1 to 25 of 121 Risk Assessment Jobs in England

Opportunity Overview sitemap_outline CORPORATE TITLE Associate language OFFICE LOCATION(S) London assignment JOB FUNCTION Liquidity Risk account_balance DIVISION Risk Division RISK Our Risk division develops comprehensive processes to monitor, assess, and manage the risk of expected and unexpected events that may have an adverse impact on the firm. Risk professionals execute critical … day-to-day risk management activities, lead projects and contribute to the ongoing advancement of a robust risk management program. FINANCE RISK (FR) Finance Risk is the independent risk management function responsible for overseeing the firm's accrual rates and liquidity risk. We work closely with Global Banking and Markets, Asset and Wealth Management and … Platform Solutions, as well as the broader Risk organization to provide independent risk assessment and oversight of the firm's risk taking. Key functions include: Risk Oversight: Monitor, govern, and challenge Corporate Treasury execution activities, including accrual rates risk management, liability management, cash & collateral management, funds transfer pricing, balance sheet usage, liquidity and funding More ❯

maintained throughout the project lifecycle working alongside both internal and external suppliers. • Qualification and quantification of business benefits relating to requirements for change and improved business processes, including impact assessment of change requests to scope and requirements. • Ensure the quality & timeliness of the analysis, requirements, specifications & acceptance criteria produced with the security engineering function to guide the strategy around … risks they need to address and the correct selection and implementation of controls. • work directly with multiple IT infrastructure and application development projects and teams to apply standard technical risk assessment methods to identify and prioritize risks for remediation • Review architecture and design documents to help ensure the correct implementation of security technology controls • contribute to the development … of improved risk assessment approaches • contribute to the systemization of the delivery of security advisory services Experience: Knowledge of risk management concepts including risk assessment and risk treatment techniques and methodologies, including: • Risk Assessment methods and frameworks (IRAM2, OCTAVE, NIST, ISO 27005 etc) • Information Security Management System frameworks and standards and their More ❯

help shape the future of finance, Paynetics is where your work will make a difference on a global scale. Paynetics UK is seeking an experienced and pragmatic Third Party Risk Manager to design, implement, and oversee the firm’s third party and outsourcing risk management framework. This role is pivotal in ensuring compliance with FCA outsourcing and operational … management in financial services, combined with the ability to deliver practical oversight and advice in a fast-paced environment. What you'll do: 1. UK Outsourcing and Third Party Risk Framework • Lead the design, development, and maintenance of Paynetics UK’s Third Party Risk Management Framework, ensuring compliance with FCA rules (SYSC 8, operational resilience, DORA, and PRA … SS2/21 where applicable). • Define risk appetite, governance structures, and control standards for outsourcing and vendor management. • Ensure proportionate oversight and due diligence aligned with the materiality of services and regulatory requirements. • Maintain an up-to-date Outsourcing and Third Party Register, ensuring that risk assessments and contract records remain current and accurate. 2. Group-Level More ❯

help shape the future of finance, Paynetics is where your work will make a difference on a global scale. Paynetics UK is seeking an experienced and pragmatic Third Party Risk Manager to design, implement, and oversee the firm’s third party and outsourcing risk management framework. This role is pivotal in ensuring compliance with FCA outsourcing and operational … management in financial services, combined with the ability to deliver practical oversight and advice in a fast-paced environment. What you'll do: 1. UK Outsourcing and Third Party Risk Framework • Lead the design, development, and maintenance of Paynetics UK’s Third Party Risk Management Framework, ensuring compliance with FCA rules (SYSC 8, operational resilience, DORA, and PRA … SS2/21 where applicable). • Define risk appetite, governance structures, and control standards for outsourcing and vendor management. • Ensure proportionate oversight and due diligence aligned with the materiality of services and regulatory requirements. • Maintain an up-to-date Outsourcing and Third Party Register, ensuring that risk assessments and contract records remain current and accurate. 2. Group-Level More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Company Description Usual description. Job Description An exciting opportunity has arisen for an experienced risk professional to join our high performing Risk Team at our award winning investment platform. This role is ideal for someone who enjoys working closely with Technology functions and wants to make a real impact on how enterprise risk is understood, managed and … embedded across a growing FTSE 250 business. As the primary Risk Team business partner for our Technology Services division, you will play a key role in supporting the delivery of our enterprise wide risk management framework. You will help ensure risks are identified, assessed and managed effectively, and contribute to a strong risk culture across the organisation. … What the role involves: Partner with Technology Services to embed the Group Risk Management Framework. Support the ongoing development of the framework across AJ Bell. Promote a positive risk culture and provide education and guidance on risk processes. Participate in risk forums to help strengthen first line risk maturity. Support and challenge risk owners More ❯

