24 of 24 Risk Management Jobs in Gloucestershire

Operations to set the strategy for the Operations function, in line with overall strategy. Manage Bordereaux Processing: Provide guidance and direction to the Operations Team relating to reinsurance bordereaux management, Scheme eligibility, participant onboarding, industry service and support, claims processing and insurer audits. Contribute to the management of operational risks and controls: Own the Operations function's audit … functions including Reserving, Comms and Transition, Finance and Reinsurance. Work closely with the IT and change team to align on cross-disciplinary areas like transformation, process, data, governance, compliance, risk management and internal control. Market Relationships: Work with the Market Engagement Team to build relationships and rapport with industry participants including insurers, MGAs and Delegated Authority schemes that … standard reports for the Operations Subcommittee and the Underwriting and Claims Committees Continuous improvement: Harnessing insights from performance monitoring & reporting to aid continuous improvement in Bordereaux processing and operational risk management. Routine External Partner Engagement: Own the day-to-day relationship with Operations' external partners and set the strategic direction and service plans for these engagements. Work with the More ❯

responsible for designing, implementing, and overseeing security infrastructure to protect products and systems from security threats. This role ensures security controls are integrated throughout the software development lifecycle, performs risk assessments, and collaborates with stakeholders to mitigate vulnerabilities. The Security Architect will also contribute to security compliance and best practices, ensuring products meet regulatory and industry standards. Key Responsibilities … Identify security requirements and integrate controls into product development. Conduct risk assessments, threat modeling, and vulnerability analysis. Develop and implement risk management strategies using security frameworks. Collaborate with development teams to ensure security best practices and secure-by-design principles. Identify and mitigate security risks in solution architectures. Create security documentation (e.g., RMADS, Security Assurance Documents). … Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. Knowledge More ❯

responsible for designing, implementing, and overseeing security infrastructure to protect products and systems from security threats. This role ensures security controls are integrated throughout the software development lifecycle, performs risk assessments, and collaborates with stakeholders to mitigate vulnerabilities. The Security Architect will also contribute to security compliance and best practices, ensuring products meet regulatory and industry standards. Key Responsibilities … Identify security requirements and integrate controls into product development. Conduct risk assessments, threat modeling, and vulnerability analysis. Develop and implement risk management strategies using security frameworks. Collaborate with development teams to ensure security best practices and secure-by-design principles. Identify and mitigate security risks in solution architectures. Create security documentation (e.g., RMADS, Security Assurance Documents). … Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. Knowledge More ❯

with cutting-edge technology in partnership with some of the most brilliant minds. The Role: As a Principal Cyber Security Consultant you will join our Information Assurance and Cyber Risk team that provides expert risk assessments, analysis and advice to clients within the Defence Sector. Day-to-day, you'll be a key stakeholder in the Security Risk Management process, working closely with our clients to identify and respond to cyber threats and security risks. Your responsibilities will include: Leading cyber security consultancy with key customers at a senior level providing subject matter expertise, advice and guidance on security matters Implementing Secure by Design for systems across live, test and training environments Monitoring and reporting on … system security requirements and vulnerabilities, escalating unresolved vulnerabilities when appropriate Managing the effective coordination of all security-related activities, including but not limited to, queries, incident management, document reviews and testing Modelling Cyber security risks using established and novel frameworks Essential experience of the Principal Cyber Security Consultant: In-depth knowledge of MoD Security policy In-depth knowledge of More ❯

be responsible for Identify security requirements and ensure the integration of security controls during the product development lifecycle Some of what you will be involved in: Develop and implement risk management strategies Perform security threat modelling and risk assessments applying security controls to mitigate any threats identified Collaborate with the development teams to ensure the adoption of … of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) Please reach out to Lewis if you are interested or … is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically More ❯

