76 to 100 of 283 Risk Register Jobs in the UK

Contract type Permanent Contract Job summary We are seeking a proactive Information Security Specialist skilled in security operations, threat intelligence, and risk management. This role is crucial for maintaining robust security protocols, identifying vulnerabilities, and ensuring compliance with security standards. The ideal candidate will have a strong background in IT infrastructure security, preferably within financial institutions, experience with network … response activities including malware analysis and threat hunting. Collaborate with the CERT team in maintaining an up-to-date threat landscape and contributing to the incident response playbooks. Security Risk Management and Compliance Support the maintenance of the IT security risk register and assist with internal and external security audits. Contribute to security reporting and tracking security … risk indicators. Candidate criteria Minimal education level Bachelor Degree/BSc Degree or equivalent Academic qualification/Speciality CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CNA). Experience Proven experience in an information security role is essential. Required skills Dynamic, creative, and proactive. Committed to continuous learning and staying updated with the latest technologies. Ability to work More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk, outsourcing compliance, and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS, and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procedures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements, including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register, prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procerdures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements , including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register , prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procedures. Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA's outsourcing requirements , including due diligence … planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register , prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability More ❯

European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk, outsourcing compliance, and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience … DSS, and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procedures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements, including due diligence … Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Maintain the enterprise risk register, prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability management, endpoint security (EDR/XDR More ❯

SEO, CRO, accessibility, and performance. Manage scope, costs, and timelines of workstreams. Collaborate with the PMO Analyst and Resources Manager to align resource allocation with project milestones. Maintain a risk register and monitor delivery progress. Adhere to ISO standards to oversee quality and security of solutions delivered. Work with Sales & Client Services teams to identify new opportunities and … scope potential projects. Participate in pre-sales activities, including scoping, proposals, tenders, and client pitches. Review Statements of Work (SoWs) for accurate scoping and risk management. Engage actively in the CACI delivery community by sharing best practices, mentoring others, and continually improving delivery processes. Skills & Experience Experience delivering web-related projects for large government agencies or similar organizations, following … Laravel or equivalent). Experience managing software workstreams in an agile environment. Strong stakeholder engagement skills, capable of handling difficult situations and resolving conflicts. Commercial awareness, including budget tracking, risk management, and forecasting. Ability to build and lead high-performing teams with clear communication and collaboration. Eligibility for security clearance, requiring UK citizenship and residence in the UK for More ❯

drawings, and maintenance records, ensuring alignment with compliance and operational standards. * Contractor & Supplier Coordination Assist with contractor onboarding, scheduling, and engagement activities, including organising market engagement exercises as required. * Risk Management Support Coordinate risk workshops, manage updates to the operational risk register, and assist in preparing inputs for corporate reporting processes. * Steering & Review Processes Support the More ❯

levels) for all relevant product lines using the relevant software (SAP, Ortems, Tableau, Excel). Sales Forecasting: Responsible for maintaining and publishing monthly accurate Sales data including sales progress, Risk & Opportunities, and Quarterly/Yearly landing points stretching to cover the next 3 years. Risk Management: Critical analysis of the demand plan alongside all relevant stakeholders to identify … capacity bottlenecks for all product lines that could impact the delivery of a project. Responsible for managing the Industrial Operations planning Risk Register and escalation through the weekly P&L meeting. Communication: Responsible for the communication to the project teams and/or senior stakeholders on project progress, Risks & Opportunities. S&OP Data Presentation: Responsible for presenting outputs More ❯

councils response to critical cyber incidents, coordinating resolution efforts and informing senior stakeholders. Collaborate with security architects and technical teams to shape and implement cyber security policies, ensuring theyre risk-appropriate and business-friendly. Manage cyber security risks by embedding them into the corporate risk register and advising on appropriate mitigation strategies. Oversee the planning and execution … thinking with a focus on continuous improvement, service excellence, and innovation. Experience managing teams (of varying experience, including apprentices), budgets and suppliers, and working in a high-profile, high-risk environment. Why Join ECC? At ECC, youll be part of a collaborative and ambitious organisation that values creativity, innovation, and excellence. Youll have the opportunity to make a real More ❯

patching, firewall configuration reviews and SIEM alerting. Hold our partners/suppliers to account for spend, performance and behaviour, including diversity within their teams. Maintain and input to the risk register in the technology service, documenting details of any or all risks and their progress to remediation or mitigation. Manage staff performance appropriately by providing constructive feedback and More ❯

patching, firewall configuration reviews and SIEM alerting. Hold our partners/suppliers to account for spend, performance and behaviour, including diversity within their teams. Maintain and input to the risk register in the technology service, documenting details of any or all risks and their progress to remediation or mitigation. Manage staff performance appropriately by providing constructive feedback and More ❯

