1,251 to 1,275 of 1,826 Risk Management Jobs in the UK

role in protecting digital assets and mission-critical infrastructure. As a Security Assurance Engineer, you’ll be responsible for: Conducting security assurance activities across projects, products, and systems. Supporting risk assessments, security reviews, and compliance checks in line with organisational and government standards (e.g., NCSC, ISO 27001, JSP440). Producing clear, concise, and insightful security assurance reports for technical … and non-technical stakeholders. Working closely with engineering, architecture, and risk management teams to ensure robust security controls are embedded throughout the system lifecycle. Maintaining documentation and evidence to support accreditation and audit processes. Required Skills and Experience: You’ll bring a strong blend of technical knowledge, analytical thinking, and communication skills. You have: Active Security Clearance (e.g. … SC/DV). Proven experience in Security Assurance, Information Assurance, or Cyber Risk Management. Strong understanding of security frameworks (NIST, ISO 27001, MoD JSPs, CAF, etc.). Excellent reporting and documentation skills – able to translate complex technical findings into actionable insights. Knowledge of cloud, network, or application security principles. A proactive, detail-oriented approach with a commitment to More ❯

define, develop, and mature their cyber security roadmap. Take ownership of internal Security Improvement Plans, ensuring risks are reduced and resilience is increased. Lead governance and oversight activities, including risk reviews, board-level reporting, and mentoring client teams. Carry out security reviews across cloud, hybrid, and on-premises environments, identifying vulnerabilities and improvement areas. Provide guidance on compliance and … sharing within the wider team, suggesting improvements and supporting colleagues. Ensure compliance with internal security and governance standards. PCI/DSS About You: Strong knowledge of security frameworks, governance, risk management, and compliance. Excellent communication and stakeholder engagement skills, with the ability to influence at board level. Hands-on experience with cloud and hybrid architectures, audits, and security … assessments. Incident response and crisis management experience is a plus. Holding CISSP/CISM ISO27001 Lead implementer If you’re looking for a role where you can combine strategic influence with hands-on expertise, and you thrive on building trusted client relationships, this could be your next career move. More ❯

define, develop, and mature their cyber security roadmap. Take ownership of internal Security Improvement Plans, ensuring risks are reduced and resilience is increased. Lead governance and oversight activities, including risk reviews, board-level reporting, and mentoring client teams. Carry out security reviews across cloud, hybrid, and on-premises environments, identifying vulnerabilities and improvement areas. Provide guidance on compliance and … sharing within the wider team, suggesting improvements and supporting colleagues. Ensure compliance with internal security and governance standards. PCI/DSS About You: Strong knowledge of security frameworks, governance, risk management, and compliance. Excellent communication and stakeholder engagement skills, with the ability to influence at board level. Hands-on experience with cloud and hybrid architectures, audits, and security … assessments. Incident response and crisis management experience is a plus. Holding CISSP/CISM ISO27001 Lead implementer If you’re looking for a role where you can combine strategic influence with hands-on expertise, and you thrive on building trusted client relationships, this could be your next career move. More ❯

define, develop, and mature their cyber security roadmap. Take ownership of internal Security Improvement Plans, ensuring risks are reduced and resilience is increased. Lead governance and oversight activities, including risk reviews, board-level reporting, and mentoring client teams. Carry out security reviews across cloud, hybrid, and on-premises environments, identifying vulnerabilities and improvement areas. Provide guidance on compliance and … sharing within the wider team, suggesting improvements and supporting colleagues. Ensure compliance with internal security and governance standards. PCI/DSS About You: Strong knowledge of security frameworks, governance, risk management, and compliance. Excellent communication and stakeholder engagement skills, with the ability to influence at board level. Hands-on experience with cloud and hybrid architectures, audits, and security … assessments. Incident response and crisis management experience is a plus. Holding CISSP/CISM ISO27001 Lead implementer If you’re looking for a role where you can combine strategic influence with hands-on expertise, and you thrive on building trusted client relationships, this could be your next career move. More ❯

