1 to 25 of 122 Risk Assessment Jobs in the UK excluding London

bonus and benefits Hybrid working available (3 days in the office) Our client, a dynamic and rapidly growing UK-based EMI FinTech Payments firm, is seeking an experienced Enterprise Risk Analyst to support their Head of Risk. This is a focused Enterprise Risk Analyst role dedicated entirely to the Second Line of Defence (2LOD), centred on embedding the … firm’s Governance, Risk, and Compliance (GRC) model. You will be instrumental in the day-to-day operation of the ERM framework, ensuring risk is managed consistently and strategically across the entire business. Duties of the Enterprise Risk Analyst to include: Risk Register Management: Own the central Risk Register , ensuring all key risks (Strategic, Financial … Operational, and Compliance) are accurately identified, assessed, and maintained. Risk Assessment Cycle: Facilitate and manage the formal Risk and Control Self-Assessment (RCSA) process across all business units. Control Framework: Maintain and evolve the company’s Risk Control Framework , ensuring controls are effective and aligned with the established risk appetite. Residual Risk Analysis More ❯

Team Lead - Vendor Risk Management - Chief Risk Office Location London Business Area Legal, Compliance, and Risk Ref # 10046761 Description & Requirements The energy of a newsroom, the pace of a trading floor, the buzz of a recent tech breakthrough; we work hard, and we work fast-while keeping up the quality and accuracy we're known for. … with the communities around us, too. You can do amazing work here. Work you couldn't do anywhere else. It's up to you to make it happen. Vendor Risk Management (VRM) is part of the Chief Risk Office (CRO) and responsible for assisting Bloomberg departments and select subsidiaries of Bloomberg LP in the selection, assessment, mitigation … and continuous monitoring of risks introduced by vendors and other third-party service providers. What's the Role? We are seeking a Team Leader, Vendor Risk Management, to guide and develop a team of vendor risk professionals while driving both the execution of vendor assessments and the strategic advancement of our Vendor Risk program. You will manage More ❯

a month at 23:59 BST. The Vacancy POSITION OVERVIEW: This role sits within the 2nd Line of defence, where you will lead and support the business, managing cyber risk and information protection positions effectively. Protecting the business from security threats, by identifying risks and developing appropriate risk migration plans. Providing senior leadership with independent assurance of their … cyber risk and information protection posture. The role will work collaboratively with 1st Line cyber team to ensure business assurance plans are shared and the requirements of 2nd Line are understood. You will also take the lead in delivering a defined list of cyber assurance reviews, projects, and initiatives as well as achieving the cyber assurance and compliance related … objectives. You will also help shape the City cyber security strategy for data security, monitoring and reporting, risk and threat assessment, incident response, business continuity and disaster recovery. PRINCIPAL TASKS AND RESPONSIBILITIES Monitor & Review Contribute and maintain the current information security risk management framework, articulate risk in business terms, identify appropriate mitigation measures and drive their More ❯

the Role: We are seeking a highly skilled and strategic Software Engineering Manager to lead a team of engineers focused on building and maintaining technology solutions that support financial risk technology focused on market risk and counterparty credit risk. This role is pivotal in ensuring the development of scalable, secure, and high-performance systems that enable real-time … risk assessment, regulatory compliance, and data-driven decision-making across the organization. Key Responsibilities: Lead and mentor a team of software engineers in the design, development, and deployment of risk management platforms and tools. Partner with risk managers, quants, traders, and technology teams to implement technology solutions for risk management Drive the adoption of modern … or a related field. 10+ years of software engineering experience, with at least 5 years in a leadership or managerial role. Strong background in financial services, particularly in market risk, counterparty credit risk, or risk analytics Proficiency in modern programming languages (e.g., Java, Python, Scala) and frameworks. Experience with cloud platforms (AWS, Azure, or GCP). Deep More ❯

