1 to 25 of 716 Remote Permanent Risk Management Jobs

tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. OVERVIEW OF THE DEPARTMENT/SECTION IT Risk, Security & Control department covers cyber security strategy maintenance and tactical planning and operations to provide IT Security protection, governance, risk management and reporting. This includes promoting the … global Information Security Standards and Procedures (ISSP) requirements and local security requirements. The department deploys, supports and monitors security solutions such as virus protection, vulnerability management, compliance monitoring and threat/incident management activities to reduce risk. NUMBER OF DIRECT REPORTS 1-2 MAIN PURPOSE OF THE ROLE To manage the technical delivery of various cybersecurity projects and … and Securities. The delivery manager will be responsible for support and execution of the following deliverables as required: charter and roadmap, role matrix, status reports, programme schedules, issues and risk log, communication protocol and escalation plan, scope change assessment and change requests. Also business requirements specification and requirements traceability matrix. Assisting the programme manager by providing programme support activities More ❯

means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. IT Risk, Security & Control department covers cyber security strategy maintenance and tactical planning and operations to provide IT Security protection, governance, risk management and reporting. This includes promoting the … global Information Security Standards and Procedures (ISSP) requirements and local security requirements. The department deploys, supports and monitors security solutions such as virus protection, vulnerability management, compliance monitoring and threat/incident management activities to reduce risk. NUMBER OF DIRECT REPORTS 1-2 MAIN PURPOSE OF THE ROLE To manage the technical delivery of various cybersecurity projects and … and Securities. The delivery manager will be responsible for support and execution of the following deliverables as required: charter and roadmap, role matrix, status reports, programme schedules, issues and risk log, communication protocol and escalation plan, scope change assessment and change requests. Also business requirements specification and requirements traceability matrix. Assisting the programme manager by providing programme support activities More ❯

implementation of strategies set by the leadership team. Implement and Manage an effective Staff Training and Awareness program to promote best practices. Adopt a continuous improvement approach to the management of Information Technology, Information Security and Privacy. Ensure that main stakeholders are informed and consulted via an effective Management Review process. Risk Identify information security threats and … manage an effective Vulnerability Management Process. Maintain an effective, proactive Risk Management Framework. Manage and maintain the Satalia Risk Register. Ensure an effective Incident Management procedure and Business Continuity Plan are maintained. Compliance Manage an effective Audit Programme to check compliance against key control requirements. Ensure an appropriate level of support for annual external audits … Cyber Essentials Plus requirements. Work in partnership with development staff to embed best practices in the development processes throughout the software development lifecycle. Devise and embed an effective Vendor Management programme to ensure the service provided by critical suppliers meet organisational requirements. Operational Oversee all technology operations and evaluate them according to established goals. Oversee the management and More ❯

Team/Role Overview The Enterprise Risk Management (ERM) function within Independent Risk Management is responsible for overseeing the implementation of the principles articulated in Citi's Enterprise Risk Management Framework (ERMF) and for the performance of specific enterprise-level risk management programs and processes that span the organization, the lines of … defense and risk categories. These programs and processes include risk identification, risk appetite and limits, risk frameworks and policy, enterprise risk analytics/stress testing, new activity risk management, strategic risk management and climate risk pillars. The Head of ERM also oversee the Risk Transformation and reports directly to … the Citigroup Chief Risk Officer (CRO). As part of the Data Transformation team for the ERM function, you will be part of a team responsible to establish, maintain, and communicate the Enterprise Risk Data and Tech transformation Management data strategy; define scope and requirements; oversee delivery of technology implementation roadmaps, ensuring that both business and regulatory More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. Demonstrate … familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. Demonstrate … familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. Demonstrate … familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. Demonstrate … familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management, scenario-based testing, and oversight of third-party providers. Stakeholder Engagement Coordinate workshops and sessions … operational leads. Monitor implementation progress and support a smooth transition into standard business processes. Training & Culture Develop and deliver resilience-focused training across various teams. Promote best practices in risk and continuity planning. Embed a culture of awareness, accountability, and continuous improvement. What Were Looking For: A degree in Risk Management, Cyber Security, Information Technology, or a … resilience, cybersecurity, or regulatory roles. Solid understanding of UK and EU regulatory frameworks, with hands-on experience relating to DORA. Demonstrable experience conducting regulatory gap analyses, resilience testing, and risk assessments. Strong organisational skills and the ability to manage competing priorities in a deadline-driven environment. Excellent interpersonal and stakeholder management skills, particularly in regulated settings. Desirable Attributes More ❯

Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management, scenario-based testing, and oversight of third-party providers. Stakeholder Engagement Coordinate workshops and sessions … operational leads. Monitor implementation progress and support a smooth transition into standard business processes. Training & Culture Develop and deliver resilience-focused training across various teams. Promote best practices in risk and continuity planning. Embed a culture of awareness, accountability, and continuous improvement. What We’re Looking For: A degree in Risk Management, Cyber Security, Information Technology, or … resilience, cybersecurity, or regulatory roles. Solid understanding of UK and EU regulatory frameworks, with hands-on experience relating to DORA. Demonstrable experience conducting regulatory gap analyses, resilience testing, and risk assessments. Strong organisational skills and the ability to manage competing priorities in a deadline-driven environment. Excellent interpersonal and stakeholder management skills, particularly in regulated settings. Desirable Attributes More ❯

Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management, scenario-based testing, and oversight of third-party providers. Stakeholder Engagement Coordinate workshops and sessions … operational leads. Monitor implementation progress and support a smooth transition into standard business processes. Training & Culture Develop and deliver resilience-focused training across various teams. Promote best practices in risk and continuity planning. Embed a culture of awareness, accountability, and continuous improvement. What We’re Looking For: A degree in Risk Management, Cyber Security, Information Technology, or … resilience, cybersecurity, or regulatory roles. Solid understanding of UK and EU regulatory frameworks, with hands-on experience relating to DORA. Demonstrable experience conducting regulatory gap analyses, resilience testing, and risk assessments. Strong organisational skills and the ability to manage competing priorities in a deadline-driven environment. Excellent interpersonal and stakeholder management skills, particularly in regulated settings. Desirable Attributes More ❯

Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management, scenario-based testing, and oversight of third-party providers. Stakeholder Engagement Coordinate workshops and sessions … operational leads. Monitor implementation progress and support a smooth transition into standard business processes. Training & Culture Develop and deliver resilience-focused training across various teams. Promote best practices in risk and continuity planning. Embed a culture of awareness, accountability, and continuous improvement. What We’re Looking For: A degree in Risk Management, Cyber Security, Information Technology, or … resilience, cybersecurity, or regulatory roles. Solid understanding of UK and EU regulatory frameworks, with hands-on experience relating to DORA. Demonstrable experience conducting regulatory gap analyses, resilience testing, and risk assessments. Strong organisational skills and the ability to manage competing priorities in a deadline-driven environment. Excellent interpersonal and stakeholder management skills, particularly in regulated settings. Desirable Attributes More ❯

integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Investment Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions … business, functions and technology stakeholders to deliver complex front to back change and process efficiency to enable the business to scale. Key Responsibilities and objectives critical to success: Project management and business analysis aligned to Global Equities strategic investment initiatives enabling the business to scale Partner with global Business, Technology and Functional stakeholders to define the functional and non … functional requirements that will expand Front Office trading and data capabilities, deliver a zero-touch lifecycle process and improve risk management for Structured Products Agreeing business outcomes with project sponsor and key stakeholders, validating that planned project outputs deliver these outcomes Build and maintain well defined delivery plans with appropriate level of detail. Comfortable challenging teams to ensure More ❯

with major financial services clients. The role offers excellent career progression within a fast-growing FinTech environment. Our client particularly values professionals who combine technical expertise with outstanding stakeholder management skills. You'll be joining a team that's genuinely passionate about technology and committed to delivering exceptional results for their blue-chip client base. What You'll Be … Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the … financial services environments Strong technical understanding with ability to engage effectively with development teams Excellent communication and relationship-building skills Demonstrable experience in client-facing roles with external stakeholder management Complete project lifecycle experience from initiation through to go-live Solid grounding in Agile methodologies and tools such as Azure DevOps Outstanding organisational abilities with proven capability to manage More ❯

