Manchester, Lancashire, United Kingdom Hybrid / WFH Options
Exalto Consulting
projects in a fast-paced environment, with a focus on delivering innovative solutions in alignment with organisational goals. The role requires someone with a strong background in IT project management, who can demonstrate leadership and build strong relationships with both internal and external stakeholders. Key Responsibilities : Manage and oversee the successful delivery of IT projects, ensuring they meet objectives … performance. Proactively manage project risks, implementing mitigation strategies to avoid potential issues. Build and maintain strong relationships with key stakeholders, ensuring alignment with project goals. Take responsibility for budget management, including forecasting, budget setting, and tracking expenditures. Collaborate with third-party suppliers to design and deliver IT solutions that meet business needs. Ensure project work aligns with enterprise architecture … and organisational strategies. Essential Experience & Qualifications : Degree in any discipline or equivalent qualification/experience. Relevant project management qualification (eg PRINCE2) or equivalent experience. ITIL Foundation V4 certification. Significant experience managing and delivering IT projects. Proven experience managing project teams, including external contractors and suppliers. Experience with riskmanagement and risk mitigation strategies. Proven experience managing More ❯
East London, London, United Kingdom Hybrid / WFH Options
A&O Shearman
and deployment of AI products. Ensure that AI model behaviour in the firms AI products is continuously monitored for any anomalies and/or potential security breaches. Conduct regular risk assessments and vulnerability analyses to identify potential security weaknesses in AI products and their environment. Define, develop, and maintain security policies, procedures, and standards specific to the firms AI … GDPR) and ethical guidelines. Standardise a control framework for any AI products produced by the firm, ensuring consistent security practices across all environments. Oversee the undertaking of any Governance, Risk, and Compliance (GRC) tasks or activities related to AI products, such as responding to queries or requests from external parties or auditors pertaining to AI products. Collaborate with legal … teams to assess the impact of the AI product on client confidentiality, data protection, and professional responsibility. AI Risk Assessments and Review Establish repeatable processes for security risk assessments and security assessments for any new AI products or new use cases existing products before they go to market, including bias detection and accountability. Perform security risk assessments More ❯
both business advisory and testing, monitoring and assurance teams. They will partner closely with other leaders across all three lines of defence within the UK Card business to provide risk based compliance advice and assurance activity to enable the business to deliver its strategy, whilst remaining within its risk appetite. The Compliance Director will also work closely with … our Enterprise Compliance, Risk and Regulatory teams. Depending on the successful candidate, there is also scope for the role to have oversight of UK Card's Financial Crime Compliance team The successful candidate will be a strong compliance risk professional with experience in financial services. This role is suited to someone with strong leadership skills, who is capable … of developing a high performing team and driving transformational change. An exceptional problem solver, with a focus on commercially focused riskmanagement who can confidently communicate with senior executives across the company, as well Capital One's UK and US regulators. What you'll do Lead the UK Card Compliance function, including (depending on the successful candidate) oversight More ❯
deployment of AI products. Ensure that AI model behaviour in the firm's AI products is continuously monitored for any anomalies and/or potential security breaches. Conduct regular risk assessments and vulnerability analyses to identify potential security weaknesses in AI products and their environment. Define, develop, and maintain security policies, procedures, and standards specific to the firm's … GDPR) and ethical guidelines. Standardise a control framework for any AI products produced by the firm, ensuring consistent security practices across all environments. Oversee the undertaking of any Governance, Risk, and Compliance (GRC) tasks or activities related to AI products, such as responding to queries or requests from external parties or auditors pertaining to AI products. Collaborate with legal … teams to assess the impact of the AI product on client confidentiality, data protection, and professional responsibility. AI Risk Assessments and Review Establish repeatable processes for security risk assessments and security assessments for any new AI products or new use cases existing products before they go to market, including bias detection and accountability. Perform security risk assessments More ❯
Newport, Gwent, United Kingdom Hybrid / WFH Options
Onyx-Conseil
indicators of price inflation, employment, earnings, crime, and migration. The role is within the Security Development, Compliance, and Audit (SDCA) team, which is part of the Security and Information Management (SaIM) directorate. The SDCA team provides advice to stakeholders for the complete lifecycle, security, and governance of sensitive information stored within data access environments. It also acts as an … and implementing data protection assurance and audit capabilities, aligned with security strategy and data protection standards. This includes advising internal users, stakeholders, and Information Asset Owners on compliance and risk related to data use. The role includes line management responsibilities for Security Development and Compliance Policy Associates at HEO and EO levels. Job description The Role The role … supports ONS core security capabilities, including service management, assurance, and incident response, offering opportunities for cross-skilling and development. The responsibilities align primarily with the Government Security Profession Cyber Security Monitoring Lead role, with elements from Corporate Enablers Security Adviser and Process Lead roles. Responsibilities: Developing, owning, and implementing effective data protection assurance processes and compliance documentation (e.g., DPIAs More ❯
