126 to 150 of 674 Remote Risk Management Jobs

IT Risk & Control Analyst Leading Financial InstitutionHybrid - 3 Days p/w in London£70k - £82k + Benefits + Bonus Join a leading financial institution as an AVP IT Risk & Control Analyst, where you'll play a key role in managing and enhancing technology risk frameworks, cybersecurity controls, and risk reporting. As a vital member of … the IT Risk and Control team, you will lead key control testing, develop and manage risk indicators, and support monthly governance activities. Working closely with Technology and business teams, your insights will drive continuous improvement in risk management and help maintain compliance with regulatory standards.?????? What You'll Do: Perform and report on control testing to … evaluate cybersecurity and IT controls. Enhance risk frameworks and key risk indicators to support executive leadership in decision-making. Lead monthly governance activities and contribute to firm-wide risk initiatives. Collaborate with stakeholders to identify process gaps and recommend practical solutions. Communicate findings effectively to a range of audiences, including senior management. About You: Experience in IT More ❯

CVSS scores, asset criticality, exploit availability, and exposure. Administer and use Active Directory, virtual machines (VMs), Windows registries, and Windows/Server environments Use and operate application and patch management systems Remediate vulnerabilities on client systems and servers. Create, modify, and implement group policies to satisfy Security Technical Implementation Guide (STIG) requirements and vulnerabilities • Information Assurance Monitor IT systems … may impact the security posture of the system. Validate updates to the system security plans and the Plan of Actions and Milestones (POA&M) in the security assessment and management tool to reflect changes to the IT system. Validate that controls applicable to the devices are properly implemented as part of the corresponding Risk Management Framework (RMF … options when patching is not feasible (e.g., configuration changes, registry edits, access controls). Assess and document remediation impact, including potential service disruption, dependencies, and reboot requirements. Support the Risk Management Framework (RMF) lifecycle, including control implementation, assessment preparation, and continuous monitoring. Develop and maintain security documentation, including System Security Plans (SSPs), POA&Ms, and configuration management More ❯

pipeline to support cATO requirements. Cloud and Container Security: Apply best practices to secure containerized environments (e.g., Docker, Kubernetes) and cloud platforms (AWS and/or Azure), including configuration management, access controls, and monitoring. Continuous Monitoring: Establish mechanisms for real-time threat detection and response, maintaining active cyber defense as mandated by cATO. Compliance Documentation: Ensure all security controls … and processes are documented and adhere to DoD cybersecurity policies and guides, including DODI 8510.01, Risk Management Framework for DoD Systems, and the DoD CIO cATO Implementation and Assessment guides. Team Enablement: Provide training and guidance to the client's team on DOD DEVSECOPS cATO policies, best practices, and recommended workflows. Policy Updates: Stay informed of emerging and … core information security capabilities comprising the DoD DevSecOps cATO: Active Cyber Defense, Continuous Monitoring, and Secure Software Supply Chain. In-depth knowledge of DoD cybersecurity policies, particularly DODI 8510.01 Risk Management Framework (RMF) for DOD Systems, and DoD CIO Implementation and Assessment Guides for secure software development and continuous authorization. Familiarity with cloud container design and engineering, DoD More ❯

ATO work for ServiceNow or another similar enterprise application Job Description The Digital Modernization Sector has a career opportunity for an Information Assurance Systems Engineer supporting the Global Solutions Management - Operations II (GSM-O II) contract at DISA. This contract includes the Operations, Sustainment, Maintenance, Repair, and Defense of the Defense Information System Network (DISN) within the DOD Information … must. • Interact with members of the technical team to understand the current system, subsystems, and component specifications. • Responsible for understanding entire projects or processes spanning multiple technical areas. • Support risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions. • Support and assist in documentation production using various software tools and … development, facilitation, and coordination of system documentation such as: System Engineering Plans; Initial Capabilities Documents; Requirements Specifications; and Interface Control Documentation; Assessment and authorization documentation (Body of Evidence) for management and continuous monitoring of information systems. • Effectively communicates with the customer and internal team members across multiple areas. • Assist with the implementation of security procedures, and verify information system More ❯

have an impact and join a business where you can make the difference? Are you keen to work as part of an enthusiastic, passionate, and collaborative team? Join our Risk, Assurance & Process Improvement As Softcat's business continues to grow and evolve, so have the risks and the regulatory landscape. Softcat Plc has recognised the need to further strengthen … its Risk Management and Internal Controls and has created a second line function to strengthen the overall three lines model and improve the way in which risks are identified, managed and communicated across the organisation including Board and Audit Committee. The function is led by the Head of Risk, Assurance and Process Improvement who reports to the … ve got even bigger plans for the future. So, if you share our drive and ambition, get ready to achieve more from your career. Strengthening Controls, Enhancing Processes, Managing Risk This senior role within the Risk, Assurance & Process Improvement team offers a unique opportunity to strengthen the control environment and improve end-to-end processes across Softcat Plc More ❯

