1 to 25 of 83 Remote Risk Assessment Jobs in the UK

bonus and benefits Hybrid working available (3 days in the office) Our client, a dynamic and rapidly growing UK-based EMI FinTech Payments firm, is seeking an experienced Enterprise Risk Analyst to support their Head of Risk. This is a focused Enterprise Risk Analyst role dedicated entirely to the Second Line of Defence (2LOD), centred on embedding the … firm’s Governance, Risk, and Compliance (GRC) model. You will be instrumental in the day-to-day operation of the ERM framework, ensuring risk is managed consistently and strategically across the entire business. Duties of the Enterprise Risk Analyst to include: Risk Register Management: Own the central Risk Register , ensuring all key risks (Strategic, Financial … Operational, and Compliance) are accurately identified, assessed, and maintained. Risk Assessment Cycle: Facilitate and manage the formal Risk and Control Self-Assessment (RCSA) process across all business units. Control Framework: Maintain and evolve the company’s Risk Control Framework , ensuring controls are effective and aligned with the established risk appetite. Residual Risk Analysis More ❯

lead the SME lending operations and capital markets strategy of our business. This role will be responsible for orchestrating the end-to-end lending lifecycle, structuring funding strategies, managing risk, and cultivating investor and capital market relationships. You will ensure that our lending portfolio grows in a disciplined fashion while ensuring capital sufficiency, compliance, and profitability. What do we … want to achieve together? Lending Operations & Strategy Define and execute the lending strategy for SMEs aligned with business goals and market dynamics Oversee origination, underwriting, credit assessment, approval, documentation, disbursement, and servicing of loans Develop credit policies, guidelines, scoring models, and risk frameworks Monitor portfolio performance, credit quality, delinquencies, provisions, and take corrective actions when needed Lead a … Ensure compliance with regulatory and reporting requirements for capital markets instruments Forecast capital needs, liquidity, cash flow, and funding gaps Lead negotiations, structuring, and issuance of capital markets transactions Risk Management & Governance Oversee risk measurement and management: credit risk, market risk, liquidity risk, operational risk Implement and maintain models and metrics (e.g. stress testing More ❯

SARIA Food & Pharma Business Continuity Management System (BCMS), ensuring alignment with ISO22301, ISO27001 and any other relevant industry standards and regulatory requirements Oversee the Business Impact Analysis (BIAs) and risk assessment process to identify critical business processes and systems and determine the potential impact of disruptions. Evaluate and contribute to the development and maturing of risk mitigation … strategies based on comprehensive risk modelling. Coordinate the development of crisis management and business continuity plans, aligning with key stakeholders to ensure engagement and awareness in key business areas Organise and facilitate business continuity and crisis management exercises, including developing remediation plans and process improvements resulting from exercise results. Training team members on business continuity and crisis management topics. … Support the development and management of a security risk framework, aligning with the enterprise risk management approach. Support the development and delivery of compliance training and awareness, foster a culture of risk awareness and accountability across the organisation. Provide advice to stakeholders on business continuity and disaster recovery topics. About you Knowledge and experience in ISO22301 and More ❯

SARIA Food & Pharma Business Continuity Management System (BCMS), ensuring alignment with ISO22301, ISO27001 and any other relevant industry standards and regulatory requirements Oversee the Business Impact Analysis (BIAs) and risk assessment process to identify critical business processes and systems and determine the potential impact of disruptions. Evaluate and contribute to the development and maturing of risk mitigation … strategies based on comprehensive risk modelling. Coordinate the development of crisis management and business continuity plans, aligning with key stakeholders to ensure engagement and awareness in key business areas Organise and facilitate business continuity and crisis management exercises, including developing remediation plans and process improvements resulting from exercise results. Training team members on business continuity and crisis management topics. … Support the development and management of a security risk framework, aligning with the enterprise risk management approach. Support the development and delivery of compliance training and awareness, foster a culture of risk awareness and accountability across the organisation. Provide advice to stakeholders on business continuity and disaster recovery topics. About you Knowledge and experience in ISO22301 and More ❯

Primary Details Time Type: Full time Worker Type: Employee The purpose of this role is to enhance risk assessment and decision-making processes through the provision of advanced risk modelling analytics. This is achieved through engaging with business stakeholders to define requirements and combining this Accumulation Management expertise and knowledge of data sets. Senior Cyber Risk … as a leading resource on cyber accumulations, providing expert guidance and insights to internal teams and external stakeholders. Collaborate with Global Cyber team other divisional stakeholders to develop effective risk mitigation strategies and optimize risk management processes. Collect, validate, and analyse large datasets related to cyber risks, ensuring data accuracy and reliability. Present findings in a clear and … QBE’s proprietary view of risk. Work closely with cross-functional teams, including Global Cyber team, underwriting, actuarial, and claims, to ensure a holistic understanding of the company's risk landscape. Communicate effectively with external stakeholders, including reinsurers and regulatory bodies, to maintain transparency and compliance with industry standards. Stay abreast of the latest developments in cyber modelling, risk More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant risk mitigations and deal with multiple stakeholders to ensure end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will … the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with other teams such as Privacy, Legal, Group Risk, Infrastructure, SecOps and Procurement, providing you with great opportunities for stakeholder engagement – it’s a great time to join us at S&W. This role is a permanent position More ❯

providing strategic guidance on delivery timelines and client priorities. Expert Advisory & Consulting Post-Adaptation Strategy: Deliver high-level consulting and advice on post-adaptation strategies, helping clients transition from risk assessment to actionable, long-term resilience plans. Regulatory Guidance: Serve as an expert on emerging sustainability regulations, including TCFD, CSRD, and IFRS S2, guiding clients through compliance related … to physical risk. Physical Risk Assessment: Oversee or conduct high-level physical risk assessments, scenario modeling, and vulnerability analysis for clients. Product Co-Development Product Input: Leverage deep client needs and market expertise to co-develop the next generation of our SaaS product. Translating Expertise: Translate client challenges and emerging market needs into clear, functional requirements for More ❯

