality, performance and cost, delivering on-time to the highest standard. A collaborative team player. The ability ...

some of the NHS's most interconnected clinical systems, spanning GP IT, pharmacy platforms, national infrastructure, and third-party integrations. Understanding where clinical risk emerges across these systems, and how national standards translate into real-world delivery, is central to this work. Rather than building systems directly … Clinical Lead, you will provide a senior clinical voice across multidisciplinary teams, lead Clinical Informaticians, oversee national programmes, and advise on digital risk, with clinical safety and assurance at the core. We are looking for experienced Clinical Safety Officers with a strong background in digital clinical safety, assurance ...

delivery of secure, compliant, and high-quality services to customers including customers in the financial services sector. This role oversees supplier performance, contractual obligations, risk management, and continuous improvement, acting as a trusted advisor to internal stakeholders and ensuring supplier operations meet stringent regulatory and governance standards. Key Responsibilities … contractual obligations, proactively identifying risks and opportunities Conduct regular supplier reviews and audits, ensuring adherence to sector-specific standards and continuous improvement Manage supplier risk assessments, due diligence, and remediation activities Collaborate with procurement, legal, and business units to ensure supplier agreements support business continuity and strategic goals Maintain ...