1 to 25 of 76 Risk Management Jobs in the Thames Valley

Head of Technology Governance, Risk, and Compliance (GRC) Because your new ideas are our way new ways of working. Evolve, your way. The Head of Technology Governance, Risk, and Compliance (GRC) is a key leadership role within the Primark Tech, reporting to the Chief Technology Security & Risk Officer (CTSRO). The role is responsible for ensuring effective … a crucial role in interacting with internal and external auditors and is responsible for the development and guidance of a team responsible for second line of defence activities, technology risk management and assessments, compliance monitoring, and developing a tech wide governance framework of policies, standards, and controls to ensure a strong control environment is in place to manage … risk, yet provide agility to deliver. What You'll Get People are at the heart of what we do here, so it's essential we provide you with the right environment to perform at your very best. Let's talk lifestyle: Healthcare, pension, and potential bonus. 27 days of leave, plus bank holidays and if you want, you can More ❯

packages. Most specifically SFDC but others as well. • Train and coordinate with systems application owners, data custodians, technical leads, and business impact analysts on security standards, guidelines, and vendor risk management of the systems within the organization and sub organizations. • Build relationships with Dynatrace Business Systems application teams. • Create, conduct, and report on security audits and assessments for … all systems applications (custom, SaaS and 3rd Party applications). • Provide guidance and support over the teams and ensure they can meet risk management requirements and industry control frameworks for their systems/applications. • Contribute to the development and implementation of security policies, procedures, and controls. • Serve as a bridge between the Dynatrace business units and the Security … Risk Management organization to promote and facilitate the adaptation and involvement with the Dynatrace Risk Management Framework What will help you succeed Technical skills: Experience with Salesforce (SFDC) implementations and integrations. Experience performing secure application configurations of other large ERP type Software packages. Knowledge of configuration and integration security (API, etc.) for SaaS solutions Understanding Secure More ❯

and family. Working Pattern: Permanent Full Time Flexible First options available The role The role holder is responsible for leading the development and implementation of a standardised cyber security management system, and a governance and reporting mechanism to identify, measure, and monitor cyber risks consistently across the whole of SSE. This includes leading the Group's Principal Risk on cyber security and resilience, strategic sub risks and driving through to the tactical risks and supporting the risk management requirements of the NIS regulations. You will Drive and lead the development and management of the Cyber Security & Resilience Principal Risk, risk appetite and controls framework working in conjunction with Group Risk and … the IT/OT Governance, Risk & Compliance team and all Business Units. Lead the preparations for cyber security governance meetings across SSE and support the creation of content for cyber security papers to Board, Audit Committee and other Executive committees including development of metrics to tell the cyber security story. Work with GRC Risk Analyst and the reporting More ❯

Senior Cyber Security Risk Analyst Berkshire– 4 days per week on site £70- £85,000 + bonus + benefits My client, a leading global manufacturer based in Berkshire are actively looking for Senior Cyber Security Risk Analyst to join their dynamic team. This role is an exciting opportunity to be a part of really helping to define and … shape what governance and risk assurance looks like for the organisation. This will include areas such as building out and developing their education and awareness programme as well as taking ownership over third party assurance. If you are looking for a role where you can be a part of building out something exciting, with a fantastic long term career … path, then this is the role for you! Within this role you will: Lead and evolve the cybersecurity risk management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance More ❯

Senior Cyber Security Risk Analyst Reading - 4 days per week on site £70,000- £85,000 + bonus + benefits My client, a leading global manufacturer based in Berkshire are actively looking for Senior Cyber Security Risk Analyst to join their dynamic team. This role is an exciting opportunity to be a part of really helping to define … and shape what governance and risk assurance looks like for the organisation. This will include areas such as building out and developing their education and awareness programme as well as taking ownership over third party assurance. If you are looking for a role where you can be a part of building out something exciting, with a fantastic long term … career path, then this is the role for you! Within this role you will: Lead and evolve the cybersecurity risk management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and More ❯

Senior Cyber Security Risk Analyst Reading - 4 days per week on site 70,000- 85,000 + bonus + benefits My client, a leading global manufacturer based in Berkshire are actively looking for Senior Cyber Security Risk Analyst to join their dynamic team. This role is an exciting opportunity to be a part of really helping to define … and shape what governance and risk assurance looks like for the organisation. This will include areas such as building out and developing their education and awareness programme as well as taking ownership over third party assurance. If you are looking for a role where you can be a part of building out something exciting, with a fantastic long term … career path, then this is the role for you! Within this role you will: Lead and evolve the cybersecurity risk management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and More ❯