government entities through innovative technologies. With new ways to pay, Visa has evolved into a company that is a Trusted Engine of Commerce, providing payment solutions for everyone, everywhere. Risk directly supports Visa’s strategic priorities to drive sustainable growth and protect Visa’s brand and reputation. Risk is the backbone of Visa, providing constructive solutions and challenge … partnering with the business to help identify and manage risks, balancing risk, and reward, and providing insights to inform senior management’s strategy and decision making. We strive to be a diverse, inclusive, best in class Risk function, where we provide exciting development opportunities for our people. We encourage quality of life outside of the office, whether it … to businesses and functions so that they can achieve their strategic aims when engaging with Third Parties. We ensure that the third parties we engage with meet the Visa risk appetite and that the business can grow safely. TLMP is one of the key pillars of Corporate Risk, which also includes Operational Risk, Enterprise Risk, Financial More ❯

and the systems to support the ongoing business. Complex query analysis and resolution including client queries & internal issues. Preparing and supporting the preparation, monitoring and reporting on the RCSA (risk & control self-assessment) for teams in the UK Private Banking unit (including Operations, SWP and Technology) feeding the SIEL firm wide RCSA. Responsibilities include: Supporting the development, monitoring and … maintenance of risk registers The development and analysis of key risk indicators Key control testing and assessment Monitoring and reporting of operational risk events Work closely with the business and control function to identify risks Undertake and report on operational risk trend analysis Plan, report and track remediation plans/actions related to gaps in RCSA … it meets the changing and growing demands of the business to ensure it remains fit for purpose Preparation of, or supporting the preparation of, root cause analysis of operational risk events within the Incident management reporting tool. Continually monitor process and procedures to ensure that appropriate controls are in place and are maintained at levels agreed with Management and More ❯

Project Manager with a strong consultancy background to lead and deliver complex Identity and Access Management (IAM) projects across enterprise-level environments. This role will involve managing change and risk frameworks, coordinating with internal and external stakeholders, and ensuring alignment with best practices (ITIL) and compliance with regulatory requirements (e.g., GDPR, SOX). Key Responsibilities: Lead the change management … IAM implementations across enterprise systems, ensuring minimal disruption and maximum adoption. Assess and mitigate risks associated with access management changes, ensuring secure, compliant, and effective solutions. Create and maintain risk registers, define controls, and track mitigation effectiveness through regular reporting. Develop and manage change management frameworks aligned with ITIL best practices to support technology and business transformation. Collaborate with … stakeholders to evaluate change impacts and secure alignment across business units. Monitor and ensure ongoing compliance with security policies, standards, and regulatory frameworks such as GDPR and SOX. Deliver risk assessments and change impact analyses to senior management and governance boards. Lead incident response and problem management activities related to IAM systems and service disruptions. Conduct and escalate commercial More ❯

Direct message the job poster from Audit & Risk Recruitment Audit and Risk Recruitment are working in partnership with a leading education provider in South London in the search for Data Protection Manager. We have an exciting opportunity for an experienced data protection and compliance professional. The Data Protection Compliance Manager role is key to the organisation, as it … Data Protection policies. Be responsible for updating and maintaining the Federation's ROPA for Head Office, Primary and Secondary. Manage and respond to Data Sharing Agreement requests, adopting a risk-based approach and adhering to Supply Management timelines as appropriate. Maintain and update the Data Protection SharePoint site. Advise academies and Head Office staff on Subject Access Requests (SARs … ensuring SARs escalated into Head Office are tracked to completion. Carry out academy data protection audits as required. Track and capture data protection risks in the Data Protection risk register. Work with the Head of IT Infrastructure and Head of Cyber Security to improve data security in line with privacy-by-design and industry best practice (ISO27001). Work More ❯

technical background to provide continuity with others in the team and to be an SME to internal stakeholders for IT Security matters, the role has an emphasis on cyber risk management and governance. Main responsibilities Security programme [40%] : Implement and/or manage the implementation of solutions to counter cybersecurity risks in accordance with the global security roadmap including … Researching, designing and testing solutions to counter cybersecurity risks. Implementing and maintaining solutions owned by IT Security. Designing and implementing processes. Project planning, managing dependencies and coordinating resources. Governance, risk and compliance [20%] : Manage the regional cyber risk exposure and drive compliance with established policies, standards and procedures including: Working closely with the to continually develop, improve and … maintain a globally consistent approach to the adoption of IT Security controls. Performing cyber risk assessments and contributing to the global risk register. Managing and tracking of risk treatment actions. Performing gap analysis and/or assessing compliance with established controls. Undertaking due diligence on prospective and existing third-party service providers. Measuring and reporting performance via More ❯

gaps identified as part of the assurance process. Consult the rest of the business and represent Information Security in key forums, e.g. Project teams, Executive Committee, DevOps, IT Operations, Risk and Compliance and Legal to ensure that security standards are met and adhered to. Manage the supplier evaluation process and action findings identified from the process for RFP/… requested from the business and internal supplier evaluation requirements. Coordinate the delivery of companies Incident Response and Disaster Recovery tabletop exercises and planned failover tests. Provide input to organisational risk registers, based on knowledge of current and emerging information security risk and known vulnerabilities within existing controls. Build and maintain positive stakeholder relationships at all levels of the More ❯