About the role As a Risk Manager, you will be taking a lead on cybersecurity and third-party cyber risk management, risk quantification and post-incident reviews. You will be translating insights into action and helping to drive data-driven, and risk informed decisions. You will be playing a critical role in embedding and operating within … the ServiceNow IRM tool, contributing to the development and embedding of a new risk management framework. Tell me more, tell me more... Our client is currently looking for a new recruit in joining their Team, please read on! You can also ask our friendly recruitment team any questions you may have about the role, between 09.00am till 17.00pm Monday … to Friday. Shifts: Monday to Friday (37.5 hours) Must Haves: ServiceNow IRM experience Previously worked in a technical, large-scale environment such as semiconductors. Hands on experience with risk assessment methodologies. Deep knowledge of security technologies and control frameworks such as ISO 27001, NIST CSF and NIST SP800-53. Strong stakeholder management skills Proven ability to embed frameworks More ❯

About the role As a Risk Manager, you will be taking a lead on cybersecurity and third-party cyber risk management, risk quantification and post-incident reviews. You will be translating insights into action and helping to drive data-driven, and risk informed decisions. You will be playing a critical role in embedding and operating within … the ServiceNow IRM tool, contributing to the development and embedding of a new risk management framework. Tell me more, tell me more... Our client is currently looking for a new recruit in joining their Team, please read on! You can also ask our friendly recruitment team any questions you may have about the role, between 09.00am till 17.00pm Monday … to Friday. Shifts: Monday to Friday (37.5 hours) Must Haves: ServiceNow IRM experience Previously worked in a technical, large-scale environment such as semiconductors. Hands on experience with risk assessment methodologies. Deep knowledge of security technologies and control frameworks such as ISO 27001, NIST CSF and NIST SP800-53. Strong stakeholder management skills Proven ability to embed frameworks More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party’s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you’ll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party’s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you’ll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party’s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you’ll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party’s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you’ll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party’s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you’ll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party’s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you’ll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

About SPS: Special Projects and Services Limited (SPS) is a UK-based security and risk management company founded in 1991. Operating globally, SPS provides crisis response, risk assessment, medical operations support, and project management in high-risk or complex environments. Known for its expertise in global assistance and specialist security operations, SPS was acquired by Concentric … in 2025, strengthening its position as a trusted provider of integrated risk and crisis management solutions. Overview: You will support the delivery of IT services across the UK business, assisting with technical support, device management, and ongoing tech ops projects. This role provides structured, hands-on training in IT systems administration, cyber security, and compliance, contributing to the smooth More ❯

of over 140 across London, Toronto, New York and Singapore. We have achieved scale by building the best-in class surveillance tooling, where our analytics bring the front office risk mindset to the compliance function. Though we have developed in the trade surveillance arena, we have always been more than that. At heart, we are a finance focused big … s leading financial markets analytics platform. The Role We are seeking a Head of Information Security to join our team in London and lead our cybersecurity strategy and manage risk across our corporate estate. You can expect to work closely with our Engineering and Infrastructure teams to effect change through our organisation, as well as customer facing teams such … the development, implementation, and continuous improvement of information security practices across all teams Manage regular pentests by external consultants and coordinate with internal resources to remediate issues Information security risk assessment of third party service providers Offer guidance, direction and approval on security solutions and approaches Advocate for secure engineering best practices throughout the company Manage the standards More ❯

of our clients Product Security Engineering teams, supporting the delivery and through-life management of secure submarine systems and products. As a key focal point for security and information risk, you'll apply deep technical expertise to ensure that solutions are designed, delivered, and supported securely, safely, and in compliance with contractual and regulatory requirements. You'll provide subject … policies, and best practices across major defence programmes. Key Responsibilities Provide expert advice on Product Security to engineering and project teams. Analyse system architectures to identify threats, vulnerabilities, and risk mitigation strategies. Develop and manage Product Security analysis using recognised risk assessment techniques. Contribute to the development of Product Security strategies, policies, and guidance. Recommend and present … programmes and provide technical leadership to junior engineers. Support incident management and contribute to key project documentation including RMADS, Security Strategies, and accreditation evidence. Key Deliverables & Accountabilities Delivery of Risk Management Accreditation Document Sets (RMADS) and associated security documentation. Ensuring compliance with contractual and regulatory security requirements. Providing specialist input to verification, qualification, and design review processes. Contribution to More ❯

and report to audit management. Identify areas for improvement within Internal Audit and play a leading role on department improvement initiatives. Support and provide input into the Internal Audit risk assessment process to inform the Audit Plan. Execution of planning and testing for complex technology, information security audits and high-level reviews, including designing test strategies, audit test … understanding of regulatory requirements, eg, FRBNY, FCA. Strong IT security and technical knowledge with approximately 8 years of experience within the industry. Working experience with common security/technology risk frameworks, for instance, ISO 27000, NIST, CIS Critical Security Controls, COBIT, and IIA GTAGs. Working experience with regulatory standards/requirements (US, UK) ie, GDPR, BCBS 239, FFIEC … Working experience and/or knowledge of Security domains including Access management, Threat management, Incident response and recovery, Data protection, Vulnerability management, Monitoring and logging, Physical security, and Security risk management and governance. Working experience and/or knowledge of cloud, block chain, high volume transaction systems. Working experience and/or knowledge of application controls, input/output More ❯