These five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Control management Senior Manager - ServiceNow will be responsible for the following: Shape the development of technology control management including scoping, development of and testing ServiceNow tools for ITRM processes in … DT to allow for an effective, efficient and adaptable risk governance capability and contribute to its continuous improvement. Direct control development across DT, driving a consistent approach utilising the IRM capabilities within ServiceNow. Deliver the DT control library architecture and control data management. Secure commitment from member firms and stakeholders in the global firm to participate in the Technology … assess the member firm's overall IT capability/maturity and to help them establish their own priorities. Keep abreast of new and emerging technologies being deployed and ensure risk assessment processes are appropriately applied and advise on decisions with technology risk impacts as new activities and other change management/transformational initiatives. Leverage available technical resources More ❯

for who they are and what they bring to the table, supporting one another as we continue to deliver for our customers. LI-KS1 Create & Maintain an information security management system (ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the application of established standards including … existing programme of work. Prepare and support internal and/or external compliance audit activities. Manage remediation of any audit (internal & External) non-conformities. Ensure security policies (on a risk-based approach) are produced, signed off by relevant stakeholders, published, and communicated. Also, ensure that policies are managed throughout their lifecycle and updated through yearly or ad-hoc reviews. … in consultation with Technical teams. Lead on providing information to Three UK Customers (B2B) regarding Three UK's security practices. Support proactive and effective oversight of technology and security risk management frameworks, methodologies, processes, assurance, remediation, and reporting activities across the company. Assist in designing, building, and implementing a Technology and Security Risk framework in collaboration with More ❯

Overview At Solus, we believe that strong governance and a proactive approach to risk are essential to delivering excellence. As a Risk & Compliance Analyst, you'll play a key role in shaping how we manage risk, uphold compliance, and embed a culture of accountability across the business. This is a fantastic opportunity to grow your career in … a supportive, forward-thinking environment where your voice will be heard. Responsibilities Risk Management Promote risk awareness and help colleagues integrate risk thinking into everyday activities. Maintain the Risk Register and Risk Universe, ensuring risks are clearly owned, mitigated, and monitored. Facilitate risk evaluation meetings, control assessments, and action planning. Work with Risk & Control Owners to improve internal controls and ensure risks remain within tolerance. Log and manage risk events and issues, escalating and resolving them in a timely manner. Support project and IT change initiatives with risk oversight. Contribute to the annual Risk Survey, Company Risk Assessment, and resilience planning. Compliance & Governance Oversee company policies and manage More ❯

Overview At Solus, we believe that strong governance and a proactive approach to risk are essential to delivering excellence. As a Risk & Compliance Analyst, you'll play a key role in shaping how we manage risk, uphold compliance, and embed a culture of accountability across the business. This is a fantastic opportunity to grow your career in … a supportive, forward-thinking environment where your voice will be heard. Responsibilities Risk Management Promote risk awareness and help colleagues integrate risk thinking into everyday activities. Maintain the Risk Register and Risk Universe, ensuring risks are clearly owned, mitigated, and monitored. Facilitate risk evaluation meetings, control assessments, and action planning. Work with Risk & Control Owners to improve internal controls and ensure risks remain within tolerance. Log and manage risk events and issues, escalating and resolving them in a timely manner. Support project and IT change initiatives with risk oversight. Contribute to the annual Risk Survey, Company Risk Assessment, and resilience planning. Compliance & Governance Oversee company policies and manage More ❯

Flexible First options available The role The Head of Cyber Security for our Energy Customer Solutions (ECS) business will champion and deliver the day-to-day cyber security strategy, risk management and human behaviours for the ECS business unit. ECS is SSE's 'shopfront' - providing energy and low carbon solutions to over 1.3 million customers in GB and … Ireland. The role holder will advise on cyber security input and assurance into agile system delivery and product management of systems. They will drive and manage compliance with the NIS and NIS2 regulatory requirements and will provide specialist support into any cyber transformation initiatives. You will Drive, influence and embed the cyber security strategy, risk management and … demand. This includes the co-ordination of cyber security requirements, engagement with stakeholders and use of standard architecture patterns and planning of assurance. Champion cyber security and lead specific risk assessments and strategic initiatives as required including pushing awareness, behaviours and culture. Work with peer Heads of Cyber Security to align and challenge cyber security risk positions to More ❯