client is growing its EMEA Cyber Security consulting practice and building its Cyber Security Centre of Excellence in Prague. We currently require the services of a Security Consultant (Governance, Risk, Compliance) to strengthen our capability in the security consulting space. As a consultant, you will deliver Cyber GRC projects, ranging from client identification and all steps through scoping and … delivering the assignment to final invoicing. We have proven and extensive professional services offerings for Governance, Risk, Compliance services and the candidate will be responsible for delivering security consulting services to our large enterprise customers. What we are looking for.. The position therefore requires strong interpersonal and technical skills and the ability to effectively identify business issues and propose … at customer premises, sometimes requiring some degree of travel. Requirements; Demonstrated professional consulting experience of 4 or more years with Enterprise IT-security, Information and Cyber Security Governance, Technology Risk Management, Compliance, Business Continuity/DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as More ❯

client is growing its EMEA Cyber Security consulting practice and building its Cyber Security Centre of Excellence in Prague. We currently require the services of a Security Consultant (Governance, Risk, Compliance) to strengthen our capability in the security consulting space. As a consultant, you will deliver Cyber GRC projects, ranging from client identification and all steps through scoping and … delivering the assignment to final invoicing. We have proven and extensive professional services offerings for Governance, Risk, Compliance services and the candidate will be responsible for delivering security consulting services to our large enterprise customers. What we are looking for.. The position therefore requires strong interpersonal and technical skills and the ability to effectively identify business issues and propose … at customer premises, sometimes requiring some degree of travel. Requirements; Demonstrated professional consulting experience of 4 or more years with Enterprise IT-security, Information and Cyber Security Governance, Technology Risk Management, Compliance, Business Continuity/DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as More ❯

regulatory risks across the company's global operations, providing actionable advice to senior leadership. Oversee regulatory strategy and direct operational compliance with relevant regulations, advising cross-functional teams on risk management and mitigation, data governance, and data breach responses. Advise and collaborate to implement regulatory strategy, policies, and training to enable compliance and operational teams to manage regulatory … risk effectively. Advise business in market expansion initiatives in regulated industries including effectively navigating customer regulatory and compliance requirements. Oversee and manage effective use of external counsel in furtherance of legal, regulatory and compliance objectives. Manage regulatory requirements and serve as a liaison with local regulatory authorities for data privacy, critical infrastructure and similar matters. Other duties and assignments … services providers, including the GDPR, CER, NIS2, DORA, the EU AI Act, and the EU Data Act. Adept at monitoring the regulatory landscape, developing compliance posture and advising senior management of impact on business and operations in a timely fashion. Demonstrated capability implementing complex regulatory frameworks in global business operations, including setting policy, advising process enhancements and training compliance More ❯

procurement platforms and frameworks. Ensure internal bid governance is followed. Monitor and report on bid performance to support continuous improvement. Core Requirements APMP Certification Proven success in senior bid management or sales leadership roles within IT services; cybersecurity experience is a strong advantage. Ability to develop and execute winning bid strategies in a fast-paced environment. Experience managing bid … pipelines and reporting to senior stakeholders. Knowledge of cybersecurity services (e.g., Pen Testing, Risk Management, MSSP solutions) is highly desirable. Excellent communication, negotiation, and presentation skills. Proficiency in CRM and bid management tools. A strong professional network in IT or cybersecurity is a plus. Why Join Us? This is your chance to shape the future of our More ❯

required project procurement Monitor and act on daily and weekly project board governance Accurately document project progress, including updating Autotask workplans Liaise and coordinate with 3rd parties Contribute to Risk Management Reviews Plan project handover calls with internal teams and project closure calls with client Take meeting notes and document them for future reference Ensure that all documents … to date and stored appropriately in the correct drives Assist with any additional tasks or responsibilities as needed Maintain information security by complying with the company's Information Security Management System (ISMS) and all relevant policies About you: Experience: Project scheduling and coordination experience is an absolute must, ideally within an IT environment Experience coordinating a high volume of … communication and customer service skills High attention to detail Highly organised with the ability to multitask Previous experience within an MSP environment is desirable Autotask experience is desirable Project management certification would be advantageous Personal Attributes: Possesses good written and verbal communication skills and the ability to communicate complex technical issues to non-technical clients. Keen to research new More ❯