Company description: Water Utility Company based in Yorkshire region of England. Job description: Security Governance Risk & Compliance Analyst Hello! Thanks for stopping by. Let us tell you about all the great reasons to join us here at Yorkshire Water: We offer a competitive salary, depending on experience (£36,538 45,673) Annual incentive related bonus (£1000 maximum bonus opportunity … for the performance year) Attractive pension scheme (up to 12% company contribution) Development opportunities in line with the Security Governance Risk & Compliance Analyst progression plan 25 days annual leave plus bank holidays plus an extra wellness day Life assurance cover of 4 times pensionable salary A great benefits package choose from health cash plan scheme, critical illness insurance, dental … days in the office a week Bradford) Work type: 12-month fixed term contract. 37 hours per week, Monday Friday. We have an exciting opportunity for a Security Governance Risk &Compliance Analyst to join the IT team at Yorkshire Water and be a part of helping Yorkshire Water to provide the best service to our customers. Could this be More ❯

Joining our CoE presents a unique opportunity to be at the forefront of major national initiatives, working within a high-impact, collaborative environment. Our diverse roles span architecture, project management, data analytics, software development, and technical support—empowering professionals to shape scalable, next-generation digital ecosystems. Whether delivering sophisticated Big Data platforms, cloud solutions, or advanced infrastructure, our teams … will drive innovation and digital excellence across multiple programmes. Role We are seeking an experienced Risk and Planning Manager to support the Programme Manager and the wider consortium delivering a programme. You will work across multiple partner organisations and the Authority to identify interdependencies, manage risks and issues, and drive re-planning activities in Jira and MS Project. You … will help develop and maintain the programme roadmap, support workstream planning, and facilitate workshops and governance activities. The role requires strong Agile awareness, proven risk management and programme planning experience, and the ability to operate confidently in a high-stakes, security-sensitive environment. Responsibilities Lead the programme-wide risk and issue management process, maintaining risk More ❯

Joining our CoE presents a unique opportunity to be at the forefront of major national initiatives, working within a high-impact, collaborative environment. Our diverse roles span architecture, project management, data analytics, software development, and technical support—empowering professionals to shape scalable, next-generation digital ecosystems. Whether delivering sophisticated Big Data platforms, cloud solutions, or advanced infrastructure, our teams … will drive innovation and digital excellence across multiple programmes. Role We are seeking an experienced Risk and Planning Manager to support the Programme Manager and the wider consortium delivering a programme. You will work across multiple partner organisations and the Authority to identify interdependencies, manage risks and issues, and drive re-planning activities in Jira and MS Project. You … will help develop and maintain the programme roadmap, support workstream planning, and facilitate workshops and governance activities. The role requires strong Agile awareness, proven risk management and programme planning experience, and the ability to operate confidently in a high-stakes, security-sensitive environment. Responsibilities Lead the programme-wide risk and issue management process, maintaining risk More ❯

Joining our CoE presents a unique opportunity to be at the forefront of major national initiatives, working within a high-impact, collaborative environment. Our diverse roles span architecture, project management, data analytics, software development, and technical support—empowering professionals to shape scalable, next-generation digital ecosystems. Whether delivering sophisticated Big Data platforms, cloud solutions, or advanced infrastructure, our teams … will drive innovation and digital excellence across multiple programmes. Role We are seeking an experienced Risk and Planning Manager to support the Programme Manager and the wider consortium delivering a programme. You will work across multiple partner organisations and the Authority to identify interdependencies, manage risks and issues, and drive re-planning activities in Jira and MS Project. You … will help develop and maintain the programme roadmap, support workstream planning, and facilitate workshops and governance activities. The role requires strong Agile awareness, proven risk management and programme planning experience, and the ability to operate confidently in a high-stakes, security-sensitive environment. Responsibilities Lead the programme-wide risk and issue management process, maintaining risk More ❯

