26 to 50 of 126 Risk Assessment Jobs in the UK

background in Cyber Security Assurance within a high-threat government environment. Skills and experience. Experience in producing GovAssure and Secure-By-Design assessments, including Risk Assessment Papers, Risk Treatment Plans, Risk Business Cases, and Security Management Plans. Knowledge and experience with security architecture and Security Information … System solutions. Extensive understanding of cybersecurity threats, attack vectors, vulnerabilities, and security controls. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework, ISO 27001, NIST, COBIT, as well as SABSA and TOGAF. Experience in risk and threat modelling within high-threat government environments. Preferred ...

Start: ASAP Clearance: DV Cleared Onsite: Full-time, 5 days/week Overview Seeking an experienced Security Architect to lead secure design, risk assessment, and assurance activities on a highly classified government programme. The role requires strong architectural expertise within HMG environments and work closely with technical … technical stakeholders. Key Skills Security architecture in high-security environments RMADS, accreditation, HMG standards, NCSC principles Threat modelling and risk assessment Network, cloud, IAM, and data security Strong stakeholder communication ...

governance frameworks, policies, and controls aligned with recognised international standards, including ISO 27001 and the NIST Cybersecurity Framework. * Own and evolve the cyber security risk management strategy to enable proactive identification, assessment, and mitigation of cyber risks. * Lead cyber security risk assessment activities, applying the Enterprise … Risk Management Framework, Information Security Management System (ISMS), and NIST risk management practices. * Partner with senior leaders and cross-functional teams to embed cyber security considerations into business processes and decision-making. * Work closely with procurement teams to identify, assess, and manage cyber security risks associated with suppliers ...

Title: Cyber Governance & Risk Enablement Lead About the Organisation Financial Services Experience Key. The organisation operates across multiple regions and delivers technology-enabled services to customers in both regulated and non-regulated markets. It prioritises secure operations, responsible technology adoption, and a forward-looking approach to risk management … expectations are clearly defined, easily understood, and consistently applied across all teams. You will oversee the development of security policies and control frameworks, coordinate risk and compliance activity, and act as a partner to technology, operations, product, and risk teams. Your purpose is to enable secure decision-making ...

Comprehensive understanding of cyber security operations and effective incident response * Expertise in security operations management, applied security capability, and protective security * Awareness of information risk assessment and risk management * Up-to-date knowledge of emerging threat intelligence and threat assessment * Basic understanding of digital forensics sufficient … collaborate with forensics specialists Qualifications and Certifications * Familiarity with information security best practices, standards, and frameworks (eg, Cyber Assessment Framework, ISO 27001, NIST 800-53, COBIT 5, CIS CSC 2, Cyber Essentials Plus, PCI DSS) is beneficial. * Membership in relevant institutions or bodies (eg, Institute of Information Security Professionals ...

Cyber Risk Manager (Contract) Hybrid 6 months Minimum Start Date April We are supporting a large enterprise organisation seeking a Cyber Risk Manager to manage internal cyber risks across business and technology functions. This role will focus on identifying, assessing, and tracking cyber risks, ensuring appropriate ownership … mitigation plans are in place. Key Responsibilities Identify and assess cyber risks across projects and operational areas Maintain the cyber risk register and ensure risks are properly documented Define risk ownership and treatment plans Track progress of mitigation actions Support governance reporting and risk reviews Engage with ...

Cyber Risk Manager (Contract) Hybrid 6 months Minimum Start Date April We are supporting a large enterprise organisation seeking a Cyber Risk Manager to manage internal cyber risks across business and technology functions. This role will focus on identifying, assessing, and tracking cyber risks, ensuring appropriate ownership … mitigation plans are in place. Key Responsibilities Identify and assess cyber risks across projects and operational areas Maintain the cyber risk register and ensure risks are properly documented Define risk ownership and treatment plans Track progress of mitigation actions Support governance reporting and risk reviews Engage with ...

policies, standards, and guidelines for methods and tools. 10. Identify stakeholder communication needs and translate engagement strategies into actionable activities and deliverables. 11. Apply risk assessment and risk management principles to Information Governance decision-making. 12. Assess legal and best practice issues, promoting awareness of confidentiality … assessing their impact on business strategies, benefits, and risks. 16. Evaluate risks to data confidentiality, integrity, and availability, supporting reviews of security controls and risk assessments, including post-breach analysis. 17. Consult and collaborate on policy development, ensuring Trust policies, procedures, privacy standards, and guidelines align with recognised Data ...