procurement platforms and frameworks. Ensure internal bid governance is followed. Monitor and report on bid performance to support continuous improvement. Core Requirements APMP Certification Proven success in senior bid management or sales leadership roles within IT services; cyber security experience is a strong advantage. Ability to develop and execute winning bid strategies in a fast-paced environment. Experience managing … bid pipelines and reporting to senior stakeholders. Knowledge of cyber security services (e.g., Pen Testing, Risk Management, MSSP solutions) is highly desirable. Excellent communication, negotiation, and presentation skills. Proficiency in CRM and bid management tools. A strong professional network in IT or cyber security is a plus. Why Join Us? This is your chance to shape the More ❯

range of internal and external partners, and forge strategic technical relationships. Be adaptable, self-starting and able to work both independently and as part of a team. Basic project management knowledge, including planning and risk-management, or an aspiration to learn and develop this skill on-the-job. Experience of coding and data analysis; working knowledge of More ❯

and business continuity strategies with automated validation and detailed recovery documentation. · Maintain clear, well-structured documentation for architectures, deployments, and operational procedures, fostering transparency and long-term maintainability. Security & Risk Management · Implement and maintain cybersecurity controls, including MFA, conditional access, endpoint protection, encryption, and vulnerability remediation. · Oversee secure authentication workflows and alignment with compliance frameworks across cloud and … security awareness, accountability, and documentation throughout the organisation. Corporate IT & Internal Systems · Manage corporate systems and licences (Microsoft 365, Entra ID , VPNs, DevOps, Revolut access). · Oversee Entra ID management , including group policies, access reviews, and conditional access rules for both cloud and internal environments. · Manage endpoint configuration and compliance using Microsoft Intune, Apple MDM, and Windows Autopilot , ensuring … devices are encrypted, patched, and policy-compliant. · Handle onboarding/offboarding, laptop setup, and permissions management through secure, automated workflows. · Maintain comprehensive documentation and inventories of IT assets, configurations, and access permissions. · Support secure remote and hybrid work environments through Azure Virtual Desktop (AVD) and Cloud PCs. · Continuously improve IT processes through scripting, automation, and integration with other systems More ❯

and business continuity strategies with automated validation and detailed recovery documentation. · Maintain clear, well-structured documentation for architectures, deployments, and operational procedures, fostering transparency and long-term maintainability. Security & Risk Management · Implement and maintain cybersecurity controls, including MFA, conditional access, endpoint protection, encryption, and vulnerability remediation. · Oversee secure authentication workflows and alignment with compliance frameworks across cloud and … security awareness, accountability, and documentation throughout the organisation. Corporate IT & Internal Systems · Manage corporate systems and licences (Microsoft 365, Entra ID , VPNs, DevOps, Revolut access). · Oversee Entra ID management , including group policies, access reviews, and conditional access rules for both cloud and internal environments. · Manage endpoint configuration and compliance using Microsoft Intune, Apple MDM, and Windows Autopilot , ensuring … devices are encrypted, patched, and policy-compliant. · Handle onboarding/offboarding, laptop setup, and permissions management through secure, automated workflows. · Maintain comprehensive documentation and inventories of IT assets, configurations, and access permissions. · Support secure remote and hybrid work environments through Azure Virtual Desktop (AVD) and Cloud PCs. · Continuously improve IT processes through scripting, automation, and integration with other systems More ❯

and business continuity strategies with automated validation and detailed recovery documentation. · Maintain clear, well-structured documentation for architectures, deployments, and operational procedures, fostering transparency and long-term maintainability. Security & Risk Management · Implement and maintain cybersecurity controls, including MFA, conditional access, endpoint protection, encryption, and vulnerability remediation. · Oversee secure authentication workflows and alignment with compliance frameworks across cloud and … security awareness, accountability, and documentation throughout the organisation. Corporate IT & Internal Systems · Manage corporate systems and licences (Microsoft 365, Entra ID , VPNs, DevOps, Revolut access). · Oversee Entra ID management , including group policies, access reviews, and conditional access rules for both cloud and internal environments. · Manage endpoint configuration and compliance using Microsoft Intune, Apple MDM, and Windows Autopilot , ensuring … devices are encrypted, patched, and policy-compliant. · Handle onboarding/offboarding, laptop setup, and permissions management through secure, automated workflows. · Maintain comprehensive documentation and inventories of IT assets, configurations, and access permissions. · Support secure remote and hybrid work environments through Azure Virtual Desktop (AVD) and Cloud PCs. · Continuously improve IT processes through scripting, automation, and integration with other systems More ❯

