8 of 8 Risk Management Jobs in North Yorkshire

The IT Security Risk & Compliance Lead plays a central role across Cyber and Information security. The primary purpose of this role is to manage and influence all aspects of security risk management activity across the Group, but particularly in respect to IT and Information Security. You will also assist in the delivery of Security Policy, Data Classification … and Compliance Management in accordance with policy and regulatory requirements. You will help develop the compliance knowledge and skills through the rollout of tools, policies and procedures, formal training and coaching and mentoring, working with individual Project Teams and Asset Owners ensuring that they understand their security responsibilities. You will also deliver against the business strategy, the technical roadmap … working with IT Systems in a corporate environment. • Good knowledge of control frameworks such as ISO27001, ITIL (Information Technology Infrastructure Library), NIST, IEC 62443 and SABSA. • Good knowledge of Risk Management Methodologies such as ISO27005, IRAM2 and IEC 62443 3-2. • Strong technical skills across IT. • Ability to interpret regulations and laws and communicate effectively to all More ❯

ability to collaborate with multidisciplinary teams and external stakeholders. Key Responsibilities: Work transparently with variousengineeringdiscipline leads/teams to provide clear and concise reports and information regarding progress and management of Risk and Opportunities in relation to theEngineeringactivities. Bring learnings & operational best practices from other engagements. Undertaketechnicaland feasibility studies and siteinvestigations. Develop detailed requirement specifications. Support projects as … they evolve through theproject engineeringlifecycles. Assess the potential risks of specific projects, as well as undertake risk management in specialistroles Communicate and liaise effectively with a wide set of project stakeholders Support governance meetings. Think both creatively, logically, and strategically to resolvedesignand development problems Be adaptable, asproject requirementsevolve, and ensure relevant parties are notified of changes in the More ❯

the Head of Procurement, this Category Manager will be responsible for responsible for developing and executing procurement strategies across a diverse portfolio of corporate services categories including IT, Facilities Management, Temporary Labour, HR & Marketing, Financial & Legal services, Learning & Development, Travel Management, Office Supplies, Printing, Professional Services and Capital expenditure projects that do not fall under the engineering category. … Lead the sourcing process for the designated categories including, market research, specification development, developing sourcing documents, bid evaluation, negotiating all commercial terms and conditions aimed at reducing cost, minimising risk and optimising business processes for the procurement of the goods and services within these categories. Supplier Management : Identify, evaluate, and manage relationships with key suppliers to ensure quality … be easily quantified. Contract Development : Work with the legal function to construct the necessary contractual arrangements for contracts to ensure all contractual terms and conditions are approved and corporate risk is minimised. Market Analysis: Conduct market research and analysis to stay informed about industry trends, pricing, and emerging technologies. Stakeholder Collaboration: Encourage and influence internal stakeholders, to ensure key More ❯

the Head of Procurement, this Category Manager will be responsible for responsible for developing and executing procurement strategies across a diverse portfolio of corporate services categories including IT, Facilities Management, Temporary Labour, HR & Marketing, Financial & Legal services, Learning & Development, Travel Management, Office Supplies, Printing, Professional Services and Capital expenditure projects that do not fall under the engineering category. … Lead the sourcing process for the designated categories including, market research, specification development, developing sourcing documents, bid evaluation, negotiating all commercial terms and conditions aimed at reducing cost, minimising risk and optimising business processes for the procurement of the goods and services within these categories. Supplier Management : Identify, evaluate, and manage relationships with key suppliers to ensure quality … be easily quantified. Contract Development : Work with the legal function to construct the necessary contractual arrangements for contracts to ensure all contractual terms and conditions are approved and corporate risk is minimised. Market Analysis: Conduct market research and analysis to stay informed about industry trends, pricing, and emerging technologies. Stakeholder Collaboration: Encourage and influence internal stakeholders, to ensure key More ❯

and compliance? We would love to hear from you! The Role The Director of Finance, IT & Compliance will be accountable for ensuring there is robust financial planning, compliance, and risk management throughout the organisation. Duties will include: Providing strategic advice, guidance and constructive challenge to the CEO, Board and associated committees on all issues related to financial matters. More ❯

teams. Maintain the security assurance matrix in line with ISO 27001, Cyber Essentials, and SOC 2. Act as the key point of contact for security assurance queries. Conduct vendor risk assessments against ISO 27001, NIST, and CIS Controls. Manage the third-party due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk … artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years’ experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate technical risk More ❯

teams. Maintain the security assurance matrix in line with ISO 27001, Cyber Essentials, and SOC 2. Act as the key point of contact for security assurance queries. Conduct vendor risk assessments against ISO 27001, NIST, and CIS Controls. Manage the third-party due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk … artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate technical risk More ❯

teams. Maintain the security assurance matrix in line with ISO 27001, Cyber Essentials, and SOC 2. Act as the key point of contact for security assurance queries. Conduct vendor risk assessments against ISO 27001, NIST, and CIS Controls. Manage the third-party due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk … artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years’ experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate technical risk More ❯