1 to 25 of 38 Remediation Plan Jobs in the UK

new projects or systems. Collaborate with IT and engineering teams to identify, address, and continuously improve security control effectiveness. Oversee the management of external security assessments and ensure remediation plans are executed effectively. Maintain relevant security certifications such as Cyber Essentials/Plus and support the business in aligning with broader security frameworks (e.g., NIST CSF, CIS Controls More ❯

integrate with SIEM/SOAR to deliver actionable alerts and playbooks for engineering-led incident response. Threat Modeling & Risk Assessment - Conduct regular architecture and code-level reviews, drive remediation plans, and present risk posture to leadership. Tooling & Automation - Evaluate, select, and integrate security tooling (SAST, DAST, SCA, container scanners, CSPM, CWPP) and champion IaC/Terraform modules for More ❯

Global Technology Officer (GTO) to attest compliance with the Global IT Risk Management Framework and legal entity regulatory requirements. • Design and implement IT risk controls, mitigation strategies, and remediation plans. • Establish IT risk management policies and procedures, ensure their implementation. • Define key risk indicators (KRIs), key performance indicators (KPIs) and SLAs for IT risk management. • Test critical applications More ❯

control frameworks (e.g., NIST, ISO 27001, COBIT). Deep understanding of IT general controls, cyber security principles, and technology risk domains. Experience in control ownership, control testing, and remediation planning. Familiarity with GRC platforms and control lifecycle management. Experience in a risk management, IT audit, or cyber security role within a financial services or regulated environment. Excellent communication More ❯

with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response . Support regulatory and internal audits, contributing More ❯

new technology introduced is evaluated. Research industry trends and regulatory requirements. Lead the Security Architecture evaluation of risks identified in systems, including reviewing, and proposing tactical and strategic remediation plans, and evaluation of the cost/risk benefits of remediations. Actively contribute to the adoption of secure by design practices, with technical delivery teams for both existing systems More ❯

Cloud, Microsoft Sentinel, Azure AD etc). Solid understanding of security frameworks (e.g., ISO 27001, Cyber Essentials, NIST, GDPR etc). Experience with vulnerability scanning, risk assessment, and remediation planning. Strong communication skills with the ability to work with both technical and non-technical teams. A proactive approach to identifying and addressing security risks. What's on Offer More ❯

Cloud, Microsoft Sentinel, Azure AD etc). Solid understanding of security frameworks (e.g., ISO 27001, Cyber Essentials, NIST, GDPR etc). Experience with vulnerability scanning, risk assessment, and remediation planning. Strong communication skills with the ability to work with both technical and non-technical teams. A proactive approach to identifying and addressing security risks. What's on Offer More ❯

and enhance Group Policy Objects (GPOs) and configuration baselines. Ensure compliance with cybersecurity policies , regulatory requirements, and internal standards. Participate in audit and risk assessments , providing documentation and remediation plans as needed. Mentor junior engineers and contribute to knowledge sharing across the team. Required Skills & Experience: Extensive desktop engineering experience, preferably in Investment Banking . Expert-level knowledge More ❯

leading the charge on modern, cloud-first security strategy. Responsibilties: Designing and implementing robust security policies, controls, and infrastructure protection strategies. Leading vulnerability management efforts, penetration testing, and remediation plans. Monitoring and investigating security events, managing incident response processes end-to-end. Ensuring compliance with security standards such as ISO 27001 and supporting audits and certifications. Collaborating across More ❯

stakeholders to develop and implement data standards for EMEA Data. Participate in data governance forums to enhance the Bank-wide governance framework. Investigate Data Quality Issues and develop remediation plans. Maintain consistent communication with teams to report progress, risks, and issues. Knowledge, Skills, Experience & Qualifications: Essential: Strong knowledge of Transactional Data types and Bank Products. Expertise in data More ❯

stakeholders to develop and implement data standards for EMEA Data. Participate in data governance forums to enhance the Bank-wide governance framework. Investigate Data Quality Issues and develop remediation plans. Maintain consistent communication with teams to report progress, risks, and issues. Knowledge, Skills, Experience & Qualifications: Essential: Strong knowledge of Transactional Data types and Bank Products. Expertise in data More ❯

security incident response with SOC, Threat Intelligence, and Red/Blue teams. Engage with technical and business teams on cyber risk reduction strategies. Contribute to vulnerability management and remediation plans. Required Skills & Experience Proven experience managing DFIR or cyber incident response teams. Deep technical knowledge of IR and forensic analysis (eg Wireshark, packet capture, host-based artifacts). More ❯

processes. Cloud cost optimisation while maintaining performance standards. Continuous improvement through technology evaluation and personal development. Onboarding and integration of new partner firms, including IT due diligence and remediation planning. Provision of quality 3rd line technical support and escalation handling. Accurate issue tracking and resolution documentation. Time and workload management across multiple incidents. Occasional travel and out-of More ❯

experience working on IT security-related issues. Management or supervisory experience. Experience in managing and motivating technical teams Ability to understand vulnerability scans and penetration tests and develop remediation plans. Experience developing and implementing cyber security policies, processes, and procedures. Experience managing phishing simulation & training and awareness campaigns. Experience with vulnerability scanning, incident response, and third-party risk … experience working on IT security-related issues. oManagement or supervisory experience. oExperience in managing and motivating technical teams oAbility to understand vulnerability scans and penetration tests and develop remediation plans. oExperience developing and implementing cyber security policies, processes, and procedures. oExperience managing phishing simulation & training and awareness campaigns. oExperience with vulnerability scanning, incident response, and third-party risk More ❯