we move towards our vision of being a leading energy company in a net zero world. EM plays a critical role as the asset optimiser, route to market and risk management function for all SSE's Business Units (Wind, Hydro, Low Carbon Thermal, Distributed Energy and Customer portfolios). EM enables SSE to focus its expertise and capabilities … in energy markets (including Trading, Risk Management, Energy Economics and Advanced Analytics) in one centre of excellence and, with these enhanced capabilities, support value creation and decision-making across the SSE Group. The Role We're looking for a hands-on Senior IT Solutions Architect who thrives in a fast-paced Energy trading environment. You'll be instrumental … consistency across multiple initiatives. You Have Proven experience as a Solutions Architect in energy trading or financial services with a deep understanding of trading systems, market data and forecasting, risk management, and real-time processing. Strong background in software engineering with hands-on experience in modern programming languages (e.g., Python, C#, Java). Experience with cloud platforms (Azure More ❯

compliance with UK Corporate Governance Code, Companies Act, and competition law. Maintain governance frameworks, statutory filings, and compliance controls. Support due diligence, KYC processes, and policy updates. Assist with risk management and regulatory reporting. Lead automation and streamlining of governance processes. Stakeholder Engagement Liaise with shareholders, senior management, and legal advisors. Ensure compliance sign-offs and facilitate … effective communication between key stakeholders. Build strong relationships with compliance, legal, and risk teams. Reporting & Risk Management Contribute to monthly reporting, maintain the corporate risk register, and support implementation of mitigation strategies. Insurance Administer company insurance coverage and compliance in coordination with the risk team. People Management Manage team performance, workload, and development. Act … as escalation point and ensure high standards are maintained. Person Specification: Required: Company Secretarial knowledge. Understanding of competition law. Relevant qualification in Corporate Governance. Strong organisational and time management skills. Excellent communication, attention to detail, and confidentiality. Proactive team player with analytical and problem-solving skills. Knowledge of UK company law and governance. Experience in compliance or corporate governance. More ❯

the role Manage commercial activities for complex multi-domain bids. In a support role to sales, create structure and negotiate commercial and financial structure of bids with minimal residual risk, to address customer needs as well as Orange Business financial and business objective, in conjunction with policy requirements. Key accountabilities Advisor with significant experience and ability to support structuring … presentations to internal and external executives. In support of Sales, and in coordination with Legal, Finance and Solutions teams, create, structure and negotiate (internally and externally) commercial, financial and risk structure of bids from qualification through to customer proposal submission, negotiation and contract signature. In support of commercial structure inclusive of: Customer & Opportunity discovery & assessment including due diligence; Partnership …/vendor management/third party flow-down/flow-up; Heads of Agreements/MOU/LOI ; Technology refresh; Termination & termination liability; Penalties and liabilities; Governance model; Migration planning; Change management Key result/decision areas (outcomes) Risk is understood and mitigated through design and negotiation of business terms and conditions, and linked to the business More ❯

five shared values lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The Technical Cyber Risk Assessment Manager will be responsible for the following: Develop an understanding of Deloitte's global line of business and its priorities, becoming an advocate for addressing cyber risk. Demonstrate … familiarity with the Three Lines of Defense (3LOD) model. Possess knowledge of risk management practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security … reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest More ❯

company, we are taking action for a new world of water - fixing the problems of today and building resilience for tomorrow. The Asset, Operations & Capital Delivery (AO&CD) Portfolio Management Office (PMO) is designed as a 'hub and spoke' delivery model. This model enables the 'Hub' PMO to provide critical delivery and enabling PMO services and the 'Spoke' PMOs … in Asset Management & Engineering (AM&E), Capital Delivery (CD) and Renewals & Logistics (R&L) to drive standardised delivery across the AO&CD Project Lifecycle and enable the AMP8 Strategic Sponsor delivery model. We are recruiting for a number of new roles within the PMO office - if you have the skills and the passion for any of the below roles … then please press the apply button! Cost Controller - Baseline Management - Provide key support in cost control and reporting across programmes, helping maintain cost integrity, enable data-driven decisions, and uphold baseline change control for AMP8. Cost Controller - Controls - Assist in driving cost performance reporting and analysis for the five-year business plan, providing actionable insights from complex data while More ❯