implementation, documentation, and maintenance of policies, procedures, associated guidelines, tools and training. Contribute to the security life cycle activities (concept through release) including regulatory certification/qualification (ie - The Risk Management Framework, ED-202A/DO-326A, Secure By Design, IEC 62443, etc) Collaborate with government, customers, suppliers, and industry experts to meet system and program requirements. Provide … develop, implement, and secure such cyber-physical systems. Experience or interest in cybersecurity and cyber threats (ie - designing secure products, systems, and applications; intrusion detection; digital forensics; system recovery; risk assessment tools and methods; security solutions, policies, standards, and procedures, etc.). Knowledge and/or experience in applying Product Security policies and standards to the engineering of cyber … physical systems such as NIST SP 800-160, DO-326, UK Secure By Design, IEC 62443, the Risk Management Framework (RMF), and DoDI 5000.83,. Excellent communications skills: able to influence without authority and describe complex ideas simply and succinctly to non-technical people. What we offer We offer excellent development opportunities, a competitive salary, and exceptional benefits. More ❯

and security challenges. An exciting opportunity has arisen for a Lead Information Security Adviser to join Boeing Defence UK in the support of the Defence Equipment Engineering and Asset Management System (DEEAMS) programme. Due to continued business growth there is an opportunity to join a multi-skilled security team that delivers all aspects of protective security to Boeing Defence … UK (BDUK), including information security and assurance, personnel security, business continuity and counter threat support and risk advice. The successful candidate would be a part of a supportive team of around 26, with access to varied work and opportunities to progress their career alongside the growth of the business. At Boeing we're committed to rewarding excellence and fostering … liaise with the customer and other agencies as required and deliver other programme contractual deliverables as required. The post holder will also have experience of information security, defence security management and defence cyber protection partnership processes. Post initial operating capability the role will be integral to maintaining the continued authority to operate by maintaining the Information Security Management More ❯

defence and security challenges. An exciting opportunity has arisen for an Information Security Adviser to join Boeing Defence UK in the support of the Defence Equipment Engineering and Asset Management System (DEEAMS) programme. Due to continued business growth there is an opportunity to join a multi-skilled security team that delivers all aspects of protective security to Boeing Defence … UK (BDUK), including information security and assurance, personnel security, business continuity and counter threat support and risk advice. The successful candidate would be a part of a supportive team of around 26, with access to varied work and opportunities to progress their career alongside the growth of the business. At Boeing we're committed to rewarding excellence and fostering … liaise with the customer and other agencies as required and deliver other programme contractual deliverables as required. The post holder will also have experience of information security, defence security management and defence cyber protection partnership processes. Post initial operating capability the role will be supportive in maintaining the continued authority to operate by maintaining the Information Security Management More ❯

and ensure successful project delivery with minimal risk. Key Responsibilities: Develop project scopes and objectives involving all relevant stakeholders and ensuring technical feasibility Facilitate workshops and meetings such as risk analysis, pre-mortems, technical design workshops, requirements elicitation Design and plan the whole lifecycle approach for complex projects and programmes Train and advise clients in System Engineering best practice … parties/vendors for the flawless execution of projects, including delivery assurance and integration Oversee the effective delivery of projects, ensuring they remain within scope and budget with managed risk Delivery and management of System Engineering documentation, such as SEMPs Creation and maintenance of System Engineering artefacts such as system models, plans, requirements, integration logic, test methodologies, etc. … Manage changes in project scope, schedule, and costs with the help of appropriate verification techniques Prepare reports and present them to senior management as needed Maintain strong relations with the client and all stakeholders Analyse and manage risks to minimise negative effects on a project Build and maintain relationships with third parties/vendors Prepare and review comprehensive project More ❯

product portfolio-encompassing software, hardware, and services-by embedding robust security controls throughout the development lifecycle, identifying and mitigating risks, and ensuring compliance with defence-grade standards. Key Responsibilities Risk Assessments & Vulnerability Management Conduct comprehensive security risk assessments at each product phase (design, implementation, deployment). Identify vulnerabilities in architectures, codebases, and configurations; drive remediation with development …/27005, NIST 800-30/53, JSP 440/604, Def Stan 05-series). Lead the creation and maintenance of security documentation (RMADS, Security Assurance Documents, Security Management Plans). Testing & Assurance Design and execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation … and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001/2/5/31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138/139). Hands-on experience with More ❯