interact with people at all levels effectively. Team Player: Flexible and adaptable approach, able to collaborate with colleagues. Health & Safety: Sound understanding of Health & Safety regulations , environmental impacts, and risk assessments. Reporting: Capable of providing detailed and summarised reports on operational activities. Qualifications: Hold a recognised mechanical services qualification . Character & Attributes: Resilient Under Pressure: Able to work effectively … control circuits . Lone Working: Familiarity with lone working requirements. Compliance: Ability to adhere to all required regulations . Desirable Experience: Building Management Systems (BMS): Experience working with BMS. Risk Assessment: Risk Assessment and Method Statement (RAMS) training. Multi-Discipline Work: Willingness and ability to work outside core discipline when required. Personal Specification: Education & Experience: Knowledge More ❯

digital estate, encompassing enterprise IT, operational technology (OT), and research platforms. This role sits within the Information & Cyber Security Group and provides subject matter expertise in security architecture, cyber risk governance, and assurance frameworks. This is a cross-functional role with both advisory and hands-on responsibilities, focusing on security assurance, risk management and supporting architecture reviews, vulnerability … management, risk assessments, cyber defence posture, driving technical assurance, and embedding risk-aligned security controls across IT and OT systems and secure-by-design practices. You will work across hybrid environments including cloud, infrastructure, applications, and OT systems. You will be responsible for designing and advising on security architecture patterns, reviewing and maintaining risk registers, leading assurance … Cyber Essentials (CE and CE+) while supporting the secure operation of core services. The role requires strong stakeholder engagement, technical depth, and a sound understanding of UK-specific cyber risk frameworks. You will help shape and maintain a secure posture across UKAEA. A degree in Cybersecurity, Information Technology, or a STEM subject (or equivalent experience). Essential o Security More ❯

quantify, and govern AI agents operating with autonomy in production environments. If you've been following the trajectory from static models to agentic systems—and the corresponding explosion in risk surface area—you know why this matters now. About governr governr is the AI risk platform for regulated enterprises. We provide complete AI visibility, real-time risk eval and quantification, and audit-ready compliance docs for enterprises deploying agentic AI. We've built the industry's most comprehensive AI risk assessment framework: We're currently in active discussions with tier-1 financial institutions and have secured design partners with leading firms navigating the shift from analytical AI to agentic systems. The market timing is … critical: enterprises are deploying agents at scale, regulators are demanding governance frameworks, and existing Third-Party Risk Management (TPRM) platforms have near-zero AI-risk depth. We have an estimated 18-24 month competitive window before large incumbents build comparable capabilities to stay relevant. The Role As an Agentic Developer at governr, you'll build the core systems More ❯

quantify, and govern AI agents operating with autonomy in production environments. If you've been following the trajectory from static models to agentic systems—and the corresponding explosion in risk surface area—you know why this matters now. About governr governr is the AI risk platform for regulated enterprises. We provide complete AI visibility, real-time risk eval and quantification, and audit-ready compliance docs for enterprises deploying agentic AI. We've built the industry's most comprehensive AI risk assessment framework: We're currently in active discussions with tier-1 financial institutions and have secured design partners with leading firms navigating the shift from analytical AI to agentic systems. The market timing is … critical: enterprises are deploying agents at scale, regulators are demanding governance frameworks, and existing Third-Party Risk Management (TPRM) platforms have near-zero AI-risk depth. We have an estimated 18-24 month competitive window before large incumbents build comparable capabilities to stay relevant. The Role As an Agentic Developer at governr, you'll build the core systems More ❯

Regional Risk and Quality Assurance Manager (f/m/d) Full or part time Empowering You - to feel our passion for technology As NTT DATA Business Solutions, we are more than just a company. We are a team of passionate people who drive innovation - from advisory and implementation to managed services and beyond. With SAP at our core … and initiatives to improve our consulting business aiming at increasing consulting quality, streamlining approaches across countries and developing consultants in their respective fields. Within GFC, the Global Quality and Risk Unit (GQR) is in charge of defining, implementing and enforcing Risk Management processes within all NTT DATA Business Solutions companies. The Risk and Quality Assurance team effectively … monitors risks throughout the various project phases in an operative manner. You as the Regional Risk and Quality Assurance Manager will directly manage Risk, Quality Assurance processes for selected projects, and you will directly engage with and coordinate FTEs. Implementation and execution of Risk and Quality Assurance Management for selected Consulting projects: Execution of risk assessments More ❯

think innovatively, and listen to each other and customers in meaningful ways. Moody's is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, we're advancing AI to move from insight to action-enabling intelligence that not only understands complexity but responds to it. We decode risk to unlock … into actions, and uphold trust through integrity. The Director, Tech Advisory is a senior leader within Moody's Insurance Business Unit, responsible for shaping the future of insurance analytics, risk management, and workflow transformation. You will lead a high performing team of technical architects, specialists, and developers, delivering innovative solutions that redefine client risk workflows and unlock new … and market innovators - you will design and demonstrate cutting edge architectures, proof of concept analytics, and migration strategies that help clients realize the full potential of Moody's Intelligent Risk Platform (IRP) and broader risk and data offerings. This is both a strategic and hands on role: you will champion best practices, enforce technical and architectural standards, and More ❯