to a sustainable, net zero world. We’re looking for a Head of I&T Service Operations. Based at our Paddington site, you’ll be responsible for the definition, management, implementation and delivery of I&T Operations and Service Management across the URENCO Group incorporating: • Delivering iterative Service Strategy and Innovation focussed on how a best in class … IT Operations function works in modern enterprises • Lead on IT Service Continuity planning and testing with multiple outsourced service providers • Manage relationships with partners and service providers including contract management and continual service improvement • Leadership grounded in ITIL/ISO global standards for all I&T operational services • Stakeholder management specifically in reference to Service Outages, Testing Services … and Project Transition to Service • Service Protection in direct delivery of appropriate vulnerability management, risk management and patching services • Lead the management and operation of cloud and SaaS based subscription services • Financial planning for all Operational Services including renewals and upgrades of infrastructure and applications as required • Accountability for Monthly Global Service Reviews for all suppliers More ❯

and Insurance Companies) with expertise in several projects such as Financial Engineering, Quantitative Research, Regulatory Implementation, IT Transformation & Innovation. The firm mainly takes part in: Business consulting: Quantitative research, Risk management (e.g. Market risk, credit risk, counterparty risk), Banking regulations (e.g. Basel III, Solvency II, FATCA, EMIR, MiFID), Pricing & Valuation, Organizational Transformation & Process Improvement. IT … Information systems consulting: Business Analysis, Project Management, Change management, Front Office Support (functional and technical), Development (e.g C++, Python, C#, Java, VBA), Financial Software (e.g. Sophis, Murex, Summit, Calypso), IT Transformation & Innovation. As part of Quanteam Group, Quanteam UK & PL has today more than 80 consultants, working for major Capital Markets institutions in London and Krakow. More ❯

and Insurance Companies) with expertise in several projects such as Financial Engineering, Quantitative Research, Regulatory Implementation, IT Transformation & Innovation. The firm mainly takes part in: Business consulting: Quantitative research, Risk management (e.g. Market risk, credit risk, counterparty risk), Banking regulations (e.g. Basel III, Solvency II, FATCA, EMIR, MiFID), Pricing & Valuation, Organizational Transformation & Process Improvement. IT … Information systems consulting: Business Analysis, Project Management, Change management, Front Office Support (functional and technical), Development (e.g C++, Python, C#, Java, VBA), Financial Software (e.g. Sophis, Murex, Summit, Calypso), IT Transformation & Innovation. As part of Quanteam Group, Quanteam UK & PL has today more than 80 consultants, working for major Capital Markets institutions in London and Krakow. More ❯

and Insurance Companies) with expertise in several projects such as Financial Engineering, Quantitative Research, Regulatory Implementation, IT Transformation & Innovation. The firm mainly takes part in: Business consulting: Quantitative research, Risk management (e.g. Market risk, credit risk, counterparty risk), Banking regulations (e.g. Basel III, Solvency II, FATCA, EMIR, MiFID), Pricing & Valuation, Organizational Transformation & Process Improvement. IT … Information systems consulting: Business Analysis, Project Management, Change management, Front Office Support (functional and technical), Development (e.g C++, Python, C#, Java, VBA), Financial Software (e.g. Sophis, Murex, Summit, Calypso), IT Transformation & Innovation. As part of Quanteam Group, Quanteam UK & PL has today more than 80 consultants, working for major Capital Markets institutions in London and Krakow. More ❯

and Insurance Companies) with expertise in several projects such as Financial Engineering, Quantitative Research, Regulatory Implementation, IT Transformation & Innovation. The firm mainly takes part in: Business consulting: Quantitative research, Risk management (e.g. Market risk, credit risk, counterparty risk), Banking regulations (e.g. Basel III, Solvency II, FATCA, EMIR, MiFID), Pricing & Valuation, Organizational Transformation & Process Improvement. IT … Information systems consulting: Business Analysis, Project Management, Change management, Front Office Support (functional and technical), Development (e.g C++, Python, C#, Java, VBA), Financial Software (e.g. Sophis, Murex, Summit, Calypso), IT Transformation & Innovation. As part of Quanteam Group, Quanteam UK & PL has today more than 80 consultants, working for major Capital Markets institutions in London and Krakow. More ❯

and Insurance Companies) with expertise in several projects such as Financial Engineering, Quantitative Research, Regulatory Implementation, IT Transformation & Innovation. The firm mainly takes part in: Business consulting: Quantitative research, Risk management (e.g. Market risk, credit risk, counterparty risk), Banking regulations (e.g. Basel III, Solvency II, FATCA, EMIR, MiFID), Pricing & Valuation, Organizational Transformation & Process Improvement. IT … Information systems consulting: Business Analysis, Project Management, Change management, Front Office Support (functional and technical), Development (e.g C++, Python, C#, Java, VBA), Financial Software (e.g. Sophis, Murex, Summit, Calypso), IT Transformation & Innovation. As part of Quanteam Group, Quanteam UK & PL has today more than 80 consultants, working for major Capital Markets institutions in London and Krakow. More ❯