Strategy, Programme, Digital, Programme Leadership and Human Centred Transformation to better anticipate, shape and manage change in Major Programmes. It empowers project leaders to effectively anticipate and manage change, risk and uncertainty across a programme's lifecycle, shaping its success. Our practice comprises a blend of those who have worked previously in industry (in both technical and non-technical … Financial Services practice means that we are looking to grow the team further by recruiting individuals with experience from across Retail and Commercial Banking, Building Societies, Wealth and Asset Management, Capital Markets, Insurance and Reinsurance. Your role: Take the lead in partnering with clients to solve complex issues, through leading teams to design, shape and deliver strategically significant projects … shape and manage delivery through the cycle Programme set-up; delivery/operating model design, commercial model structure, definition and mapping of programme outcomes Programme delivery; project and programme management, programme controls/assurance, risk management, and operational readiness Programme recovery; executive level engagement, recovery planning, and experience reshaping programmes Commercial and contract management, and strong More ❯

Security Tools Proficiency Hands-on experience with Palo Alto firewalls, IDS/IPS, and endpoint protection. Network Security Knowledge Deep understanding of VPNs, network protocols, and security architecture. Incident Management Proven ability to detect, analyse, and resolve security threats and malware. Vulnerability Management Experience in identifying and mitigating system vulnerabilities. Automation Skills Proficiency in security automation using scripting … tools like Python or PowerShell. Frameworks & Compliance Familiarity with ISO 27001, NIST 800-53, Cyber Essentials, and GDPR. Risk Management Strong grasp of risk assessment methodologies and security control frameworks. Communication Able to communicate technical concepts clearly to both technical and non-technical stakeholders. Project Management Experience managing security projects and working with cross-functional teams. More ❯

working knowledge of Defence Standards DefStan 05-138 Issue 3 and DefStan 05-139 Issue 1 . If you're an experienced professional with strong capabilities in threat modelling , risk assessment , and secure systems architecture , we want to hear from you. Role Responsibilities: Integrate security controls throughout the product development lifecycle Conduct detailed threat modelling and risk assessments … using recognised tools Lead the implementation of risk management strategies based on industry best practices (NIST, ISO) Work closely with development teams to ensure secure-by-design principles are followed Identify and propose mitigations for security vulnerabilities in solution architectures Maintain and evolve internal security policies, documentation, and awareness training Support incident response efforts and coordinate remediation actions … MOD ISN 23/09 Ability to identify, assess and mitigate risks across software and hardware product ecosystems Strong written and verbal communication skills, including the ability to convey risk to non-technical audiences Ideal Candidate Traits: Analytical thinker with strong problem-solving skills Detail-oriented with excellent planning and organisational abilities Resilient, proactive, and capable of driving initiatives More ❯

insight and workforce analysis and understanding. Lead complex, large-scale Technology & Transformation projects for top Financial Services institutions. Help clients adapt to the changing landscape of digital banking, new risk models, and innovative distribution channels. As an Associate Director, you will: Lead complex, large-scale transformation projects for leading Financial Services organisations, focusing on organisational design, transformation and the … roles, and organisations for functions within Financial Services - This could include experience with Digital Transformation initiatives, Mergers and Acquisitions, or new operating models in areas such as Banking, Asset Management, or Insurance Demonstrate a strong understanding and experience of applying emerging technology context to organisation transformation such as the growing capability of AI and GenAI Acute awareness of risk management and managing risks associated with people, processes, systems, change, and commercials. Strong analytical, problem-solving, and communication skills. Passion for innovation and driving change in a dynamic environment. Innovative mindset and keen interest in the newest thinking around transformation, the future of work, and technology disruptors. Ability to explore options in a structured way, deploying techniques such More ❯

