1 to 25 of 742 Permanent Risk Management Jobs in the UK excluding London

have experience with: Basic/Essential Qualifications: Proven track record of stakeholder management. Proven ability to deliver timely high quality analytical work in a relatively unsupervised environment. Technical and management experience (operational leadership or within an audit/control function) covering Technology Infrastructure, Cyber Security or Resilience. Experience of one or more of the following areas: cloud technologies, incident … response, vulnerability management, threat management, information risk management, data leakage protection, identity & access management, technology areas includes Unix/Linux, Windows, Databases, or Middleware storage technologies or Networks. Additionally, ITIL service management processes including Incident, Problem and Change, Data Backup and Recovery. Knowledge of new and emerging technology, cyber security, and resilience risks and … to communicate effectively to senior technical specialists and senior non-technical individuals. Desirable skillsets/good to have: Operational or audit experience of performing technology, cyber security or resilience risk and control assessments. Financial services industry knowledge. Exposure to and background knowledge of IT Architecture. Programme/Project delivery experience (including: agile, waterfall and SDLC) or exposure to auditing More ❯

the development and delivery of HMTs IT and Digital strategy, aligned to organisational goals. Drive innovation and transformation across services, enhancing efficiency, customer experience, and digital capability. Oversee the management of IT infrastructure, cloud services, enterprise applications, and cybersecurity frameworks. Ensure compliance with regulatory standards (e.g., GDPR, ISO 27001, Cyber Essentials+) and proactively manage cyber risks. Lead digital programmes … effectiveness and value for money. Act as a key member of the Senior Leadership Team, influencing strategic decisions and leading change across the organisation. About us At the Healthcare Management Trust, we are obsessed with achieving our Vision, to be the most innovative and best quality provider of niche health and social care services. Our Purpose is, to make … transformation initiatives to enhance customer experience, service delivery, and internal efficiency. Serve as a key member of the Senior Leadership Team, advising on technology trends and opportunities. Strong stakeholder management and influencing skills along with strategic and commercial acumen Analytical and problem-solving mindset Resilience and ability to drive change Technology and Infrastructure Management Oversee the management More ❯

MCS Group is seeking a Cyber Security Third Party Risk Management Lead to join their client, a thriving and well-established organisation with headquarters in Dublin. This position is a 12 month Fixed Term Contract into permanency as is standard in the organisation. With multiple projects in the pipeline and a growing team, this is a fantastic opportunity … for an experienced Risk Management professional to join a successful team in a newly created position. The Third-Party Risk Management (TPRM) Lead will be responsible for designing, implementing, and overseeing a robust third-party risk management programme. This role ensures that all external vendors, suppliers, and partners align with the organisation's security … compliance, and operational risk standards. Working closely with teams across procurement, legal, IT, the cyber team, and other business units, the TPRM Lead will assess, monitor, and mitigate third-party risks. This position is part of a growing risk management function, playing a key role in safeguarding the organisation against external threats. The successful candidate will be More ❯

Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT, cross-functional teams, and third-party … partners. Key qualifications include experience in cybersecurity and compliance, strong knowledge of NIST and ISO standards, risk management expertise, and effective communication skills. This is a full-time role based in Dudley, UK, with travel up to 30% of the time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences … related field; a Master's degree is preferred. At least 7-10 years of experience in information security, specifically within security operations, with proven experience in a leadership or management role. Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CISA (Certified Information Systems Auditor) are highly desirable. Strong knowledge of security More ❯

with the company's goals. Lead capture efforts for strategic opportunities, guiding the team through the full lifecycle of the pursuit process, including qualification, proposal development, pricing strategy, and risk management. Work closely with proposal teams to create comprehensive, compelling, and compliant proposals that align with client requirements and showcase the company's value proposition. Coordinate and communicate with … a must. Bachelor's degree in Business Administration, Engineering, or a related field. MBA or equivalent advanced degree preferred. Minimum of 12 years of experience in business development, capture management, or sales within the Aerospace, Government and Defense sectors. Proven track record of leading and managing complex capture efforts for government and commercial contracts. Deep understanding of regional Acquisition … evaluating business opportunities and risks. Excellent organizational skills and attention to detail, with the ability to manage multiple tasks simultaneously. Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint), proposal management tools, and CRM tools (e.g., Salesforce). Preferred Qualifications Experience in strategic business development or capture management in key areas such as unmanned systems, cybersecurity, avionics, or aerospace More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. Demonstrate … familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. Demonstrate … familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. Demonstrate … familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