continuous improvement in cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Work closely with SOC team and infrastructure team for remediation plan Assist with … across the organisation. Perform due-diligence reviews of third-party suppliers and support ongoing monitoring of external security risks. Profile Experience in information security, risk assessment within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such ...

expand, including the use of common tooling that will facilitate the tracking and reporting of assurance actions. We are also developing NIST compliant risk assessment methodology and tooling that is raising our quality and customer confidence, you will be part of these developments. The role in PITSM … cleared or Candidates should be willing to undergo DV Clearance. Experience in delivering accredited security solutions in sensitive government scenarios Essential Skills & Experience Risk & Assurance Strong grasp of Confidentiality, Integrity, Availability & Safety (CIA+S), with practical risk management experience Experience in assurance processes for secure/sensitive systems using ...

continuous improvement in cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Monitor security alerts across platforms such as SIEM, endpoint security, and DLP tools … across the organisation. Perform due-diligence reviews of third-party suppliers and support ongoing monitoring of external security risks. Profile Experience in information security, risk assessment, and incident response within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding ...

Cyber Security Engineer – Risk & Assurance Christchurch (Onsite) 12-Month Contract £81.90 per hour (Umbrella, Inside IR35) Clearance Requirements (Essential) BPSS check and active SC clearance required prior to start, active SC highly preferred Must be eligible and willing to undergo Developed Vetting The Opportunity An exciting opportunity has arisen … Cyber Security Engineer – Risk & Assurance to support a major UK defence programme delivering complex, high-classification systems. This role sits at the intersection of security architecture and cyber assurance , offering the chance to work across the full lifecycle of secure systems within a highly regulated environment. You'll collaborate ...

starter who will work on their own initiative and drive others Delivery-focused/results-driven with effective problem-solving and leadership skills Effective risk assessment and management Excellent communication skills and stakeholder management ability Proven budget control and cost management experience Understanding of key legal and compliance … Management Methodology and produce key project documentation. Create, manage, and deliver: End-to-end project scope and planning Governance covering Security, Data, Finance, Compliance, Risk, Controls, Operations, PMO, and BAU transition RAID logs and RACI matrices Manage stakeholders, budgets, suppliers, core project teams, and cross-functional delivery teams. Prepare ...

with confidence. With a strong presence in the UK, we partner with companies across industries to deliver best-in-class advisory services in accounting, risk, cyber security, technology, and business transformation. We pride ourselves on combining technical expertise with a practical, hands-on approach, helping our clients strengthen resilience … meet regulatory requirements, and stay ahead in an increasingly digital and risk-driven landscape. Technical and Domain Experience: · Conduct cybersecurity maturity and risk assessment and for clients. · Practical experience implementing security controls, in areas such as MDR, IAM, Network Security, Cloud Deployments. · Advise clients on cybersecurity strategy ...

with real-world national security impact, while enjoying hybrid working and strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident … systems Operating in regulated, high-assurance, or defence-related environments Working across engineering teams to embed security early in design Producing security architecture artefacts, risk assessments, and design assurance Engaging with stakeholders to translate security risk into business impact Eligibility for SC clearance (or ability to obtain ...

SaaS), digital platforms, ERP, web applications, networking, workplace productivity, compliance, or cybersecurity. Strong Vendor Management, Governance, Project Management, Scoping & Budgeting, Planning & Tracking, Assurance & Compliance, Risk Assessment & Management, and Stakeholder Management skills. Strong financial skills, including cost management and benefits tracking. Strong presentation and communication skills. Domain knowledge … Project Delivery Framework (PDF) and Client delivery standards. Deliver business value by ensuring projects meet defined requirements, within agreed parameters of cost, schedule, quality, risk, and benefits. Apply strong programme and project delivery skills across both Agile and Waterfall methodologies. This includes: Effective Change Control, Risk Management ...

NIST 3rd party risk assessments Information Security technology & controls Information Security GRC Analyst - Liverpool Hybrid (2-3 days onsite) Our Financial Services client has an exciting vacancy within their Information Security Team for an experienced and a highly motivated Information Security GRC Analyst. This is a brand new opportunity … develop both GRC and technical security skills within a supportive environment. Responsibilities - Work with all parties across the business to identify and assess risk and ensure mitigations are tracked to completion . - Support the development and maintenance of information security policies, standards and procedures in line with regulatory frameworks ...

best in class commercial outcomes. Partnering with senior stakeholders across Technology, Legal, Finance, and Programme Leadership. Ensuring procurement activity aligns with programme timelines and risk requirements. Providing clear reporting, risk insights, and commercial recommendations. What You’ll Bring 7+ years’ IT/Tech procurement experience at enterprise scale. … management and communication skills. A proactive, resilient, self‐starter mindset; able to deliver in a fast‐moving, high‐pressure environment. Excellent analytical, commercial, and risk‐assessment capability. Ability to travel as required (approx. 20%). If you’re an IT procurement specialist who thrives in complex transformation environments ...