and business continuity strategies with automated validation and detailed recovery documentation. · Maintain clear, well-structured documentation for architectures, deployments, and operational procedures, fostering transparency and long-term maintainability. Security & Risk Management · Implement and maintain cybersecurity controls, including MFA, conditional access, endpoint protection, encryption, and vulnerability remediation. · Oversee secure authentication workflows and alignment with compliance frameworks across cloud and … security awareness, accountability, and documentation throughout the organisation. Corporate IT & Internal Systems · Manage corporate systems and licences (Microsoft 365, Entra ID , VPNs, DevOps, Revolut access). · Oversee Entra ID management , including group policies, access reviews, and conditional access rules for both cloud and internal environments. · Manage endpoint configuration and compliance using Microsoft Intune, Apple MDM, and Windows Autopilot , ensuring … devices are encrypted, patched, and policy-compliant. · Handle onboarding/offboarding, laptop setup, and permissions management through secure, automated workflows. · Maintain comprehensive documentation and inventories of IT assets, configurations, and access permissions. · Support secure remote and hybrid work environments through Azure Virtual Desktop (AVD) and Cloud PCs. · Continuously improve IT processes through scripting, automation, and integration with other systems More ❯

and business continuity strategies with automated validation and detailed recovery documentation. · Maintain clear, well-structured documentation for architectures, deployments, and operational procedures, fostering transparency and long-term maintainability. Security & Risk Management · Implement and maintain cybersecurity controls, including MFA, conditional access, endpoint protection, encryption, and vulnerability remediation. · Oversee secure authentication workflows and alignment with compliance frameworks across cloud and … security awareness, accountability, and documentation throughout the organisation. Corporate IT & Internal Systems · Manage corporate systems and licences (Microsoft 365, Entra ID , VPNs, DevOps, Revolut access). · Oversee Entra ID management , including group policies, access reviews, and conditional access rules for both cloud and internal environments. · Manage endpoint configuration and compliance using Microsoft Intune, Apple MDM, and Windows Autopilot , ensuring … devices are encrypted, patched, and policy-compliant. · Handle onboarding/offboarding, laptop setup, and permissions management through secure, automated workflows. · Maintain comprehensive documentation and inventories of IT assets, configurations, and access permissions. · Support secure remote and hybrid work environments through Azure Virtual Desktop (AVD) and Cloud PCs. · Continuously improve IT processes through scripting, automation, and integration with other systems More ❯

of Work in a consultancy or client-facing setting. A solid technical understanding to work confidently with technical leads in identifying and managing requirements, dependencies, and issues. Excellent stakeholder management, communication, and interpersonal skills, with a collaborative and pragmatic approach. Proven ability to manage complex delivery lifecycles, effectively identifying, assessing, and mitigating risks, and balancing multiple goals and dependencies. … Strong delivery assurance, risk management, and progress tracking capabilities. Strong experience of Government Digital Service (GDS) standards. Industry certifications such as Certified Scrum Master (CSM), SAFe Agilist, or PRINCE2 Agile. Senior Delivery Manager More ❯

Proven leadership of Product initiatives at Discovery, Alpha and Beta phases . Experience of working in complex Public Sector GDS (Governmet Digital Service) or Regulated Services . Excellent Stakeholder management as you will influence senior decision-makers across policy, compliance, engineering and delivery and navigate multi-supplier ecosystems. Design and run frameworks that balance user value, regulatory/policy … intent, technical risk/vision and cost-to-serve. Challenge requests with data and option Product Strategy, define and communicate clear product vision and strategy aligned to organisational goals and outcomes. Ensure product roadmap reflects user needs, policy intent, technical constraints, and value metrics Establish and maintain prioritisation framework combining user value, business strategy, technical risk, and cost … trust across senior stakeholders, policy leads, compliance, engineering, and delivery partners (as needed). Governance & Assurance. Ensure compliance with government service standards, accessibility, security, and operability requirements. Advise on Risk management and Enable readiness for Discovery, Alpha, and Beta assessments through evidence-based planning and documentation. Lead multi-disciplinary teams and Coach team members and stakeholders in product More ❯