on the portfolio of IT projects, ensuring that they are delivered on time, within scope, and within budget. The ideal candidate will have a strong background in IT project management, excellent organisational skills, and the ability to communicate effectively with stakeholders at all levels. Key Responsibilities Project Management:Lead the planning, execution, and delivery of IT projects, ensuring … they meet the defined objectives and deliverables. Develop detailed project plans, including timelines, milestones, and resource allocation. Portfolio Management:Manage and coordinate the portfolio of IT projects, ensuring alignment with the organisation's strategic goals. Monitor and report on the status of projects within the portfolio, identifying and addressing any risks or issues. Stakeholder Engagement:Work closely with business … stakeholders, IT teams, and external vendors to ensure successful project delivery. Facilitate communication and collaboration among project teams and stakeholders. Resource Management:Allocate and manage resources effectively to ensure project success. Identify and address any resource constraints or conflicts. Risk Management:Identify, assess, and mitigate project risks. Develop and implement risk management plans to ensure More ❯

with major financial services clients. The role offers excellent career progression within a fast-growing FinTech environment. Our client particularly values professionals who combine technical expertise with outstanding stakeholder management skills. You'll be joining a team that's genuinely passionate about technology and committed to delivering exceptional results for their blue-chip client base. What You'll Be … Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the … financial services environments Strong technical understanding with ability to engage effectively with development teams Excellent communication and relationship-building skills Demonstrable experience in client-facing roles with external stakeholder management Complete project lifecycle experience from initiation through to go-live Solid grounding in Agile methodologies and tools such as Azure DevOps Outstanding organisational abilities with proven capability to manage More ❯

with major financial services clients. The role offers excellent career progression within a fast-growing FinTech environment. Our client particularly values professionals who combine technical expertise with outstanding stakeholder management skills. You'll be joining a team that's genuinely passionate about technology and committed to delivering exceptional results for their blue-chip client base. What You'll Be … Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the … financial services environments Strong technical understanding with ability to engage effectively with development teams Excellent communication and relationship-building skills Demonstrable experience in client-facing roles with external stakeholder management Complete project lifecycle experience from initiation through to go-live Solid grounding in Agile methodologies and tools such as Azure DevOps Outstanding organisational abilities with proven capability to manage More ❯

Job Purpose This post will provide strategic and operational project management to drive the development and delivery of the new Trusted Research Environment (TRE) at the University of Glasgow, and in partnership with NHS Greater Glasgow and Clyde. The postholder will ensure the TRE is aligned with governance and AI/ML workflows, to achieve key milestones across academic … foundational workflows for integration into national health research infrastructure. 4. To play a key role to ensure all TRE activities adhere to ISO, NHS, and university data governance. Oversee risk assessments, ethics approvals, and data protection compliance. 5.Responsible for monitoring project budgets, track spending, ensure efficient use of resources, and support in the preparation of funding reports and business … delivery challenges, embedding lessons learned into ongoing development and operations whilst ensuring compliance with quality standards and relevant legislation, policies, and best practices. 11.Ensure that there are appropriate quality management processes in place to ensure that the deliverables comply with stakeholder requirements, appropriate legislation, University policies and procedures and industry best practice. 12.Undertake any other reasonable duties appropriate to More ❯

experience helping organisations solve their complex business issues from strategy to execution across different industries and technology solutions such as Manufacturing 4.0, IoT, consumer goods, healthcare, agrifoods, and identity management, in one or more of the following areas: Assist clients with the development and implementation of technology and digital strategies, and the delivery of Enterprise Architecture services and tool. … growth of the practice through development of relevant industry and technology Thought Leadership material. Coach and mentor team members and provide performance feedback. Ensure compliance to EY quality and risk management processes across projects and other interactions. Preparation of bids/tenders and take lead on key elements of response. Skills and attributes for success To qualify for … System Implementation and Agile Software Development. Subject Matter Expert (SME)/proficient in at least one Enterprise Architecture Domain (Applications, Data, Infrastructure, Security, Integration). Experience in leadership/management roles including project management and managing teams. Ideally, you will also have: Experience within any of the following industries/sectors: Manufacturing, Retail and Consumer goods, Healthcare, Agri More ❯

Join our Cyber Security Team as a Governance, Risk and Compliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment … dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help identify … and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to reporting on the ISMS performance and improvement plans Support continual improvement initiatives and track progress Keep up to date with key trends and changes in information security and ISO standards Help maintain and update More ❯

functions to embed secure-by-design principles, assess cyber workforce requirements, and lead the development of governance policies and controls. Responsibilities Design and implement effective cyber governance structures and risk management processes. Develop organisational models that strengthen governance and streamline cybersecurity operations. Collaborate with multi-disciplinary teams to embed cybersecurity into governance frameworks, considering people, process, and technology. … or organisational goals. Build alignment with executive stakeholders, board members, and external partners to ensure accountability and clear decision-making processes. Qualifications A proven track record in leading cybersecurity risk and governance transformations in complex or government/defence environments. Deep knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001, CIS Controls) and regulatory obligations. Experience designing and implementing cybersecurity … engagement skills Demonstrated ability to manage concurrent projects and priorities under tight deadlines. A passion for innovation and continuous learning in cybersecurity. Preferred Qualifications Degree in Cybersecurity, Information Technology, Risk Management, or related field. Professional certifications: CISSP, CISM, CRISC (or equivalent experience). Minimum 10 years' experience in cybersecurity transformation, ideally in a defence or maritime context. UK More ❯