Role purpose/summary Architecture & Design : Develop secure architectures and reference patterns across cloud, infrastructure, applications, and data platforms. Ensure alignment with business goals, risk appetite, and regulatory requirements. Solution Delivery : Provide architectural guidance during project lifecycle (HLD/LLD), review designs, and ensure solutions meet security requirements. Risk … patterns, data flows). Hands on understanding of cloud environments (Azure/AWS/GCP), networks, applications, and data protection. Familiarity with threat modelling, risk assessment, and regulatory compliance. Excellent communication skills, able to explain complex security topics to technical and non-technical audiences. Technical standards, security patterns ...

meet customer requirements. Anticipating that systems will be attacked or misused, Project Security features 2 key areas; Minimising cyber-attack vulnerabilities Minimising the risk of abuse/exploitation What you’ll do Routine : Undertake Project Security risk analysis Ensure project Security deliverables and processes are developed and delivered … series. Experience in delivering project documentation using SbD principles. Experience in Security/Information Assurance e.g. CESG Good Practice Guides. Experience in Security risk assessment e.g. NCSC methodology Commitment to quality, performance and cost, delivering on-time to the highest standard. A collaborative team player. The ability ...

governance commitments. Additionally, DEMPE provides the framework that ensures the IP-owner entity exercises real decision-making authority over architecture, compliance, privacy controls, risk management, and commercialization. Through This role establishes clear IP ownership and defensible economic substance. Overall, it positions the IP -owner entity as the authoritative decision … platform architecture. Build and own the privacy-by-design architecture, including data classification, minimization, jurisdictional routing, retention, and deletion controls. Translate regulatory, contractual, and risk requirements into technical guardrails, policies-as-code, and auditable compliance controls. Implement and mature compliance assurance processes such as red teaming, adversarial prompt testing ...

interpreting schematics, datasheets and system architecture to guide robust software design. Author and review high quality, testable, traceable software requirements aligned with system needs, risk controls, cybersecurity and regulatory expectations. Architect, implement and document IEC 62304 compliant firmware, including low level drivers, communication protocols and HALs. Produce and approve … perform board bring up, sensor integration, hardware validation and low level debugging on bare metal platforms. Lead and mentor participation in design, code, risk and cybersecurity reviews to uphold quality and compliance. Perform and direct structured debugging, root cause analysis and use of industry standard diagnostic tools. Support ...

centralised Security Operations & Intelligence function and are seeking a People Security Advisor to play a key role in establishing and embedding a modern, risk-based personnel security capability. Operating at SFIA Level 4 (Enable) , this role will work closely with the Physical & People Security Integration Lead to design, implement … continuously improve People Security frameworks, policies and processes across a complex, nationally significant environment. This is a hands-on role combining policy development, risk assessment, investigations, and stakeholder engagement , with a strong focus on integrating People Security across wider security and business functions. Key Responsibilities Support the design ...

centralised Security Operations & Intelligence function and are seeking a People Security Advisor to play a key role in establishing and embedding a modern, risk-based personnel security capability. Operating at SFIA Level 4 (Enable) , this role will work closely with the Physical & People Security Integration Lead to design, implement … continuously improve People Security frameworks, policies and processes across a complex, nationally significant environment. This is a hands-on role combining policy development, risk assessment, investigations, and stakeholder engagement , with a strong focus on integrating People Security across wider security and business functions. Key Responsibilities Support the design ...

centralised Security Operations & Intelligence function and are seeking a People Security Advisor to play a key role in establishing and embedding a modern, risk-based personnel security capability. Operating at SFIA Level 4 (Enable) , this role will work closely with the Physical & People Security Integration Lead to design, implement … continuously improve People Security frameworks, policies and processes across a complex, nationally significant environment. This is a hands-on role combining policy development, risk assessment, investigations, and stakeholder engagement , with a strong focus on integrating People Security across wider security and business functions. Key Responsibilities Support the design ...