Primary Details Time Type: Full time Worker Type: Employee The purpose of this role is to enhance risk assessment and decision-making processes through the provision of advanced risk modelling analytics. This is achieved through engaging with business stakeholders to define requirements and combining this Accumulation Management expertise and knowledge of data sets. Senior Cyber Risk … as a leading resource on cyber accumulations, providing expert guidance and insights to internal teams and external stakeholders. Collaborate with Global Cyber team other divisional stakeholders to develop effective risk mitigation strategies and optimize risk management processes. Collect, validate, and analyse large datasets related to cyber risks, ensuring data accuracy and reliability. Present findings in a clear and … QBE's proprietary view of risk. Work closely with cross-functional teams, including Global Cyber team, underwriting, actuarial, and claims, to ensure a holistic understanding of the company's risk landscape. Communicate effectively with external stakeholders, including reinsurers and regulatory bodies, to maintain transparency and compliance with industry standards. Stay abreast of the latest developments in cyber modelling, risk More ❯

Primary Details Time Type: Full time Worker Type: Employee The purpose of this role is to enhance risk assessment and decision-making processes through the provision of advanced risk modelling analytics. This is achieved through engaging with business stakeholders to define requirements and combining this Accumulation Management expertise and knowledge of data sets. Senior Cyber Risk … as a leading resource on cyber accumulations, providing expert guidance and insights to internal teams and external stakeholders. Collaborate with Global Cyber team other divisional stakeholders to develop effective risk mitigation strategies and optimize risk management processes. Collect, validate, and analyse large datasets related to cyber risks, ensuring data accuracy and reliability. Present findings in a clear and … QBE’s proprietary view of risk. Work closely with cross-functional teams, including Global Cyber team, underwriting, actuarial, and claims, to ensure a holistic understanding of the company's risk landscape. Communicate effectively with external stakeholders, including reinsurers and regulatory bodies, to maintain transparency and compliance with industry standards. Stay abreast of the latest developments in cyber modelling, risk More ❯

optimization, G-SIB score analysis, and return on Tangible Common Equity (TCE) attribution. You will be instrumental in developing cutting-edge tools and strategies to analyse and optimize key risk and performance metrics across developed and emerging markets (covering close to 80 countries), leveraging your expertise in mathematical optimization, advanced programming, and full-stack development. Team/Role Overview … As a Quantitative Analyst within Markets Treasury & Financing, you will be at the heart of developing and implementing innovative solutions to support and enhance the business's performance and risk management. This role involves a deep dive into capital charges, balance sheet utilization, and liquidity management. You will work within a dynamic environment, collaborating closely with Fixed Income Market … will directly impact strategic decision-making and operational efficiency through the creation of advanced analytics, optimization tools, and robust automated platforms. What You'll Do: Calculate itemized attribution of Risk Weighted Asset (RWA), G-SIB score, and return on Tangible Common Equity (TCE) for the Fixed Income Finance business. Develop tools and strategies to analyse and optimize these critical More ❯

GBP Onsite WORKING Location: Central London, Greater London - United Kingdom Type: Permanent Cyber Security Consultant - Cyber Strategy & Risk London | Up to £50k + Package Join a dynamic consultancy helping organisations strengthen their cyber resilience. This role is ideal for someone with hands-on experience in cyber strategy, risk assessments, and frameworks such as NIST and ISO27001. You'll … support a variety of clients, helping them protect critical assets and improve their security posture. What you'll be doing: Supporting cyber strategy and risk assessment projects across multiple clients Assisting with implementation of NIST and ISO27001 frameworks Preparing reports and recommendations for client stakeholders Collaborating with senior consultants to deliver high-quality client outcomes Contributing to internal … knowledge-sharing and continuous improvement initiatives Experience required: Practical experience in cyber strategy or risk assessment Knowledge of NIST frameworks and ISO27001 standards Strong analytical and problem-solving skills Effective communication skills, both written and verbal Consultancy experience is a plus but not essential The package: Competitive salary up to £50k plus benefits Career progression and professional development More ❯