required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate with multi-disciplinary teams to define and implement security risk assessments and best practice solutions … ensuring alignment with business risk appetites and transformation goals. You'll be part of a knowledge-sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. Key Responsibilities Deliver Secure by Design risk and security assurance functions within MOD/Public Sector. Lead and advise on risk management frameworks, ISMS, and Enterprise Security … Risk Management. Facilitate security and risk workshops with Authority departments. Produce clear reporting on vulnerabilities, risks, controls, and treatment activities. Provide pragmatic remediation and risk management guidance. Support secure design across technology platforms including cloud infrastructures. Contribute to blogs and research within the Cyberfort community. Experience Required The successful candidate will possess proven experience in cybersecurity More ❯

# FIG UK Relationship Management Analyst at Description About this role FIG UK Relationship Management Analyst About this role BlackRock is one of the world's leading asset management firms and a premier provider of investment management, risk management and advisory services to institutional, intermediary and retail clients worldwide. We offer a range of … solutions - from rigorous fundamental and quantitative active management approaches aimed at maximizing outperformance to highly efficient indexing strategies designed to gain broad exposure to the world's capital markets. Business Unit Overview: • Since founding the Financial Institutions Group (FIG) in 1990, BlackRock's focus has been to enhance outcomes, returns, convenience, value, and transparency for our insurance partners and … ecosystem includes portfolio managers, client service officers, actuaries, and strategists to deliver the breadth of BlackRock's global resources. We also leverage Aladdin, BlackRock's proprietary technology platform and risk analytics, to support our insurance clients. • The team is passionate about first-class relationship management and is committed to deepening and expanding relationships with insurers. • Overall, this role More ❯

and consultants related programmes. Principal Preferred Requirements Cybersecurity Expertise: • Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud • Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable … level • Excellent command of cybersecurity organisation practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies • Keen understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity • Experience and understanding of both the roles and interlock between enterprise & solution architecture • Experience in both operational and transformation cybersecurity … roles or a clear working understanding of both perspectives • Experience working in large-scale IT transformation programmes Identity & Access Management • Secrets Management: Experience of designing solutions using SM tools such as HashiCorp Vault • Experience of developing secrets management patterns and championing designs through architecture governance forums • Experience of designing or implementing Workload Identity Frameworks within large scale More ❯

and consultants related programmes. Principal Preferred Requirements Cybersecurity Expertise: • Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud • Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable … level • Excellent command of cybersecurity organisation practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies • Keen understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity • Experience and understanding of both the roles and interlock between enterprise & solution architecture • Experience in both operational and transformation cybersecurity … roles or a clear working understanding of both perspectives • Experience working in large-scale IT transformation programmes Identity & Access Management • Secrets Management: Experience of designing solutions using SM tools such as HashiCorp Vault • Experience of developing secrets management patterns and championing designs through architecture governance forums • Experience of designing or implementing Workload Identity Frameworks within large scale More ❯

a hybrid working model is acceptable. Your future duties and responsibilities: • Developing and Implementing Security Policies: ISSOs create and enforce security policies, protocols, and procedures to protect information systems. • Risk Assessment and Management: They conduct regular security audits, vulnerability assessments, and risk analyses to identify potential threats and weaknesses. • Security Incident Response: ISSOs respond to security incidents … s information systems comply with relevant laws, regulations, and industry standards. • Security Awareness Training: ISSOs may be involved in educating and training employees on security best practices. • System Security Management: Manage security aspects of information systems, including configuration management, access control, and data protection. • Collaboration and Communication: ISSOs work with various teams, including IT, security, and management … to 5 years of experience. • Security Clearance: Candidates must possess an active TS/SCI clearance with polygraph. • Technical Expertise: Strong knowledge of security principles, technologies, and best practices. • Risk Management Framework (RMF): Experience with the Risk Management Framework and its application to information systems. • Security Architecture: Understanding of secure system design principles and experience developing More ❯

incident response, and diagnosis of security-related system issues Perform and maintain vulnerability scans using Assured Compliance Assessment Solution (ACAS) and create reports Track and report Information Assurance Vulnerability Management (IAVM) compliance using Assured Compliance Assessment Solution (ACAS) Maintain Authorization to Operate (ATO) records in XACTA system Manage and report Plan of Actions and Milestones (POA&M) compliance Review … certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content Perform system installation, configuration maintenance, account maintenance, signature maintenance, patch management, and troubleshooting of operational IA and CND systems Apply system security engineering expertise in one or more of the following to : system security design process; engineering life cycle; information domain; cross domain solutions … commercial off the-shelf and government off-the shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; This is you: BS degree and 8+ years of experience or additional years of experience in lieu of degree An active TS/SCI clearance with ability to More ❯