spam filtering, software patching, and intrusion detection and prevention. The analyst enforces information security policies and supports their integration across systems, applications, and user practices. The analyst will conduct risk assessments to evaluate the potential impact of security threats to data and institutional reputation, investigate incidents and recommend remediation strategies, and ensure compliance with security standards, relevant policies, and … with organizational security and operational requirements. •Manage, monitor, analyze, and report on network firewalls, intrusion prevention systems, web security, email security, virtual private network (VPN), security information and event management (SIEM) platforms (e.g., FortiAnalyzer), log monitoring, and Multi-Factor Authentication (MFA). This includes managing custom threat intelligence feeds and correlation logic within SIEM tool. •Monitor and restrict access … degree in a technology-related field preferred, or an equivalent combination of education and experience. •Minimum of two years of experience in Information Security with demonstrated knowledge of IT risk management in a modern environment is required. •Familiarity with common enterprise systems, security tools, and best practices in risk mitigation. •Knowledge in areas including firewalls, IDS/ More ❯

The Cybersecurity team, within the IT department, is responsible for information and Cybersecurity. Responsibilities include information and cybersecurity risk management, and ensuring compliance to CAA, NIS and ISO27001 standards. The team also works closely with our majority shareholders, and partners, such as retailers, ground handlers, as well as suppliers, to ensure a joined-up approach to information and … candidate will have a strong technical background and a thorough understanding of IT systems, which is essential for effectively securing our infrastructure, systems, and networks. Expertise in information security, risk management and compliance is essential, as is a commitment to defending against cyber threats and integrating security across all layers of our IT environment to protect organisational data … to produce reports and communicate security intelligence. * Advanced knowledge of computer forensics; legal, government and jurisprudence as they relate to cybersecurity. * Knowledge of Cloud computing, computer network defence, identity management, privileged access management, incident management and network security. * Extensive experience within a NOC/SOC environment. Desirable * IT certifications such as CompTIA A+, Network+ * Cyber certifications such More ❯

CSOC) activities, including incident monitoring and response. How will you make an impact? Internal Audit Execution: Conduct internal audits to evaluate and enhance IT controls, compliance with standards, and risk management processes. Audit Preparation: Assist internal control owners in scoping appropriate evidence and preparing for external audits. Gap Assessments: Facilitate and/or conduct internal gap assessments and … of compliance processes. Audit Findings: Identify control deficiencies and work with stakeholders to recommend cost-effective, value-added remediation actions. Compliance Reporting: Draft audit reports and present findings to management during status updates and closing meetings. External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence. Security Monitoring: Use tools such as … implementing recommendations to improve the security posture. Policy and Procedure Development: Assist in creating and refining cybersecurity policies and operational procedures to align with audit and compliance objectives. Vulnerability Management: Support the tracking and remediation of vulnerabilities in coordination with IT and Security Operations teams. Have you got what it takes? Strong expertise in audit and compliance frameworks, including More ❯

team performance Serve as the key liaison between technology teams and business stakeholders, ensuring clear, timely, and transparent communication throughout project execution Oversee project timelines, resource allocation, budgets, and risk management, providing accurate and ongoing status updates to senior management and clients Promote a culture of continuous improvement by implementing Agile best practices, fostering team accountability, and … end-to-end delivery of complex projects within the investment banking or financial services sector Strong expertise in Agile methodologies, with experience acting as a Scrum Master Excellent stakeholder management and communication skills, with the ability to translate technical details into business language Demonstrated ability to manage project scope, timelines, resources, and risks effectively Experience coordinating with global teams More ❯

covering email security, data loss prevention, Azure Active Directory, InTune, Conditional Access, Teams, OneDrive, SharePoint Online, Power Platform, Defender etc Conducting relevant assessment activity to identify and prioritize Clarks' risk scenarios and proactively work with infrastructure, project and architecture teams to plan and deliver remediation activities Supporting the development of relevant security roadmaps and activity plans aligned to Zero … operations and internal SecOps teams to ensure standards and policies are appropriately applied, and assisting in the creation and updating of relevant run books to help ensure effective incident management planning and execution Support for compliance and audit activities, working with internal and external stakeholders to understand requirements, identify remedial activity, and monitor progress Analysing emerging and developing threats … attributes: Demonstrable experience in information security roles with a proven track record of developing and implementing effective security control environments both tactically and strategically Knowledge of security and IT risk management methodologies and practical experience of applying these to operational business environments Good understanding of security controls and best practices across a number of the following areas/ More ❯