Status: Inside Rate: £500 - £600 Lenghth: Initial 6 months, scope for extension Must have Active MOD DV Clearance In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 … and the NIST Cyber Security Framework. Produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide accurate and pragmatic remediation/risk management guidance/advice … in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic and interpersonal skills. Have a good understanding of modern IT technologies and services, such as Cloud Computing, AI (ISO42001), Mobile Computing, IT Security, Infrastructure technologies, Zero Trust, Data at Rest/In Transit Cryptography More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD or Public Sector as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 and the NIST Cyber Security Framework. Work with multi-disciplinary teams, helping to ensure that … products are delivered in a secure manner that is aligned with the wider business risk appetite. Produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide … accurate and pragmatic remediation/risk management guidance/advice in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic and interpersonal skills. Good level of knowledge of the cyber security industry in public and private sector. Have a good understanding of modern More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC (phone number removed More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC More ❯

Are you a cybersecurity professional with expertise in Cybersecurity Risk Assessment (CRA)? We have an initial 6-month OUTSIDE IR35 contract supporting a leading multinational Sensor technology client focused on securing their business and supply chain. The client are looking for the consultant to start on the 5th January 2025 hybrid working, both remote and from Crawley. The … and development process implementing 4-1 for CRA. Key Responsibilities: Lead and support secure supply chain management initiatives Drive compliance efforts across the wider organization Deliver a comprehensive Cybersecurity Risk Assessment (CRA) involving: Integration of Security Design (SD) elements Development and detailed analysis of threat models Ensuring strict adherence to critical industry standards including: IEC (phone number removed More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party’s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you’ll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

months Central Government experience in the last 5 years is strongly preferred. As an Aker Lead Security Architect, you will be a recognised subject matter expert in security, risk management and compliance with demonstrable experience in highly regulated industries, specifically UK Government and/or Defence. You will build effective working relationships with delivery team members and Aker customers … testing (e.g ITHC) of solutions on the public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series, NIST … CSF, and CSA Identify and deliver appropriate controls based on industry standards (e.g. CCM) to drive cloud and customer security solutions framework based on business risk and cloud native threats. Provide oversight and guidance on government security procedures and processes. Continually evaluate new threats in the cloud, to identify the impact on IT and the business to develop and More ❯

our client, We are seeking an experienced Senior Information Security Analyst to provide immediate support to their Information Security team. This hybrid role combines technical security analysis with governance, risk, and compliance (GRC) activities, offering a unique opportunity to influence and maintain the organisation’s security posture. About the Role: The successful candidate will assess risks, review supplier and … is a hands-on delivery role requiring someone who can work independently, make sound judgments, and communicate effectively with both technical and non-technical stakeholders. Key Responsibilities: Security Governance & Risk Conduct security risk assessments for systems, projects, and suppliers, documenting findings consistently. Review, respond to, and attest security questionnaires and tender submissions. Support and track remediation actions arising … from risk assessments, audits, or incidents. Assist with maintaining the Information Security Risk Register and associated controls. Support compliance with ISO 27001, Cyber Essentials Plus, and DSPT. Provide input to security policies, standards, and process improvements. Technical Security Oversight Collaborate with IT and Security partners to review alerts, vulnerabilities, and incidents, providing risk-based recommendations. Review and More ❯

to be understood, managed, processed, altered, trained and delivered to all affected organisation's functions in a timely manner to support the deployment of the system. Role Overview Programme Risk and Schedule Professional - an individual with experience of planning and delivery of ETCS projects initially for 2 years working 5 days per week within the Project Controls team, this … role will support the Business Readiness Sector to correlate project time, cost and risk assessment, and will own/manage the Risk and Schedule activities including but not limited to:·To engage and become a key member of the programme delivery team providing an integrated scheduling and risk approach to support the effective delivery of the … communicating to complex stakeholder groups.·Collaboration and engagement with internal/external stakeholders and delivery partners to manage and support effective information sharing and awareness of any schedule or risk changes and impacts, ensuring that the organisation's Business Readiness team/East Coast Route are made progressively aware of any/all changes and impacts associated with each More ❯

Data Protection Act. Any data that is must be undertaken with regard to the Trust Information Governance and Information Security policies. The post holder must adhere to the Trust risk assessment and risk management processes. The post holder must adhere to infection control policies and procedures. Undertake mandatory training and any other training relevant to the role More ❯