51 to 75 of 183 Risk Assessment Jobs in the UK

standards and lifecycle assurance within complex embedded or control software systems. Key Responsibilities Develop a full understanding of the software and its operational environment. Produce and maintain a Software Assessment Plan in line with BS EN 50716 requirements. Evaluate the conformity of the software process and deliverables to applicable standards and assigned SIL levels. Assess the competence of project … and inspections at appropriate development phases, including witnessing of testing activities. Identify, assess, and document any non-conformities or deviations from requirements, evaluating their safety impact. Ensure that the assessment plan is implemented and that all findings are clearly documented in a Software Assessment Report. Provide an independent professional judgment on the software's fitness for purpose, including … any constraints, assumptions, or risks. Maintain thorough assessment records and provide recommendations for improvement or risk control. Key Competencies & Experience : Proven technical competence in software engineering within a safety-critical or regulated domain (e.g. rail, automotive, aerospace, medical, industrial). In-depth understanding of BS EN 50716, BS EN 50128, and/or BS EN 50657. Experience in More ❯

standards and lifecycle assurance within complex embedded or control software systems. Key Responsibilities Develop a full understanding of the software and its operational environment. Produce and maintain a Software Assessment Plan in line with BS EN 50716 requirements. Evaluate the conformity of the software process and deliverables to applicable standards and assigned SIL levels. Assess the competence of project … and inspections at appropriate development phases, including witnessing of testing activities. Identify, assess, and document any non-conformities or deviations from requirements, evaluating their safety impact. Ensure that the assessment plan is implemented and that all findings are clearly documented in a Software Assessment Report. Provide an independent professional judgment on the software’s fitness for purpose, including … any constraints, assumptions, or risks. Maintain thorough assessment records and provide recommendations for improvement or risk control. Key Competencies & Experience : Proven technical competence in software engineering within a safety-critical or regulated domain (e.g. rail, automotive, aerospace, medical, industrial). In-depth understanding of BS EN 50716, BS EN 50128, and/or BS EN 50657. Experience in More ❯

standards and lifecycle assurance within complex embedded or control software systems. Key Responsibilities Develop a full understanding of the software and its operational environment. Produce and maintain a Software Assessment Plan in line with BS EN 50716 requirements. Evaluate the conformity of the software process and deliverables to applicable standards and assigned SIL levels. Assess the competence of project … and inspections at appropriate development phases, including witnessing of testing activities. Identify, assess, and document any non-conformities or deviations from requirements, evaluating their safety impact. Ensure that the assessment plan is implemented and that all findings are clearly documented in a Software Assessment Report. Provide an independent professional judgment on the software’s fitness for purpose, including … any constraints, assumptions, or risks. Maintain thorough assessment records and provide recommendations for improvement or risk control. Key Competencies & Experience : Proven technical competence in software engineering within a safety-critical or regulated domain (e.g. rail, automotive, aerospace, medical, industrial). In-depth understanding of BS EN 50716, BS EN 50128, and/or BS EN 50657. Experience in More ❯

and report to audit management. Identify areas for improvement within Internal Audit and play a leading role on department improvement initiatives. Support and provide input into the Internal Audit risk assessment process to inform the Audit Plan. Execution of planning and testing for complex technology, information security audits and high-level reviews, including designing test strategies, audit test … understanding of regulatory requirements, eg, FRBNY, FCA. Strong IT security and technical knowledge with approximately 8 years of experience within the industry. Working experience with common security/technology risk frameworks, for instance, ISO 27000, NIST, CIS Critical Security Controls, COBIT, and IIA GTAGs. Working experience with regulatory standards/requirements (US, UK) ie, GDPR, BCBS 239, FFIEC … Working experience and/or knowledge of Security domains including Access management, Threat management, Incident response and recovery, Data protection, Vulnerability management, Monitoring and logging, Physical security, and Security risk management and governance. Working experience and/or knowledge of cloud, block chain, high volume transaction systems. Working experience and/or knowledge of application controls, input/output More ❯

and the Audit & Finance Committee. Identify areas for improvement within Internal Audit and play a leading role on department improvement initiatives. Support and provide input into the Internal Audit risk assessment process to inform the Audit Plan. Support the director in strategic improvements including Continuous Auditing, Data Analytics, Development of control Dashboards, and Automated Testing Capabilities. Stand in … understanding of regulatory requirements, eg, FRBNY, FCA. Strong IT security and technical knowledge with approximately 8+ years of experience within the industry. Working experience with common security/technology risk frameworks, for instance, ISO 27000, NIST, CIS Critical Security Controls, Cloud Controls Matrix, COBIT, and IIA GTAGs. Working experience with regulatory standards/requirements (US, UK) ie, GDPR, BCBS … Working experience and/or knowledge of Security domains including Access management, Threat management, Incident response and recovery, Data protection, Vulnerability management, Monitoring and logging, Physical security, and Security risk management and governance. Working experience and/or knowledge of application controls, input/output, configuration, application controls. Confident in managing integrated and non-integrated audits, and leading other More ❯