stakeholders and colleagues to prioritise delivery Liaise with internal specialist teams and clients to agree scope of work, timeframes, and costs Create and communicate project plans Develop supporting documentation & risk registers Work with lead developers to ensure task estimates are available and monitor progress against estimates Run stand-up meetings with the production team Ensure work is completed to More ❯

stakeholders and colleagues to prioritise delivery Liaise with internal specialist teams and clients to agree scope of work, timeframes, and costs Create and communicate project plans Develop supporting documentation & risk registers Work with lead developers to ensure task estimates are available and monitor progress against estimates Run stand-up meetings with the production team Ensure work is completed to More ❯

stakeholders and colleagues to prioritise delivery Liaise with internal specialist teams and clients to agree scope of work, timeframes, and costs Create and communicate project plans Develop supporting documentation & risk registers Work with lead developers to ensure task estimates are available and monitor progress against estimates Run stand-up meetings with the production team Ensure work is completed to More ❯

the energy trilemma ·Integrating SNOW instance with critical Cordant systems like: Dynatrace, Rally, Salesforce, etc. to enable end to end solutioning and faster operations ·Delivering project plans, solution roadmaps, risk registers, project budgets, and all other critical artifacts to ensure a successful program and stakeholder engagement Fuel Your Passion To be successful in this role you will: ·Have a More ❯

Join to apply for the Lead Risk, Audit and Assurance Analyst role at United Utilities 2 days ago Be among the first 25 applicants Join to apply for the Lead Risk, Audit and Assurance Analyst role at United Utilities Get AI-powered advice on this job and more exclusive features. Salary - £45,974.00 Work Type - Hybrid Job Location … at Work courses Deals and discounts EVolve Car Scheme Employee Assistance Plan Mental health first aiders ShareBuy MORE Choices flexible benefits Enhanced parental leave schemes Job Purpose As Lead Risk, Audit and Assurance Analyst you will develop, maintain and embed the Technology Services governance and assurance framework, ensuring consistent and global adherence working with the Risk, Audit and … Assurance Manager. Objectively validate and maintain a portfolio of operational risks for the Technology Services business area in the Operational Risk Register, to a standardised quality and format. So that decisions regarding the prioritisation of responses to these risks can be taken with confidence and addressed to mitigate by business area leaders. You will also lead the quality More ❯

processes to detect weaknesses or vulnerabilities and drive improvements. Conduct scenario analysis and stress testing to evaluate organizational preparedness for disruptions and assess capital requirements. Prepare and deliver detailed risk reports regularly and as needed for senior leadership, risk committees, and regulatory bodies, highlighting trends and control effectiveness. Maintain the risk register, ensuring it is comprehensive … and aligned with the risk framework. Support reviews of the operational risk management framework to ensure industry and regulatory compliance. Assist in implementing and maintaining the governance framework to ensure regulatory and internal policy compliance. Requirements 3-5 years' experience in a 1st or 2nd line role within financial services, focusing on Operational Risk. Strong relationship-building skills. … Excellent written and verbal communication skills, with proficiency in Microsoft Office tools. Understanding of risk assessment methodologies and frameworks. Knowledge of Operational Risk capital requirement calculations or modeling. Excellent stakeholder management skills, with the ability to liaise across risk, compliance, and IT teams. What you will get in return: Competitive Salary: We reward your skills and talents More ❯

Join to apply for the First Line Security Risk Manager role at CFC 4 days ago Be among the first 25 applicants Join to apply for the First Line Security Risk Manager role at CFC We are seeking a proactive and experienced First Line Security Risk Manager to lead the implementation and management of information security risk practices across our organisation. In this role, you will be the first line of defense for security risk management and play a critical part in ensuring security governance, policy compliance, and operational risk ownership across business functions. You will report directly to the Group CISO and work closely with business units, IT, compliance, and audit to ensure … security risks are effectively identified, assessed, documented, and mitigated in line with our overall risk appetite. About the role The ideal manager for this position will lead and maintain the first line Information Security Risk Management function. Additionally, this person will be responsible for: Conducting and documenting security risk assessments across systems, projects, and processes. Owning and More ❯

Job Description Description We have an exciting opportunity for a Risk Manager to join us on a permanent contract, based in Luton! (Hybrid Working) The IT Strategy & Architecture team provides leadership around easyJet's technology strategy, the evolution of our enterprise IT architecture, solution architectures for complex change, cybersecurity architecture, our federated technical architecture practice, and areas such as … end-to-end IT risk management. Reporting to the Head of IT Risk & Resilience, the Risk Manager is responsible for implementing, embedding and continuously improving easyJet's IT Risk Management practice. We work collaboratively with a broad range of colleagues and stakeholders at all levels (from the C-suite to the frontline) and focus on striking … a pragmatic balance between supporting in-flight initiatives and steering longer-term investment. What you'll be doing • Planning, designing and implementing the overall risk management process as part of the maturing IT Risk framework that is applied across easyJet IT. • Identifying, analysing and prioritising key areas of IT risk as well as articulating the impacts they More ❯