and procedural guidelines aligned with policy standards. Collaborate with account owners and Markets Operations teams to resolve issues and ensure policy adherence. Conduct root cause analysis and develop remediation plans for aged exceptions, maintaining effective monitoring controls. Analyze and report on key performance and risk indicators; prepare materials for senior management review. Identify and mitigate project risks, escalating More ❯

and application owners to address identified vulnerabilities and implement necessary patches or configuration changes. - Develop and maintain a comprehensive vulnerability management program, including vulnerability tracking, risk assessment, and remediation planning. Stakeholder Collaboration: - Act as a stakeholder for the response team, providing expert guidance on security-related alerts, incidents, and potential improvements. - Collaborate with cross-functional teams, including network More ❯

of supporting operating model, including definition of ongoing escrow responsibilities for impacted roles. Define records management and best practice reporting/governance of escrow arrangements. Develop remediation plan to ensure critical Third Party services have adequate escrow arrangements in place. Work closely with key stakeholders such as legal, procurement, technology, and external escrow agents to embed improved … experience of best practices in Supplier Relationship Management (SRM) principles. Essential Skillset Hands on approach with strong analysis skills and ability to consume complex inputs and turn into sensible plan of action. Self-starter, independent and willing to self-define and drive required outcomes to achieve objectives. Excellent cross stakeholder management, communication, presentation and influencing skills. More ❯

assessments for new and existing systems and projects Leading external risk reviews for supply chain and third parties Maintaining and reviewing the cyber risk register, ensuring controls and remediation plans are in place and effective. Tracking and escalating cyber risk activities, ensuring timely action from stakeholders. Collaborating with business units to enhance control processes in line with the More ❯

provide clear visibility of the process mapping journey. Document methodology, inputs, owners, and approvers for mapping and reporting processes. Continuously improve process mapping to identify vulnerabilities and drive remediation plans. Understand vulnerabilities and downstream impacts affecting service delivery. Experience in scenario testing to identify resilience gaps, including research, documentation, assessment, facilitation, and reporting. Required Skills: Experience in end More ❯

helping to develop, test, and roll out reports to end users. Provide ongoing support for the production and delivery of these reports. Take ownership of incidents and define remediation plans, with the support of the wider team, to ensure production issues are resolved in line with WRBU's triage process. Data Validation : Assist in developing, implementing, and embedding More ❯

helping to develop, test, and roll out reports to end users. Provide ongoing support for the production and delivery of these reports. Take ownership of incidents and define remediation plans, with the support of the wider team, to ensure production issues are resolved in line with WRBU's triage process. Data Validation : Assist in developing, implementing, and embedding More ❯

of supporting operating model, including definition of ongoing escrow responsibilities for impacted roles. Define records management and best practice reporting/governance of escrow arrangements. Develop remediation plan to ensure critical Third Party services have adequate escrow arrangements in place. Work closely with key stakeholders such as legal, procurement, technology, and external escrow agents to embed improved … experience of best practices in Supplier Relationship Management (SRM) principles. Essential Skillset Hands on approach with strong analysis skills and ability to consume complex inputs and turn into sensible plan of action. Self-starter, independent and willing to self-define and drive required outcomes to achieve objectives. Excellent cross stakeholder management, communication, presentation and influencing skills. More ❯

and ongoing risk assessments of third-party vendors, ensuring compliance with industry standards and best practices. Develop and maintain ongoing monitoring mechanisms for third-party risks, ensuring timely remediation of identified issues. Conducting in-depth supplier IT risk assessments by reviewing supplier answers to the cyber supplier questionnaire, documenting controls and identifying gaps and inconsistencies. Developing a new … to train other models. Conducting specific risk assessments on suppliers utilizing OT, IoT, and ML technologies to ensure compliance with data protection and regulatory requirements. Developing and implementing remediation plans for identified security gaps working directly with vendors to enforce corrective actions Maintaining detailed records of vendor assessments, risk profiles and mitigation plans to ensure transparency and regulatory More ❯

Principal Responsibilities • Collaborate with technical and business teams to address security flaws and implement remediation plans. • Oversee application security tasks, ensuring alignment with audit requirements and internal policies. • Support change and incident management processes, with a focus on high-priority incidents (P1 & P2). • Provide guidance to development and support teams on security-related ticket requirements and process … Experience with automated and manual methods for evaluating security controls in both on-prem and cloud environments Experience in monitoring and reporting on security flaws and supporting related remediation activities Familiarity with change management processes in technology environments Risk, Controls & Compliance Contribute to accurate statistical reporting on the market's IT security posture Ensure first line of defence … exception justifications, mitigation controls, and risk documentation Ensure accuracy and timely completion of control testing and remediations Collaborate with Security Partners, RISOs and other governance functions to drive remediation of identified security deficiencies Ability to compile management reports and presentations on technical risks, controls, and deficiencies Communication & Collaboration Strong ability to communicate complex information clearly and effectively Good More ❯