fellow TechOps & Delivery team members and act as a consultant to cross-functional project teams. Evaluate emerging technologies and make recommendations on adoption to improve operational efficiency and security. Risk Assessment & Compliance Collaborate with information security teams to implement best practices, including hardening, patching, and threat mitigation. Ensure solutions comply with security, regulatory, and organizational standards. Qualifications & Experience More ❯

fellow TechOps & Delivery team members and act as a consultant to cross-functional project teams. Evaluate emerging technologies and make recommendations on adoption to improve operational efficiency and security. Risk Assessment & Compliance Collaborate with information security teams to implement best practices, including hardening, patching, and threat mitigation. Ensure solutions comply with security, regulatory, and organizational standards. Qualifications & Experience More ❯

fellow TechOps & Delivery team members and act as a consultant to cross-functional project teams. Evaluate emerging technologies and make recommendations on adoption to improve operational efficiency and security. Risk Assessment & Compliance Collaborate with information security teams to implement best practices, including hardening, patching, and threat mitigation. Ensure solutions comply with security, regulatory, and organizational standards. Qualifications & Experience More ❯

fellow TechOps & Delivery team members and act as a consultant to cross-functional project teams. Evaluate emerging technologies and make recommendations on adoption to improve operational efficiency and security. Risk Assessment & Compliance Collaborate with information security teams to implement best practices, including hardening, patching, and threat mitigation. Ensure solutions comply with security, regulatory, and organizational standards. Qualifications & Experience More ❯

fellow TechOps & Delivery team members and act as a consultant to cross-functional project teams. Evaluate emerging technologies and make recommendations on adoption to improve operational efficiency and security. Risk Assessment & Compliance Collaborate with information security teams to implement best practices, including hardening, patching, and threat mitigation. Ensure solutions comply with security, regulatory, and organizational standards. Qualifications & Experience More ❯

financial services is essential. Experience designing Target Operating Models or strategic business blueprints at programme or enterprise level (not just project level). Deep understanding of the Compliance and Risk landscape, including: Policy and control frameworks Risk assessment and monitoring Investigations, sanctions, and anti-financial crime The Three Lines of Defence model Strong knowledge of business architecture … deliverable for the next stage of programme execution. Act as a trusted advisor during implementation, ensuring designs are translated into practical, scalable solutions. Support stakeholder engagement across senior compliance, risk, and technology leaders, ensuring buy-in for the proposed operating model. Designing the Target State Business Architecture for EMEA, including capability maps, operating models, and value streams. Collaborating with … Technology, Data Architects, Compliance, and Risk SMEs to develop a holistic design that aligns with business strategy. Recommending a comprehensive roadmap to implement the Target State, balancing business outcomes, costs, and risks. Supporting project teams to ensure alignment with the Target State Business Architecture. Leading best practises in business design and process engineering to enhance operational efficiency. Your Key More ❯

financial services is essential. Experience designing Target Operating Models or strategic business blueprints at programme or enterprise level (not just project level). Deep understanding of the Compliance and Risk landscape, including: Policy and control frameworks Risk assessment and monitoring Investigations, sanctions, and anti-financial crime The Three Lines of Defence model Strong knowledge of business architecture … deliverable for the next stage of programme execution. Act as a trusted advisor during implementation, ensuring designs are translated into practical, scalable solutions. Support stakeholder engagement across senior compliance, risk, and technology leaders, ensuring buy-in for the proposed operating model. Designing the Target State Business Architecture for EMEA, including capability maps, operating models, and value streams. Collaborating with … Technology, Data Architects, Compliance, and Risk SMEs to develop a holistic design that aligns with business strategy. Recommending a comprehensive roadmap to implement the Target State, balancing business outcomes, costs, and risks. Supporting project teams to ensure alignment with the Target State Business Architecture. Leading best practises in business design and process engineering to enhance operational efficiency. Your Key More ❯

