1 to 25 of 183 Risk Assessment Jobs in the UK

bonus and benefits Hybrid working available (3 days in the office) Our client, a dynamic and rapidly growing UK-based EMI FinTech Payments firm, is seeking an experienced Enterprise Risk Analyst to support their Head of Risk. This is a focused Enterprise Risk Analyst role dedicated entirely to the Second Line of Defence (2LOD), centred on embedding the … firm’s Governance, Risk, and Compliance (GRC) model. You will be instrumental in the day-to-day operation of the ERM framework, ensuring risk is managed consistently and strategically across the entire business. Duties of the Enterprise Risk Analyst to include: Risk Register Management: Own the central Risk Register , ensuring all key risks (Strategic, Financial … Operational, and Compliance) are accurately identified, assessed, and maintained. Risk Assessment Cycle: Facilitate and manage the formal Risk and Control Self-Assessment (RCSA) process across all business units. Control Framework: Maintain and evolve the company’s Risk Control Framework , ensuring controls are effective and aligned with the established risk appetite. Residual Risk Analysis More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible … for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The function … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Cyber Security Supply Chain Analyst Location: Remote Contract: Inside IR35 Day rate: Up to £670 per day Duration: 6 Months Start date: ASAP Key skills: Supply Chain, Risk Management, TPRM process, NCSC CAF framework We have an opportunity with one of the UK's biggest Retailers who have a network of branches nationwide. MI & Data Automation Analyst, you will … and wider business functions responsible for facilitating supplier onboarding, operational management and offboarding activities, to review, establish and drive adoption of a revised target operating model for supplier security risk management. The goal is to ensure that the Client has a robust and continually managed enterprise-wide supplier cyber risk assessment process to reduce exposure to potential … compromise of security, compliance or operational integrity of its supply chain. Principal accountabilities: - Key point of contact and subject matter expertise for third-party risk guidance - Oversee the review of target supply chain risk assessment processes, establishing agreed recommendations and operating model in accordance with the National Cyber Security Centre Cyber Assessment Framework principles - Product and More ❯

lead the SME lending operations and capital markets strategy of our business. This role will be responsible for orchestrating the end-to-end lending lifecycle, structuring funding strategies, managing risk, and cultivating investor and capital market relationships. You will ensure that our lending portfolio grows in a disciplined fashion while ensuring capital sufficiency, compliance, and profitability. What do we … want to achieve together? Lending Operations & Strategy Define and execute the lending strategy for SMEs aligned with business goals and market dynamics Oversee origination, underwriting, credit assessment, approval, documentation, disbursement, and servicing of loans Develop credit policies, guidelines, scoring models, and risk frameworks Monitor portfolio performance, credit quality, delinquencies, provisions, and take corrective actions when needed Lead a … Ensure compliance with regulatory and reporting requirements for capital markets instruments Forecast capital needs, liquidity, cash flow, and funding gaps Lead negotiations, structuring, and issuance of capital markets transactions Risk Management & Governance Oversee risk measurement and management: credit risk, market risk, liquidity risk, operational risk Implement and maintain models and metrics (e.g. stress testing More ❯

SARIA Food & Pharma Business Continuity Management System (BCMS), ensuring alignment with ISO22301, ISO27001 and any other relevant industry standards and regulatory requirements Oversee the Business Impact Analysis (BIAs) and risk assessment process to identify critical business processes and systems and determine the potential impact of disruptions. Evaluate and contribute to the development and maturing of risk mitigation … strategies based on comprehensive risk modelling. Coordinate the development of crisis management and business continuity plans, aligning with key stakeholders to ensure engagement and awareness in key business areas Organise and facilitate business continuity and crisis management exercises, including developing remediation plans and process improvements resulting from exercise results. Training team members on business continuity and crisis management topics. … Support the development and management of a security risk framework, aligning with the enterprise risk management approach. Support the development and delivery of compliance training and awareness, foster a culture of risk awareness and accountability across the organisation. Provide advice to stakeholders on business continuity and disaster recovery topics. About you Knowledge and experience in ISO22301 and More ❯

SARIA Food & Pharma Business Continuity Management System (BCMS), ensuring alignment with ISO22301, ISO27001 and any other relevant industry standards and regulatory requirements Oversee the Business Impact Analysis (BIAs) and risk assessment process to identify critical business processes and systems and determine the potential impact of disruptions. Evaluate and contribute to the development and maturing of risk mitigation … strategies based on comprehensive risk modelling. Coordinate the development of crisis management and business continuity plans, aligning with key stakeholders to ensure engagement and awareness in key business areas Organise and facilitate business continuity and crisis management exercises, including developing remediation plans and process improvements resulting from exercise results. Training team members on business continuity and crisis management topics. … Support the development and management of a security risk framework, aligning with the enterprise risk management approach. Support the development and delivery of compliance training and awareness, foster a culture of risk awareness and accountability across the organisation. Provide advice to stakeholders on business continuity and disaster recovery topics. About you Knowledge and experience in ISO22301 and More ❯