via salary finance Online savings- major retailers, utilities, entertainment plus many more! About Our Opportunity We are seeking a technically proficient and strategically minded Head of Information Security Governance, Risk and Compliance (GRC) to lead our governance, risk, and compliance functions. This role is ideal for a seasoned security professional with a strong technical foundation who can bridge … the gap between security operations and enterprise risk management. You will be responsible for developing and maintaining a robust GRC framework that aligns with business objectives, regulatory requirements, and industry best practices. What You Will Be Doing You’ll lead the governance, risk, and compliance functions across the enterprise, balancing strategic oversight with technical depth. This includes: Designing … security governance framework. Creating, enforcing, and monitoring security policies, standards, and procedures. Embedding security into business strategy and culture through close collaboration with senior leadership. Owning the organisation’s risk register and assessment processes. Leading technical risk assessments across infrastructure, applications, and third parties. Overseeing threat modelling and vulnerability management initiatives. Providing risk-based recommendations to More ❯

You will be responsible for assessing the project security posture, through the phases of project delivery and articulate the remediation activity via production of the Secure-By-Design self-assessment tracker. The ideal candidate will hold Active SC clearance and have a strong background in delivery Security Assurance support, with the following skills and experience: Experience of producing Secure … By-Design assessments (Risk Assessment Papers, Risk Treatment Plan, Risk Business Case & Security Management Plan). Experience of implementing vulnerability management processes. Experience of security assurance and the measurement of controls. Experience in risk and threat modelling within a high-threat government environment. More ❯

You will be responsible for assessing the project security posture, through the phases of project delivery and articulate the remediation activity via production of the Secure-By-Design self-assessment tracker. The ideal candidate will hold Active SC clearance and have a strong background in delivery Security Assurance support, with the following skills and experience: Experience of producing Secure … By-Design assessments (Risk Assessment Papers, Risk Treatment Plan, Risk Business Case & Security Management Plan). Experience of implementing vulnerability management processes. Experience of security assurance and the measurement of controls. Experience in risk and threat modelling within a high-threat government environment. More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One's third parties. The Cyber Third Party Risk Reduction (CTPRR … internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party's security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry … requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing to know when to pull in experts and escalate. They challenge and innovate within their team to drive process improvements to elevate program efficiency. What you'll do: Support kick-off, planning and scoping activities for cyber-focused More ❯

of IT process frameworks, with a strong emphasis on mitigating risks, enhancing security and availability, and aligning IT operations with strategic goals. The ideal candidate will bring a practical, risk-based mindset to the role and fostering a culture of operational excellence. This role will report into the Vice President, Technology Controls Assurance Programs. Due to the role requirements … regions. What you will be responsible for Partner with the relevant functions and leaders to: Review current standards based on authoritative sources to fulfill regulatory and client expectations Embed risk considerations into process maps, highlighting critical control points (e.g., privileged access, data flows) to support security and compliance efforts Analyze existing technology processes to identify inefficiencies, redundancies, and gaps … in execution and/or risk mitigation Recommend process improvements to streamline IT workflows, enhance performance, and reduce operational friction Understand and document gaps against optimal process effectiveness and work with CIO directs to develop remediation actions or supporting strategic programs necessary to address gaps Partner IT, cybersecurity, and business risk leaders to ensure process maps, and related More ❯

in moving to the beautiful county of Derbyshire, we can provide a generous relocation package of up to £8,000 and the key duties are: Provide psychiatric assessments, including assessment of risk to self and others. Manage patients under the care of the CAMHS Crisis and Liaison pathway including risk assessment and management. Liaison with community More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

supporting our Central Government client who are seeking a Cyber Security Advisor on an initial 8 contract Service Location: Glasgow (Hybrid) Essential Skills Experience of cyber security analysis and assessment, including threat identification, risk assessment, evaluation of technical controls, and assessment against industry standards Experience of engaging, advising and influencing at all levels of an organisation More ❯