support business growth. Key Responsibilities Develop and maintain the enterprise information security strategy aligned with business goals Oversee security architecture, vulnerability management, incident response, and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps Ensure compliance with financial regulations (e.g. GDPR, PCI DSS, SOX, FCA requirements) Establish and enforce security policies, standards, and procedures Report … information security talent Experience/Skills Required Managing security for cloud-first environments (AWS, Azure, Google Cloud) Implementing Security Operations Centres (SOC) and automated security monitoring Leading third-party risk management and vendor security programmes Experience with DevSecOps practices and secure software development lifecycle (SDLC) Proven leadership experience in information security within financial services Deep understanding of regulatory and … requirements for banking and finance Strong track record of designing and implementing security frameworks (ISO 27001, NIST) Hands-on experience with SIEM, DLP, IAM, and endpoint security technologies Excellent risk assessment and incident management skills Outstanding communication skills with the ability to influence stakeholders at all levels Strategic mindset with the capability to balance security controls and business More ❯

various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training and monitoring of Staff compliance Enhance and maintain a high Microsoft 365 secure score by implementing … Microsoft advisories Identify, assess, and mitigate security risks to the organisation's data and infrastructure Oversee the creation and document management of polices and standards Complete a full assessment of all third-party applications Provide regular security reports to the CISO as required Advise the CISO, IT Team and the wider business on matters relating to cyber security Skills … environments, including the ability to assess third-party platforms, suppliers, and software for security risks Proven experience in developing and implementing information security policies, procedures, and controls. Familiarity with risk assessment methodologies and tools Regulated background essential Experience in managing information security incidents and conducting investigations Excellent communication and interpersonal skills, with the ability to effectively collaborate with More ❯

an incoming 3rd party managed SOC and the security tools in the Cloud environment (Defender and Sentinel) Oversee security architecture, vulnerability management, incident response, and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps Ensure compliance with financial regulations (e.g. GDPR, PCI DSS, SOX, FCA requirements) Establish and enforce security policies, standards, and procedures Report … security talent Experience/Skills Required Managing security for cloud-first environments specifically Microsoft Azure Implementing Security Operations Centres (SOC) and automated security monitoring Collaborate with the third-party risk management and vendor security programmes Experience with DevSecOps practices and secure software development lifecycle (SDLC) Proven leadership experience in information security within financial services Deep understanding of regulatory and … record of designing and implementing security frameworks (ISO 27001, NIST) Hands-on experience with SIEM, DLP, IAM, and endpoint security technologies, specifically Microsoft Defender XDR, Purview and Sentinel Excellent risk assessment and incident management skills Outstanding communication skills with the ability to influence stakeholders at all levels Strategic mindset with the capability to balance security controls and business More ❯

company's security strategy across AI, blockchain, and cloud environments. Establish policies, standards, and governance frameworks aligned with industry best practices (ISO 27001, NIST, SOC2). Lead incident response, risk assessment, and threat modelling programmes. Build and mentor a world-class security team. AI Data Security Protect proprietary AI models, training data, and pipelines from data poisoning, model … AWS, GCP, Azure), container security, and zero-trust networks. Harden DevSecOps pipelines to ensure secure software delivery. Collaborate with engineering teams to integrate security by design into products. Compliance & Risk Management Ensure regulatory compliance with GDPR, SOC2, ISO, PCI-DSS, and crypto-specific frameworks. Lead risk assessments for third-party vendors and service providers. Work with legal and More ❯

Board meets its obligations under Data Protection legislation and ensures general awareness throughout the Health Board on IG matters. Primarily the role will focus particularly on Data Protection Impact Assessment reviews and assisting in the management of individuals' rights requests including Subject Access Requests. About us We believe staff are our best asset and we want you to be … sharing, privacy notices, Data Protection Impact Assessments and information security, or a willingness to study for a certificated course and the ability to pass the examination Desirable Knowledge of risk management processes Knowledge of Health and Care Standards Experience Essential Previous information governance experience Previous breach/complaint management experience Previous Data Protection Impact Assessment support & approval experience … security experience Previous auditing experience Previous project management experience Previous experience of working within the NHS or other healthcare setting Successful change management and negotiation experience Previous experience of risk assessment Experience of using Datix system Aptitude & Abilities Essential Communication and Accuracy: Ability to communicate well with all levels of staff, patients and external organisations on a face More ❯

schedules and contracts Organising the various professional people and suppliers working on the project to ensure alignment with project plans and timely delivery of their respective inputs Carrying out risk assessment and dealing with/mitigating risks at an appropriate level, escalating where necessary Making sure the quality standards agreed to by Project Boards are met Using project … Programme Manager and senior stakeholders on progress What you need to succeed in the role Significant experience in project management - especially in scope, performance, cost control, delivery, scheduling, resourcing, risk management and demand management. Significant experience of financial control, reporting and monitoring - relating to in-scope project(s) delivery. Proven experience in the delivery of highly technical solutions into More ❯