requests, providing specialist analytics expertise, and contributing to the development of a portfolio of Business Intelligence tools. The post holder will work as an active member of the Information Management Senior Leadership Team, collaborating to achieve departmental objectives while promoting professional development and compliance with NHS standards. About us The Humber Health Partnership is one of the largest acute … employees starting work with us will be charged for the cost of their DBS check, if it is required for their role. Person Specification Qualifications Essential BSc in Information Management, Data Science, Business Intelligence, or a related field (or equivalent experience) Desirable MSc in Healthcare Data Management, Analytics, or a related discipline Relevant professional qualifications in Business Intelligence … tools (e.g., Microsoft Power BI, SQL certification) Evidence of continuing professional development (e.g., courses in leadership, management, or technical expertise related to Data Science/Statistics) Knowledge Essential Detailed knowledge of healthcare data and how to navigate healthcare data to provide answers to support key operational planning decisions Sound knowledge base of the NHS, the current issues, its values More ❯

we work with and support. Support the growth of the practice through development of relevant industry and technology Thought Leadership material. Ensure and adhere compliance to EY quality and risk management processes across projects and other interactions. Skills and attributes for success To qualify for the role, you must have: Experience in delivering technology projects including IT strategy … technology assessment, IT cost optimisation, application/portfolio rationalisation, technology vendor management or related roles Experience in project delivery as a team member or team lead Ideally, you will also have: Experience in any technology area including Technology/Digital Strategy, Enterprise Architecture, system implementation and Agile software development. Experience in innovative and emerging technology e.g. AI/GenAI … Experience in cloud-based technology e.g Azure, AWS Experience in cost optimisation including financial analysis, technology vendor management, strategic planning and process improvement ToGAF or any EA architecture domain related certification, Scrum, ITIL certification or any technology vendor certification (Microsoft, AWS, Oracle etc). Proficient in using office connectivity and productivity tools including Microsoft Word, PowerPoint and Excel. Ability More ❯

and it is responsible for the company’s technology infrastructure, providing 24x7 support to ensure an uninterrupted, high-quality experience for external and internal customers. It also governs technology risk and information security across the American Express enterprise. The objective of the Technology Control Management Issues, Events & Remediation team is to ensure timely identification, response, and resolution of … risk events and issues to minimize impact, as well as to prevent recurrence through effective remediation and lesson learning. Technology Control Management is looking for a Information Security Analyst of Issues, Events & Remediation to focus on ensuring control management is embedded in the day-to-day operations of our organization. It will involve extensive collaboration with multiple … partners across numerous business units, functional areas, and geographies. Minimum qualification: The Information Security Analyst, Technology Control Management Issues, Events & Remediation will: Investigate and conduct root cause analysis while also addressing repeated issue types Scope, prioritize, and support remediation of issues by influencing BU, who own and execute issue/Operational Risk Event (ORE) remediation Oversee the remediation More ❯

Senior Risk Manager, Amazon B2B Payments Job ID: Amazon EU SARL (UK Branch) Do you like helping small businesses grow? Do you enjoy working across organizations and scaling programs? Come join us as we scale to be the most trusted B2B financial service solution provider across Amazon! The B2B Payments and Lending team provides invoicing, working capital and payment … customers by building payment experiences and financial services that are trusted, valued and easy to use from anywhere in any way. B2B Payments team is looking for a Sr. Risk Manager to join the Credit Strategy team to manage the performance of the EU and UK Pay by Invoice portfolios. The successful candidate will be a thought leader who … can help build and scale a best-in-class credit management program. The candidate will be responsible for managing the portfolio from a risk perspective to drive spend while staying within a target loss rate. In this role, the candidate will drive credit policy changes and procedures, inform automated decisions and monitoring systems and enable credit decisions based More ❯

foundations across platforms, data, and business applications. Our passion lies in using technology to solve business problems, working closely with clients to help achieve their goals. About the role: Risk Assessment: Assist in identifying, assessing, and prioritising risks across the organisation. Conduct risk assessments to evaluate the likelihood and potential impact of risks on business operations and objectives. … DR Advisor in developing and maintaining IT resilience and business continuity plans to ensure the organisation's ability to respond to and recover from IT disruptions. Incident Response and Management: Support DR-related incident response activities, including investigating IT security incidents, breaches, and disruptions. Issue Identification: Identify and document control deficiencies, compliance gaps, and areas for improvement. Collaborate with … stakeholders to develop actionable recommendations and corrective action plans. Documentation and Reporting: Maintain accurate documentation of risk assessments, compliance reviews, control testing activities, and remediation efforts. Prepare regular reports for management and stakeholders. Policy and Procedure Development: Assist in developing and maintaining risk management, compliance, and control-related policies, procedures, and guidelines, ensuring alignment with regulatory More ❯