company, we are taking action for a new world of water - fixing the problems of today and building resilience for tomorrow. The Asset, Operations & Capital Delivery (AO&CD) Portfolio Management Office (PMO) is designed as a 'hub and spoke' delivery model. This model enables the 'Hub' PMO to provide critical delivery and enabling PMO services and the 'Spoke' PMOs … in Asset Management & Engineering (AM&E), Capital Delivery (CD) and Renewals & Logistics (R&L) to drive standardised delivery across the AO&CD Project Lifecycle and enable the AMP8 Strategic Sponsor delivery model. We are recruiting for a number of new roles within the PMO office - if you have the skills and the passion for any of the below roles … then please press the apply button! Cost Controller - Baseline Management - Provide key support in cost control and reporting across programmes, helping maintain cost integrity, enable data-driven decisions, and uphold baseline change control for AMP8. Cost Controller - Controls - Assist in driving cost performance reporting and analysis for the five-year business plan, providing actionable insights from complex data while More ❯

of data classification methodologies to ensure appropriate protection based on sensitivity and importance. The role will be based in Reading and will report directly to the Head of Governance, Risk and Compliance, working to deliver the company's goals for a fit-for-purpose critical asset and classification framework. This is a role that requires independence, a proactive approach … classify data assets based on sensitivity, criticality, and business importance. Security Controls Monitoring: Assign and monitor appropriate security controls aligned with system criticality and data classification standards. Asset Register Management: Maintain and periodically review registers for both critical information systems and information assets. Cross-functional Collaboration: Collaborate with business and digital teams to identify, score, and categorise critical assets … and ensure alignment with strategic security objectives. Compliance & Best Practice: Ensure data classification and asset management practices align with regulatory requirements and industry standards. Awareness & Training: Educate stakeholders and employees on data classification standards and practices. Exception Management: Track and manage exceptions to classification or control frameworks and report progress to senior management. Base Location: Hybrid - Clearwater Court More ❯

Services, Software and Infrastructure for Schools), Assessment (Software and Services) and TTS (Educational Resources). Within theassessment marketwe are experts inproviding solutions foronline exam testing and marking and the management and analysis of educational data. We work with government ministries, exam boards and professional awarding bodies for high stakes assessment such as GCSEs, ALevels,and professional qualifications. Each year … commitments. They will be an expert in using digital technologies to deliver new and enhanced products using agile methodologies. With a background in technology, they are responsible for delivery management of bespoke software products using internal and third-party software development, architecture, quality assurance and infrastructure teams. The Technical Delivery Manager will work with customer facing Project Managers and … RM business delivery teams to plan and deliver change or resolve technical challenges in software development, quality assurance and infrastructure. Responsibilities Technical Delivery - Planning Working with customer facing Project Management and Solution Architecture, Product Management, Technical Architecture & Infrastructure, analyse customer/investment change programmes to identify technology deliverables, milestones, and required activities and tasks. Build the operational delivery More ❯

and suppliers may need to take in order to mitigate the risks To engage and inform managerial staff from clinical areas on progress and of any barriers likely to risk the success of the project. To contribute toward the collation and analyse of audit results and apply them to improve practice. To explore opportunities for the introduction of new … negotiator Energetic and motivated for the role Registered Midwife with a current NMC registration and with relevant degree qualification Demonstrable understanding of informatics within the organisation Recognised leadership/management qualification or equivalent experience Ability to write papers at board level with effective presentation skills Master's degree in risk, governance and patient safety or equivalent (or relevant … Active involvement in at least one informatics intervention to improve care quality Proven ability to engage effectively with a broad range of stakeholders and in a multi-professional environment Risk management: training and experience in risk management sufficient to understand potential risks from informatics solutions from a clinical perspective Understanding of the local, regional and national More ❯

of specialist metering technology for electricity, gas and water along with highly accurate energy data collection services. All this is wrapped up with an easy-to-view online data management analysis and reporting software. PURPOSE OF ROLE: The Project Manager will be responsible for planning, managing, and delivering projects across different business functions. They will ensure projects meet objectives … projects. Work as part of the wider PMO to support the implementation of best practices and creation of IMServs delivery methodologies. PERSON SPECIFICATION: Knowledge & Qualifications Proven understanding of project management methodologies (e.g. Agile, Waterfall, PRINCE2) Proficiency in project management tools such as Microsoft Project, Trello, Jira or equivalent Strong knowledge of project planning, budgeting, and risk management Excellent communication and stakeholder management skills Ability to manage multiple projects simultaneously to successful completion (Desirable) Hold a recognized Project Management certification (e.g. PRINCE2, PMP, CAPM) Skills Project Planning & Scheduling Ability to define project scope, timelines, and deliverables using tools like MS Project or equivalent Risk & Issue Management Proactively identify, assess, and mitigate project risks More ❯