and collaborate in person. About the Role We're seeking a passionate and experienced Vulnerability Lead to shape and lead the creation and ongoing operation of our comprehensive vulnerability management program. This is a unique opportunity to establish a critical security function, define best practices, and significantly enhance our overall security posture. A key aspect of this role involves … the end-to-end management and continuous improvement of the vulnerability management programme. This includes defining scanning strategies, conducting risk-based triage and prioritisation, overseeing remediation efforts, and providing actionable reporting to enhance the Engine's security posture. What you'll get to do Conduct vulnerability scans regularly and proactively as needed. Validate findings and use a … risk-based approach. Enrich findings with threat intelligence and business impact to determine exploitability. Be an enabler for resolver groups by triaging and prioritising vulnerabilities to facilitate timely resolution of outstanding findings using a risk based approach Track and manage remediation through to closure with Technology and Security teams. Ensure timely patching of critical vulnerabilities in line with More ❯

or similar tools. Familiarity with NIST Special Publications (SP 800-27, 30, 37, 53, 60). Experience with CNSS Publication CNSSI 1253. Experience with incident response plans, POA&Ms, risk management plans, and vulnerability management plans. Strong analytical, communication, problem-solving, and interpersonal skills. Experience establishing a System Security Engineering (SSE) management process to integrate security … IAT Level II or higher certification (e.g., CCNA Security, CySA+, Security+ CE, SSCP, CISSP or Associate). One year of experience developing and reviewing security CONOPS, System Security Plans, Risk Assessments, Contingency Plans, and Configuration Management Plans. Capabilities Review and analyze cybersecurity event logs. Conduct and review technical cybersecurity assessments. Coordinate with security personnel and recommend mitigation strategies. … system testing, internal audits, incident response, and security diagnosis. Perform and maintain vulnerability scans using Assured Compliance Assessment Solution (ACAS) and create reports. Track and report Information Assurance Vulnerability Management (IAVM) compliance using ACAS. Maintain Authorization to Operate (ATO) records in the XACTA system. Manage and report Plan of Actions and Milestones (POA&M) compliance. Review certification and accreditation More ❯

Technical Advisory (SETA) services to support our client on-site in Chantilly, VA. Job Responsibilities: Assist the government lead with your expertise in systems engineering, systems modeling, product lifecycle management, modeling and simulation, and related techniques, tools, and methodologies to construct, steward, curate, and leverage end-to-end digital content for client programs. Oversee the design, implementation, and maintenance … per level if no bachelor's degree is held. Must be a U.S. Citizen. Active Top Secret/SCI clearance with a Counter-Intelligence Polygraph Knowledge of Agile Project Management methodologies Junior-Level Bachelor's degree 0 - 5 years of experience Background/knowledge in systems engineering Compensation: $80,500 - $138,300 Mid-Level Bachelor's degree … Desired Qualifications Master's or PhD in Technology, Computer Science, Engineering, Business, or a related field. Strong Systems Engineering discipline with experience in traditional functions such as risk management, requirements management, configuration management, schedule management, or testing. Experience with RDNG/DOORs requirements database management/repository, Rhapsody, SysML applications, Confluence, Jira, or JSMART. More ❯

enables AI-focused companies to achieve superior results by reducing the complexity of AI development. Our GPU cloud bolsters technical capabilities and directly supports strategic business outcomes, including cost management, rapid innovation, and environmental responsibility. At Nscale, our Legal & Compliance team plays a critical role in driving business success by partnering with stakeholders to anticipate regulatory change, operationalise compliance … VP, Global Compliance & Ethics, this role will play a critical part in trade compliance and anti-bribery/anti-corruption (ABC) oversight, while also driving effective training, third-party risk management, policy governance, and compliance operations. In this role, you will: Navigate complex and ambiguous challenges with confidence, making informed, practical decisions in a fast-paced environment. Translate … regulatory concepts and compliance best practices; applying them pragmatically to anticipate and mitigate risk exposure. Apply strong analytical skills and benchmarking rigor to track metrics, interpret data, and identify actionable insights. What You’ll be Doing Export Compliance Risk Mitigation Support the identification and management of global export compliance risks, including sanctions exposure, product classification, end-use More ❯