executing the screening, onboarding, review and data transfer requests fulfillment across all Businesses within Citi as and when received and as defined in rules provided by respective Independent Compliance Risk Management (ICRM). Discuss, implement and operationalize the new Country privacy and regulatory changes impacting the Cross Border Transfer process as advised by Country ICRM. Quality Assurance (QA): perform … outcome. Contribute to Data Enablement Process: Provide support and guidance to Business in the execution of the transformational data enablement process to streamline, standardize and simplify global program related risk assessment questionnaire by driving efficiency through organizing questions into logical groups, and reducing redundancies. Target State Process Model Implementation: Support the design and implementation of the target state … operational model for the Data Transfers Office, contributing to projects and initiatives to drive consistency and reduce risk in DTO processes. Team Collaboration: Lead, mentor, train a high-performing team responsible for execution, coordination, and control adherence, contributing to a culture of accountability, excellence and continuous improvement. Process Implementation & Enhancements: Assist in the implementation of a scalable and efficient More ❯

EAR Part-IS, CAA requirements, and emerging aviation security standards. This position requires deep expertise in cybersecurity frameworks, aviation security requirements, and the ability to balance innovation with robust risk management in our fast-paced, cutting-edge environment. Essential Experience: Minimum 8 years of information security experience, with at least 3 years in aerospace, aviation, or highly regulated industries … of aviation cybersecurity regulations, including EASA requirements, CAA frameworks, or similar aviation security standards Experience with industrial control systems security, particularly in safety-critical environments Demonstrated expertise in cybersecurity risk assessment and management methodologies specific to engineering and manufacturing environments Technical Expertise: Strong knowledge of cybersecurity frameworks (NIST, ISO 27001, aviation-specific standards) Experience with security architecture design … aviation-specific cybersecurity standards Lead cross-functional security initiatives across engineering, operations, and certification teams Provide security expertise to support ZeroAvia's certification programmes with FAA, CAA, and EASA Risk Management & Compliance: Conduct comprehensive cybersecurity risk assessments specific to aviation systems and hydrogen-electric propulsion technologies Ensure compliance with EASA EAR Part-IS regulations and UK aviation cybersecurity More ❯

Responsibilities Clearance Operational Support: Oversee and execute the screening, onboarding, review and data transfer requests fulfillment across all businesses within Citi as defined in rules provided by Independent Compliance Risk Management (ICRM). Discuss, implement and operationalize new country privacy and regulatory changes impacting the cross-border transfer process as advised by Country ICRM. Quality Assurance: Perform regular reviews … Contribute to Data Enablement Process: Provide support and guidance to the business in the execution of the transformational data enablement process to streamline, standardize and simplify global program related risk assessment questionnaires by driving efficiency through organizing questions into logical groups and reducing redundancies. Target State Process Model Implementation: Support the design and implementation of the target state … operational model for the Data Transfers Office, contributing to projects and initiatives to drive consistency and reduce risk in DTO processes. Team Collaboration: Lead, mentor, and train a high-performing team responsible for execution, coordination, and control adherence, fostering accountability, excellence and continuous improvement. Process Implementation & Enhancements: Assist in the implementation of a scalable and efficient operating model aligned More ❯

within NHS England CSOC comprised of four primary functions: Intelligence Collection & Analysis - Perform collection, aggregation, analysis and contextualisation of healthcare and security information to produce actionable CTI. Cybersecurity Threat & Risk Assessment - Perform high-level risk assessments of current and emerging threats to the health & social care estate. Intelligence Dissemination & Reporting - Produce stakeholder-specific intelligence reporting for stakeholders. … supporting documents. Person Specification Knowledge Essential Proven knowledge of techniques, approaches and processes of digital threats; ability to detect, monitor, analyse and prevent digital threats. Demonstrable Knowledge of vulnerability assessment tools, techniques, models, and systems; ability to utilises the knowledge to identify vulnerabilities on network, operating system, mobile application, etc. Desirable Demonstrable knowledge of and ability to utilise a More ❯