Job Description, Quality Compliance Executive, ISO 9001, 14001, 22301, 27001, PCI-DSS Are you passionate about quality systems, compliance, and risk management? Our client, a market leader in their sector, is seeking a dynamic Quality Compliance Executive to support the continuous improvement of operational processes and ensure full regulatory and certification compliance across the business. Key Responsibilities, Quality … ongoing colleague training across quality, security, environmental and privacy standards. Continuous Improvement Support the CISO in promoting a culture of ongoing improvement and accountability across all teams. ISO & Certification Management Act as the operational lead for maintaining ISO and other key certifications (e.g. ISO 9001, 14001, 22301, 27001, PCI-DSS). Liaise with external certification bodies, coordinate annual audit … calendars, and prepare internal teams accordingly. Maintain and manage Group-wide Risk Registers, escalating compliance risks as needed. Facilitate audit readiness by ensuring consistent communication and preparedness across the business. Person Profile, Quality Compliance Executive Demonstrated experience in managing ISO or related certifications. Strong background in process management, regulatory compliance, and internal auditing. BSc.or Bachelor's degree in More ❯

contact, within the framework of integrated Cyber governance including Data Privacy, Ethics & Compliance, Environmental & industrial risks and Safety Activate & integrate cybersecurity "by design" in all technology projects, in particular: Risk analysis and definition of associated mitigation measures, and Ensuring that these mitigation measures are properly implemented, and validating them for any project involving critical assets Monitor the performance of … cybersecurity suppliers and services, ensure Cyber Security Insurance is appropriate to meet UK requirements Participate in the management of major Cyber incidents and crisis concerning technology assets, monitor and implement associated action plans Raise awareness of Cyber risks, particularly among Division/UK top management and Technology contacts (development security, application security Deploy a Cyber Essentials Plus program … multi-site environments that have operational technology elements. CISSP (Certified Information Systems Security Professional) Microsoft certifications and/or network qualifications ITIL Foundation Must have a sound knowledge of risk management, compliance frameworks, integrating security into projects, developing and monitoring indicators and executing action plans. Must have a sound knowledge of risk management, compliance frameworks, integrating More ❯

we move towards our vision of being a leading energy company in a net zero world. EM plays a critical role as the asset optimiser, route to market and risk management function for all SSE's Business Units (Wind, Hydro, Low Carbon Thermal, Distributed Energy and Customer portfolios). EM enables SSE to focus its expertise and capabilities … in energy markets (including Trading, Risk Management, Energy Economics and Advanced Analytics) in one centre of excellence and, with these enhanced capabilities, support value creation and decision-making across the SSE Group. The role As a Senior DevOps Engineer, you'll join a team of developers working in Agile practices to modernise SSE Energy Markets IT practices. We … cost efficiency and adherence to best practices. Build and maintain CI/CD pipelinesusing tools like Azure DevOps and GitHub Actions, collaborating closely with development teams to streamline release management and accelerate delivery. Drive automation, security, and compliance, optimising infrastructure, reducing manual tasks, maintaining documentation, supporting ITIL processes, and participating in on-call rotations for critical system support. You More ❯

we move towards our vision of being a leading energy company in a net zero world. EM plays a critical role as the asset optimiser, route to market and risk management function for all SSE's Business Units (Wind, Hydro, Low Carbon Thermal, Distributed Energy and Customer portfolios). EM enables SSE to focus its expertise and capabilities … in energy markets (including Trading, Risk Management, Energy Economics and Advanced Analytics) in one centre of excellence and, with these enhanced capabilities, support value creation and decision-making across the SSE Group. The Role The main purpose of the Delivery Lead role is to lead end-to-end delivery of the full product lifecycle and product roadmaps for More ❯