digital estate, encompassing enterprise IT, operational technology (OT), and research platforms. This role sits within the Information & Cyber Security Group and provides subject matter expertise in security architecture, cyber risk governance, and assurance frameworks. This is a cross-functional role with both advisory and hands-on responsibilities, focusing on security assurance, risk management and supporting architecture reviews, vulnerability … management, risk assessments, cyber defence posture, driving technical assurance, and embedding risk-aligned security controls across IT and OT systems and secure-by-design practices. You will work across hybrid environments including cloud, infrastructure, applications, and OT systems. You will be responsible for designing and advising on security architecture patterns, reviewing and maintaining risk registers, leading assurance … Cyber Essentials (CE and CE+) while supporting the secure operation of core services. The role requires strong stakeholder engagement, technical depth, and a sound understanding of UK-specific cyber risk frameworks. You will help shape and maintain a secure posture across UKAEA. A degree in Cybersecurity, Information Technology, or a STEM subject (or equivalent experience). Essential o Security More ❯

Primary Details Time Type: Full time Worker Type: Employee The purpose of this role is to enhance risk assessment and decision-making processes through the provision of advanced risk modelling analytics. This is achieved through engaging with business stakeholders to define requirements and combining this Accumulation Management expertise and knowledge of data sets. Senior Cyber Risk … as a leading resource on cyber accumulations, providing expert guidance and insights to internal teams and external stakeholders. Collaborate with Global Cyber team other divisional stakeholders to develop effective risk mitigation strategies and optimize risk management processes. Collect, validate, and analyse large datasets related to cyber risks, ensuring data accuracy and reliability. Present findings in a clear and … QBE’s proprietary view of risk. Work closely with cross-functional teams, including Global Cyber team, underwriting, actuarial, and claims, to ensure a holistic understanding of the company's risk landscape. Communicate effectively with external stakeholders, including reinsurers and regulatory bodies, to maintain transparency and compliance with industry standards. Stay abreast of the latest developments in cyber modelling, risk More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯

offices (and 10 delivery centers) across four continents. Job Overview We are seeking a highly skilled and detail-oriented Python Data Engineer to join our dynamic audit and risk technology team. Based fully onsite in our Birmingham office , you will play a critical role in designing, developing, and maintaining data solutions that support audit, risk assessment, and … skills, and the ability to collaborate effectively with cross-functional teams. Key Responsibilities Data Modeling & Architecture Design, develop, and maintain logical and physical data models to support audit and risk assessment activities. Utilize data modeling tools (e.g., Erwin, Visio, Lucidchart ) to create and maintain models that reflect business and technical requirements. Data Engineering & Pipelines Build, optimize, and maintain … on relational and NoSQL platforms. Analytics & Reporting Develop and implement reporting and analytics using Python, SQL, and Tableau . Create interactive dashboards that clearly present insights, audit findings, and risk assessments. Collaboration & Analysis Work closely with auditors, stakeholders, and IT teams to gather data requirements and ensure technical solutions align with audit objectives. Perform comprehensive data analysis, validation, and More ❯

providing strategic guidance on delivery timelines and client priorities. Expert Advisory & Consulting Post-Adaptation Strategy: Deliver high-level consulting and advice on post-adaptation strategies, helping clients transition from risk assessment to actionable, long-term resilience plans. Regulatory Guidance: Serve as an expert on emerging sustainability regulations, including TCFD, CSRD, and IFRS S2, guiding clients through compliance related … to physical risk. Physical Risk Assessment: Oversee or conduct high-level physical risk assessments, scenario modeling, and vulnerability analysis for clients. Product Co-Development Product Input: Leverage deep client needs and market expertise to co-develop the next generation of our SaaS product. Translating Expertise: Translate client challenges and emerging market needs into clear, functional requirements for More ❯

think innovatively, and listen to each other and customers in meaningful ways. Moody's is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, we're advancing AI to move from insight to action-enabling intelligence that not only understands complexity but responds to it. We decode risk to unlock … into actions, and uphold trust through integrity. The Director, Tech Advisory is a senior leader within Moody's Insurance Business Unit, responsible for shaping the future of insurance analytics, risk management, and workflow transformation. You will lead a high performing team of technical architects, specialists, and developers, delivering innovative solutions that redefine client risk workflows and unlock new … and market innovators - you will design and demonstrate cutting edge architectures, proof of concept analytics, and migration strategies that help clients realize the full potential of Moody's Intelligent Risk Platform (IRP) and broader risk and data offerings. This is both a strategic and hands on role: you will champion best practices, enforce technical and architectural standards, and More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯

team and work on client and internal projects. Key Skills and Experience: 7+ years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and More ❯