think innovatively, and listen to each other and customers in meaningful ways. Moody's is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, we're advancing AI to move from insight to action—enabling intelligence that not only understands complexity but responds to it. We decode risk to unlock … APIs Formulation and delivery of automated test coverage solutions Supporting documentation Internal and external presentations About The Team Asset Management, a division of Moody's, provides intuitive, user-friendly risk analytics and reporting for the pensions and investment market. Through our award-winning, customizable risk management solutions, our clients can identify, evaluate and manage risk while effectively … investment opportunities. The PFaroe Wealth product suite delivers a flexible framework that provides extensive coverage of a wide range of investments to provide transparency into a portfolio's exposure, risk and performance. Based in Edinburgh, the PFaroe Wealth team is looking for a talented, motivated individual to join the software development department. This will be a hybrid internship with More ❯

Determine the security controls for above, document appropriately and partner with IT architecture/development stakeholders to implement during early in system development life cycle Perform security architecture and risk assessment of internally developed or acquired IT systems and applications using best practices including threat modelling. Ensure that security design and controls are consistent with organization's security … architecture principals. Provide security recommendations including automated controls, configurations on projects, processes, risk exceptions, corrective action plans, and risk reduction initiatives Collaborate with the internal and external technology teams to drive the development of strategies and plans for improving both architecture and application security Establish relationships with cross-functional areas including Business, Technology, and Compliance stakeholders and serve … as a SECURITY subject-matter expert Manage risk by analyzing the root cause of security issues, determining compensating controls, and driving remediation Support Global Information Security policies, standards, and initiatives development and implementation by representing in different Citi action groups such as Delegated Action Groups (DAG). Qualifications: Additional technical certifications are preferred Demonstrated ability to research and apply More ❯

IT Security, Data, Governance, Risk & Compliance (GRC) specialist to £95,000 plus excellent bonus and benefits package Security & Data Governance management, Risk & Compliance Strong stakeholder management experience ISO27001, NIST, GDPR, Data Governance frameworks Operational effectiveness, risk, compliance, policies, testing procedures Working alongside IT Security, Technology teams globally 3 days per week in the London office, occasional travel … is urgently seeking an experienced Data Governance & Security specialist to work in a small team alongside the IT Security and Technology teams to continue to develop and manage the Risk and Compliance requirements across the business. You will have a background in Financial Services and good Project Management skills to work alongside their internal IT Security and Technology teams … to develop, lead and control the governance and regulatory reporting required across the business. 1st line of defence - laws, compliance, risk, IT governance, security, data Work across various business functions to ensure compliance and risk assessment Implement industry best practices - ISO27001, GDPR etc Update senior stakeholders across the Group This is an outstanding opportunity for someone who More ❯

administrative tasks to help teams save time and use this for more value-added work. ***Preference will be given to internal Trust staff, as well as 'Priority' and 'At Risk' status including NHS At Risk staff throughout Devon who are able to display recent relevant experience as dictated by the Person Specification.*** Main duties of the job The … successful candidate will assist the Trust in the development, delivery and maintenance of cost-effective, risk-controlled, robust, reliable, responsive and secure automation solutions, primarily through the use of cloud-based automation tools, and software, with the aim to assist the organisation in eliminating paper and improving efficiency. The post holder's primary function is to operationally support the … 12. To keep abreast of team plans and all aspects of the automation development lifecycle. 13. Identify the most appropriate course of action to take based on technical knowledge, risk assessment, previous experiences and user requirements. 14. Organise/support with internal team meetings to track progress, project meetings, conduct project proposals and feasibility reviews 15. Deliver projects More ❯