Overview Expleo is a trusted partner for end-to-end, integrated engineering, quality services, and management consulting for digital transformation. We help businesses harness unrelenting technological change to deliver innovations that provide a competitive advantage and improve everyday life worldwide.As part of the Expleo Digital and Emerging Technology (DET) team, you will report to the Head of Cybersecurity and … certification artefact production aligned to EASA and UK CAA expectations. Lead the development and review of cybersecurity documentation, including the PSecAC (Airworthiness Security Process Plan), PASRA (Preliminary Aircraft Security Risk Assessment), ASAM (Aircraft Security Architecture Model), and Security Verification Methods. Provide input into the AWSP frameworks, including the tailoring of compliance checklists, activity outcomes, and document templates. Ensure traceability … between security risk assessments, controls, and compliance objectives across the aircraft systems and software architecture. Coordinate the development of cybersecurity methods and processes, contributing to their alignment with recognised standards. Engage with DAG's internal stakeholders, including engineering, safety, and systems integration teams, to embed cybersecurity into the design and certification lifecycle. Act as the primary technical interface for More ❯

Bristol. Preferred Requirements: Proven experience in managing security systems projects, from planning to successful completion Expertise in coordinating cross-functional teams and stakeholders to achieve project objectives Proficiency in risk management, budget control, and resource allocation Strong problem-solving and decision-making skills to navigate complex challenges Excellent communication and interpersonal abilities to foster collaborative partnerships Preferred Qualifications … Relevant degree or certification in project management, engineering, or a related field Proven track record of successful project delivery in the security or engineering sector Familiarity with industry standards, regulations, and best practices More ❯

Bridges Civil Engineering degree Preferably a Masters Have or be close to completion of Professional Qualification with the Institution of Civil Engineers or Chartered Institution of Water and Environmental Management Awareness of National Planning Policy and Infrastructure design requirements relating to flood risk management Ability to manage a team of people with varying levels of experience and … provide the technical support and resource planning in line with our Integrated Management Systems required to deliver our projects Experience in 3D design and modelling using software such as MicroDrainage, InfoDrainage, AutoCAD, Civils 3D, and Autodesk ICM Water Authority statutory approval processes such as S104, S106 etc & SuDS Approval Body approval More ❯

. A strong technical engineering background with hands-on project delivery experience. Proven success in managing multiple change projects using Lean and Agile techniques. A solid understanding of project management principles and tools. Experience working with external suppliers and contractors. Familiarity with assembly and machining processes, automation, or robotics. To be successful in this role you will Demonstrate Company … a manufacturing or engineering discipline (APM, Prince2, or apprenticeship qualifications are a plus). Be highly motivated, detail-oriented, and skilled in problem-solving and analysis. Demonstrate excellent time management, presentation, and stakeholder engagement skills. Be capable of managing multiple projects using both linear and iterative approaches. Understand project governance, including relevant legislation, risk management, and contract … operating units (called OpCos), organised into four Divisions: EMEA, APAC, Americas, Gestra. Spirax Groupis a FTSE100 and FTSE4Good multi-national industrial engineering Group with expertise in the control and management of steam, electric thermal solutions, peristaltic pumping and associated fluid technologies. Our Purpose is to create sustainable value for all our stakeholders as we engineer a more efficient, safer More ❯

new HRIS platform, overseeing: End-to-end project planning and execution Coordination across HR, IT, and business functions Data migration from on-premise legacy systems to a cloud environment Risk management and governance Vendor and third-party engagement Progress reporting and stakeholder comms across regions What You’ll Need: Proven experience delivering global HRIS rollouts Strong track record … of managing data migrations from on-prem to cloud Familiarity with change management in global organisations Excellent communication and stakeholder management skills Able to work independently and drive delivery across time zones More ❯