with major financial services clients. The role offers excellent career progression within a fast-growing FinTech environment. Our client particularly values professionals who combine technical expertise with outstanding stakeholder management skills. You'll be joining a team that's genuinely passionate about technology and committed to delivering exceptional results for their blue-chip client base. What You'll Be … Proactively managing project risks, issues, and dependencies whilst ensuring full contractual compliance Running client workshops, progress meetings, sprint ceremonies, and team retrospectives Creating and maintaining comprehensive project documentation including risk registers, project plans, financial forecasts, and status reports Managing client invoicing processes and delivery reporting Contributing to the development of project management frameworks and best practices across the … financial services environments Strong technical understanding with ability to engage effectively with development teams Excellent communication and relationship-building skills Demonstrable experience in client-facing roles with external stakeholder management Complete project lifecycle experience from initiation through to go-live Solid grounding in Agile methodologies and tools such as Azure DevOps Outstanding organisational abilities with proven capability to manage More ❯

cross-functional teams to define project goals, develop project plans, allocate resources, track progress, and ensure timely and successful delivery of projects. Experience and Qualifications Previous experience in project management, preferably within the banking or financial services industry Strong understanding of digital banking operations and Artificial Intelligence AI technologies Proven track record of successfully delivering complex projects on time … and within budget Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams Strong problem-solving and decision-making abilities Knowledge of agile project management methodologies Experience with data analysis and reporting Ability to adapt to changing priorities and work well under pressure Project management certification (e.g., PMP) is a plus Bachelor's … into customer behaviour and preferences, allowing for personalized product recommendations. Marketing Campaigns: Use AI to target customers with tailored marketing campaigns based on their transaction history and preferences. 5. Risk Management Risk Assessment: AI can analyze market trends and economic indicators to provide early warnings about potential risks. Compliance Monitoring: Automate compliance checks and monitoring to ensure More ❯

experience helping organisations solve their complex business issues from strategy to execution across different industries and technology solutions such as Manufacturing 4.0, IoT, consumer goods, healthcare, agrifoods, and identity management, in one or more of the following areas: Assist clients with the development and implementation of technology and digital strategies, and the delivery of Enterprise Architecture services and tool. … growth of the practice through development of relevant industry and technology Thought Leadership material. Coach and mentor team members and provide performance feedback. Ensure compliance to EY quality and risk management processes across projects and other interactions. Preparation of bids/tenders and take lead on key elements of response. Skills and attributes for success To qualify for … System Implementation and Agile Software Development. Subject Matter Expert (SME)/proficient in at least one Enterprise Architecture Domain (Applications, Data, Infrastructure, Security, Integration). Experience in leadership/management roles including project management and managing teams. Ideally, you will also have: Experience within any of the following industries/sectors: Manufacturing, Retail and Consumer goods, Healthcare, Agri More ❯

We are seeking experienced IT and Cyber Risk Management Professionals to support organizations in the financial sector, in strengthening their IT security posture. As a key part of the second line of defense, you will oversee risk management processes and provide independent validation and assurance to ensure that the first line is adhering to IT and … and is specifically focused on providing long-term assignments on maximum 1 or 2 clients, offering deep engagement with the client and a meaningful impact on IT and cybersecurity risk management. Roles & Responsibilities: Monitor and assess IT and cybersecurity risks across the organization, focusing on second-line oversight of the first line's risk management practices. Conduct … independent risk assessments and challenge the first line's processes and control effectiveness across applications, business solutions, assets, and third-party relationships. Review and validate risk assessments and treatment plans proposed by the first line, ensuring compliance with organizational and regulatory standards. Develop and manage IT and security control frameworks, ensuring alignment with internal policies, industry best practices More ❯

We can consider hybrid or fully remote work in the UK. We’re looking for a self-motivated and driven individual with a passion for technology risk management who is looking for an exciting role as a technology risk subject matter expert within the second line of defence (2LoD) Chief Risk Office. You will provide expertise … advice and independent challenge around the Technology risk and control environment and play a crucial role in developing the technology risk strategy to protect Aztec from technology-related threats while enabling business growth and innovation. This role offers the successful candidate extensive opportunities for development and the opportunity to apply their knowledge of technology risk at a … senior level within a financial services environment. Key responsibilities: Development and delivery of Aztec’s technology risk strategy in line with the ERMF and the Chief Risk Office roadmap, regulatory requirements and industry best practice, such as COBIT5/ITIL. Ensure that key strategic risks and controls associated with cloud infrastructure, AI, data management, and wider digital More ❯