ISO 27001, PCI DSS, and Cyber Essentials Plus • Draft and update information security policies, procedures, and technical standards • Work with procurement and commercial teams to support supplier assurance and risk assessment • Contribute to tender responses and bid processes, ensuring security and compliance requirements are met • Promote good security practices and raise awareness across departments • Act as an escalation … stakeholder communication skills, both written and verbal • Ability to build effective working relationships and influence at all levels • Comfortable working independently and proactively across teams Desirable: • Experience in supplier risk management and/or tender processes • ISO 27001 Lead Auditor/Implementer, PCIP, CISM, CompTIA Security+, or CISMP certification What you get in return: • Up to £50,000 per More ❯

ISO 27001, PCI DSS, and Cyber Essentials Plus * Draft and update information security policies, procedures, and technical standards * Work with procurement and commercial teams to support supplier assurance and risk assessment * Contribute to tender responses and bid processes, ensuring security and compliance requirements are met * Promote good security practices and raise awareness across departments * Act as an escalation … stakeholder communication skills, both written and verbal * Ability to build effective working relationships and influence at all levels * Comfortable working independently and proactively across teams Desirable: * Experience in supplier risk management and/or tender processes * ISO 27001 Lead Auditor/Implementer, PCIP, CISM, CompTIA Security+, or CISMP certification What you get in return: * Up to £50,000 per More ❯

Manager to join their growing team. The company specializes in providing data-driven insights that help financial institutions, including banks and mortgage lenders, make smarter decisions around property values, risk assessment, and market trends. Their products are central to supporting faster and more accurate decision-making, particularly when it comes to valuing properties and assessing risk without … applying data insights across various sectors in banking and financial services. What We're Looking For: 5-7 years of experience in analytics, ideally within financial services, mortgages, credit risk, or a related domain. Prior experience managing or mentoring a team, or a strong interest in stepping into a management role. Strong technical skills, including proficiency in Excel, SQL More ❯

think innovatively, and listen to each other and customers in meaningful ways. Moody's is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, we're advancing AI to move from insight to action-enabling intelligence that not only understands complexity but responds to it. We decode risk to unlock … insight generation. Facility with SQL, data modelling, and data management tools. Ability to solve problems thoroughly, quickly, and creatively, with a keen eye for detail. Experience in litigation tracking, risk transfer solutions, and supporting customer adoption of analytics products. Basic understanding of artificial intelligence concepts, with curiosity and enthusiasm for learning how AI tools can be used to improve … processes and drive efficiency. Interest in exploring AI systems and a willingness to develop awareness of responsible AI practices, including risk management and ethical use. Education Master's degree or higher in a quantitative discipline (e.g., engineering, mathematics, physics, chemistry, economics, bioengineering, bioinformatics, or related field) plus significant relevant commercial experience. Bachelor's degree in a quantitative discipline plus More ❯

accounts and access. Implementation: Lead the deployment and configuration of PAM solutions, such as CyberArk, BeyondTrust, or other relevant technologies, ensuring they are properly integrated with existing IT infrastructure. Risk Assessment and Management: Conduct regular risk assessments related to privileged access, identifying potential security risks and vulnerabilities, and developing mitigation strategies. Governance and Compliance: Ensure that PAM More ❯

UKAS , ISO 17021-1 , and ISO 19011 principles. Support technical reviews, certification decisions, and internal auditor development. Maintain up-to-date knowledge of information security, data protection, and cyber-risk frameworks. Essential Qualifications and Experience Successfully completed an ISO/IEC 27001:2022 Lead Auditor course (IRCA-approved or equivalent). At least four years experience in information security … auditing. Proven track record conducting third-party ISO 27001 audits for a UKAS-accredited certification body. Strong working knowledge of Annex A controls , ISO/IEC 27002 , and ISMS risk assessment methodologies . Familiarity with ISO 17021-1 , ISO 19011 , and UKAS accreditation processes. Excellent written and verbal communication skills. Willingness and ability to travel across London and More ❯

direction, and ensuring security-by-design across complex AI systems and data pipelines. You’ll define and deliver AI security strategies, develop reference architectures, and provide expert guidance on risk management, data protection, and ethical AI governance. You’ll also play a key role in client engagement, helping shape proposals, define solutions, and drive pre-sales activity. To justify … consulting experience and commercial awareness alongside deep technical expertise. Key areas of focus Define and implement enterprise-level AI/ML security strategies, policies, and architectures. Lead on AI risk assessment, threat modelling, and mitigation planning. Ensure compliance with GDPR, the EU AI Act, and international security frameworks (ISO 27001, NIST, TOGAF, SABSA). Build and maintain secure More ❯