landscape of construction software, Thinkproject seamlessly integrates the most extensive portfolio of mature solutions with an innovative platform, providing unparalleled features, integrations, user experiences, and synergies. By combining information management expertise and in-depth knowledge of the building, infrastructure, and energy industries, Thinkproject empowers customers to efficiently deliver, operate, regenerate, and dispose of their built assets across their entire … s ISO 27001 certification, Cyber Essentials Plus, and BSI C5. Actively participate in on-call and platform service, troubleshooting, resolving issues, and handling escalations to other technical teams, senior management, or account managers. Create and maintain technical documentation. Contribute to technical projects including risk management and reporting. Understand and improve the Thinkproject DR processes and actively participate More ❯

and support the group's strategic objectives. The successful candidate will lead the development of a formal data governance framework, including data ownership models, stewardship engagement, and quality management processes. They will work closely with data architects, engineers, analysts, compliance, and business functions to ensure data is governed, understood, and fit for purpose across its lifecycle. Additionally, the role … change programmes (e.g. EDW, AI/ML). Support the data strategy by promoting a culture of data accountability, literacy, and stewardship. What you'll need: Degree in Data Management, Information Governance, Information Systems, or a related field (or equivalent experience). Professional certifications preferred (e.g. DAMA CDMP, DCAM, ISO 8000). Proven experience in defining and implementing enterprise … standards (e.g. DPA 2018, GDPR, FCA SYSC, PRA SS1/21). Experience with Azure Purview, Unity Catalog, or similar data governance and metadata tools. Excellent understanding of data management principles including data quality, metadata, lineage, classification, and stewardship. Experience leading data governance initiatives in regulated environments such as financial services or insurance. Strong influencing skills to drive governance More ❯

evaluate their potential impact on the organisation Develop and advocate for innovative solutions that drive business value and operational efficiency Contribute to the development of IT strategies and roadmaps Risk Management : Assess and mitigate technical risks associated with architectural decisions and solution implementations Ensure solutions are scalable, secure, and compliant with relevant regulations and standards Knowledge, skills and … regulated environment/financial services (ideally insurance industry) Desirable:Proven track record of designing and implementing complex technical solutions in insurance, including policy administration, claims processing, underwriting, and customer management systems Technical Skills : Ideally knowledge of insurance industry standards, regulations, and best practices Proficiency in architecture frameworks and methodologies (e.g., TOGAF, Zachman) Experience with cloud platforms (e.g., Azure (preferred More ❯

the same the Project Engineer role offers genuine long-term progression and career development within a first-class organisation. Role & Responsibilities: Managing the project budget Conducting quality assurance and risk management at all stages of the project Maintaining data records and files for the project Identifying potential problems with the project Knowledge, Skills & Experience: Engineering Degree or strong More ❯

/A Continuously upgrade and update process and planning documentation based on iterative maturity development. Act as mentor across business functions on matters relating to lifecycle, development assurance, requirements management, and consistently demonstrate working-level best practice. Please only apply if you have experience in the aviation sector Demonstrated expertise in the application of Systems lifecycle processes (V-cycle …/avionics; or certified or in-certification powerplant systems, such as rotating components, engine control, and cooling/lubrication is considered advantageous. Extensive experience in the elicitation, capture, and management of requirement sets at all levels (aircraft, system, item), with a focus on ensuring their validation in accordance with completeness and correctness standards. Robust experience in the development of … system architecture, functions, and interfaces, encompassing stakeholder management with downstream engineering teams, as well as assumption and risk management. Knowledge of system safety analysis techniques (FHA, FTA, FMEA) and reliability assessments is also desired. Considerable experience in managing systems engineering elements in software-centric environments, such as RMT (Polarion, DOORS) and CAE (Matlab Simulink, Simcenter). Strong aptitude More ❯