Oversee requirements gathering, functional documentation, and testing cycles. Present updates, risks, and progress to senior stakeholders and steering committees. Experience Required: Proven track record in technology delivery/project management within financial services. Strong background in lending, loan lifecycle, syndicated lending/LoanIQ, risk management, or credit processes . Experience in transformation/change programmes and cross More ❯

Cyber Security function. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role is primarily remote; however, regular attendance at our Farnborough office is required (typically … once per week, usually Thursdays) for in-person collaboration. Lead the development and implementation of Application Code Security and User Access Management capabilities within the team. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR, Incident Handling, DLP, EASM, Cloud Security, and WAF. Work proactively to drive deployments, resolve incidents, and More ❯

searching for a ICT Project Manager to work in the public sector. 37 hours per week. 5 months contract. 09:00-17:00 Job Description: The Information and Data Management (IADM) Programme requires a Project Manager to coordinate and deliver projects pertinent to Enterprise Content management and a number of other business focussed ICT projects. The IADM programme … to deliver a quality product or service within agreed resources, timescales and other business constraints including budgets. Take professional responsibility for the full range of technical and supplier relationship management aspects of systems, products, services or infrastructure specification, capacity planning, strategic and operational design, policy and process definition, development, procurement, implementation, hand over and support in order to deliver … that meet the needs of the clients and their users and comply with appropriate professional, technical and national standards. Lead, manage and motivate large project teams in a matrix management environment influencing, negotiating and providing technical advice and expertise to clients, external partners, contractors and colleagues, undertaking appraisals and taking responsibility for mentoring staff, in order to encourage the More ❯

Develops new consulting assets and accelerators for the practice and actively mentors Senior Managers. What You'll Bring (Candidate Profile) Experience: A seasoned professional with 15+ years in a management or technology consulting firm. Expertise: A recognised expert in multiple solution areas (such as Cyber Strategy, Risk Quantification, or Zero Trust) with a strong background in managing large … with a high level of resilience and comfort in tackling ambiguous challenges. Specialised Knowledge: Demonstrable experience in two or more key areas, such as cyber crisis readiness, third-party risk management, securing critical infrastructure, cloud architecture, or cyber risk quantification. How We Measure Success (KPIs) Delivering exceptional client impact and delighting clients with first-class project delivery. More ❯

Develops new consulting assets and accelerators for the practice and actively mentors Senior Managers. What You'll Bring (Candidate Profile) Experience: A seasoned professional with 15+ years in a management or technology consulting firm. Expertise: A recognised expert in multiple solution areas (such as Cyber Strategy, Risk Quantification, or Zero Trust) with a strong background in managing large … with a high level of resilience and comfort in tackling ambiguous challenges. Specialised Knowledge: Demonstrable experience in two or more key areas, such as cyber crisis readiness, third-party risk management, securing critical infrastructure, cloud architecture, or cyber risk quantification. How We Measure Success (KPIs) Delivering exceptional client impact and delighting clients with first-class project delivery. More ❯

Develops new consulting assets and accelerators for the practice and actively mentors Senior Managers. What You'll Bring (Candidate Profile) Experience: A seasoned professional with 15+ years in a management or technology consulting firm. Expertise: A recognised expert in multiple solution areas (such as Cyber Strategy, Risk Quantification, or Zero Trust) with a strong background in managing large … with a high level of resilience and comfort in tackling ambiguous challenges. Specialised Knowledge: Demonstrable experience in two or more key areas, such as cyber crisis readiness, third-party risk management, securing critical infrastructure, cloud architecture, or cyber risk quantification. How We Measure Success (KPIs) Delivering exceptional client impact and delighting clients with first-class project delivery. More ❯

Develops new consulting assets and accelerators for the practice and actively mentors Senior Managers. What You'll Bring (Candidate Profile) Experience: A seasoned professional with 15+ years in a management or technology consulting firm. Expertise: A recognised expert in multiple solution areas (such as Cyber Strategy, Risk Quantification, or Zero Trust) with a strong background in managing large … with a high level of resilience and comfort in tackling ambiguous challenges. Specialised Knowledge: Demonstrable experience in two or more key areas, such as cyber crisis readiness, third-party risk management, securing critical infrastructure, cloud architecture, or cyber risk quantification. How We Measure Success (KPIs) Delivering exceptional client impact and delighting clients with first-class project delivery. More ❯