Press Tab to Move to Skip to Content Link Location: London Other locations: Primary Location Only Date: 8 Jul 2025 Requisition ID: The Opportunity Risk Consulting is a dynamic group of people focused on helping our clients solving tomorrow's problems today through integrated solution service offerings in the area of risk, such as internal audit, risk management and financial controls. Risk continues to move up the agenda and our team work with many of today's front-running companies. Our clients want integrated, strategic, tech-enabled, end-to-end solutions and we deliver tailored risk offerings putting client value and relationships at the core of what we do. You can expect to … work with senior client personnel and drive high quality work products. Our Risk team consists of talented colleagues who invite you to bring your natural curiosity and innovative thoughts to work each day. Working within our team, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and More ❯

a crucial role in leading and managing complex Cyber Security projects, ensuring the successful execution of initiatives that safeguard our clients' organisations against evolving threats. Leveraging your extensive project management expertise and technical knowledge, you will partner with and contribute to the enhancement of the overall Cyber Security posture and resilience of our clients, collaborating with cross-functional teams … start-up and initiation phases of Cyber Security projects, defining clear project objectives, scope, deliverables, and success criteria. Develop detailed project plans, timelines, and resource allocation approaches. Conduct comprehensive risk assessments and develop mitigation strategies to address potential security threats and project risks. Utilise industry frameworks and standards to ensure robust risk management practices. Oversee and manage … projects end-to-end in line with the Association for Project Management guidance. Manage projects such as Security Framework Audits and Implementation, Cyber Strategy, Cyber Risk Management, Data Privacy, Offensive Security, Security Architecture, and Cloud Security & Engineering. Lead the onboarding process for Managed Security Services including Managed Detection & Response, Cyber Threat Intelligence, and Vulnerability Management Services. More ❯

function responsible for managing the entire reporting and analytics lifecycle-from requirements gathering and data extraction to visualisation, testing, and delivery. The team provides critical support across finance, treasury, risk, and strategic planning, while also managing enterprise BI tools and platforms. With a focus on excellence, the team leverages analytics to support informed decision-making, operational efficiency, and long … partners Data providers, including credit and financial information sources Qualifications and Skills Essential: Degree in a quantitative, scientific, or finance-related field. Extensive experience in BI, analytics, or MI (management information) roles. Strong SQL proficiency with experience querying large databases and writing scalable, maintainable code. Expertise in Tableau with a proven ability to build insightful, interactive dashboards and reports. … to apply analytics for business impact. Background in financial services or a similar regulated environment. Strong communicator with the ability to explain technical concepts clearly and concisely. Strong time management and multi-tasking abilities. Desirable: Familiarity with agile development methodologies and Jira. Experience with Power BI. Understanding of data warehousing and ETL concepts. Experience evaluating external data sources for More ❯

Join our Cyber Security Team as a Governance, Risk and Compliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment … dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help identify … and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to reporting on the ISMS performance and improvement plans Support continual improvement initiatives and track progress Keep up to date with key trends and changes in information security and ISO standards Help maintain and update More ❯

Join our Cyber Security Team as a Governance, Risk and Compliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment … dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help identify … and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to reporting on the ISMS performance and improvement plans Support continual improvement initiatives and track progress Keep up to date with key trends and changes in information security and ISO standards Help maintain and update More ❯

to security and risk. Responsibilities Develop, implement, and maintain the organization's information security policies, standards, and procedures in alignment with business objectives, while considering operational needs. Direct the management and continuous improvement of the Information Security Management System (ISMS). Oversee and manage Ravelin's PCI DSS and PCI 3DS compliance program, ensuring requirements are fulfilled, maintained … and areas for enhancement are identified. Conduct routine risk assessments to determine and reduce information security risks across the business through the establishment of risk treatment plans. Serve as the primary liaison for security matters, both internally and externally. Collaborate with leadership and internal stakeholders to integrate security best practices into business processes. Ensure continuous adherence to all … maintaining an ISO 27001 compliant ISMS. Demonstrable experience with PCI DSS compliance, including preparing for and undergoing assessments. Familiarity with information security frameworks (e.g., NIST, CIS). Proficiency in risk management methodologies. Knowledge of common security technologies (e.g., firewalls, EDR, SIEM, vulnerability scanners). Exceptional analytical, problem-solving, and decision-making abilities. Excellent communication (written and verbal), interpersonal More ❯