Crawley, Sussex, United Kingdom Hybrid / WFH Options
Better Days Recruitment Ltd
and information security strategy ensuing it is aligned with ISO 27001, GDPR and Cyber essentials. Combining strong information security experience with hands-on technical knowledge of SIEM, EDR, vulnerability management and incident response. You will have the ability to translate technical risk into clear business advice. This is a great permanent opportunity to demonstrate your strong experience and … salary and great benefits on offer. Skills/Experience and attributes: A minimum of 4-5 years experience working in a similar role Strong understanding of information security principles, riskmanagement and compliance (GDPR, ISO 27001 and Cyber Essentials) Ability to talk technically then non-technically to the business Solid understanding of IT Infrastructure eg; networking, Active Directory More ❯
Crawley, West Sussex, United Kingdom Hybrid / WFH Options
Better Days Recruitment Ltd
and information security strategy ensuing it is aligned with ISO 27001, GDPR and Cyber essentials. Combining strong information security experience with hands-on technical knowledge of SIEM, EDR, vulnerability management and incident response. You will have the ability to translate technical risk into clear business advice. This is a great permanent opportunity to demonstrate your strong experience and … salary and great benefits on offer. Skills/Experience and attributes: A minimum of 4-5 years’ experience working in a similar role Strong understanding of information security principles, riskmanagement and compliance (GDPR, ISO 27001 and Cyber Essentials) Ability to talk technically then non-technically to the business Solid understanding of IT Infrastructure eg; networking, Active Directory More ❯
Employment Type: Permanent
Salary: £65000 - £70000/annum Great company benefits
Team/Role Overview Markets Operations at Citi has embarked on a significant, multi-year transformation covering all aspects of designing and delivering a future state target operating model: risk and controls, regulatory compliance, process re-engineering, automation, people and culture, data transformation, technology investment and client service. This is a large and complex undertaking. The role will act … a critical part to play in meeting key multiyear strategic investments regulatory deliverables, building and maintaining the portfolio of change activity and helping establish and oversee appropriate governance, financial management and risk management. What you'll do Provide oversight of programmes and projects within the Transformation portfolio Review, document and help run governance processes across the portfolio. Oversee … end program plans and tracking of progress and changes. Manage the process around budgets, prioritisation and new project initiation Build strong relationships and coordinate with key stakeholders Interface with risk and control functions to ensure change riskmanagement is robust across the portfolio. What we'll need from you Significant experience of project management - preferably from More ❯
Glasgow, Lanarkshire, Scotland, United Kingdom Hybrid / WFH Options
Virgin Money
Business Unit: Group Risk, Model Risk & Analytics Salary range: Circa £75,000 per annum Location: UK, Hybrid, with team meetups in one of our hubs (Glasgow/Gosforth) x2 per year Contract type : Permanent Live to inspire change. Live a life more Virgin. Our Team Having solid Model RiskManagement frameworks is super important for us … types and performing highly quantitative process verification activities as part of validations Documenting and presenting validation findings to technical forums and governance committees, while producing summary reports and relevant Management Information (MI), where required Contributing to and influencing validation standards across the model lifecycle to continuously enhance the validation process, especially with process verification in mind We need you … to have Significant experience in data management, data quality assurance and/or reporting of risk data, including validating data inputs and/or data outputs Strong understanding of software engineering testing methodologies, including integration and scalability testing Significant experience in risk-specific systems (e.g. TSYS, PowerCurve) gained from implementing models in such systems or using them More ❯
Merton, London, United Kingdom Hybrid / WFH Options
Close Brothers
provide assurances on the operational effectiveness of data protection controls. Identify, measure, track, monitor and report on operational and conduct risks identified as a result of the team's risk governance and first line control activities. Conduct thematic reviews as necessary, and bring to the attention of senior management any areas where there is perceived regulatory risk and work with Senior Management to resolve issues. Ensure data protection processes and procedures are adhered to, embedding the wider Group frameworks and satisfying internal stakeholders' requirements. Support the continued enhancements across the business, from a 1st Line RiskManagement perspective, to ensure customer outcomes and data protection are considered for all new projects and products. … Support product risk reviews and report accordingly to the relevant committees. Maintain the business information asset register and review on a regular basis. Ensure business systems and procedures comply with all relevant data privacy and protections law, regulation and policy (including in relation to the retention and destruction of data). Create and deliver training to educate colleagues on More ❯
Almondsbury, Gloucestershire, United Kingdom Hybrid / WFH Options
Advance TRS
of managed systems. Conduct and manage security assurance activities of Defence systems, ensuring compliance with Defence, corporate or regulatory requirements and secure use in operational environments. Perform Cyber Security risk assessments, determining the most cost-effective deployment of security controls and solutions in line with business risk appetite, protecting information assets from loss misuse, leakage, or corruption. Create … or innovative ways to resolve. Essential- What you can bring: Experience of delivering technical Cyber Security consultancy in multi-disciplined environments. Experience of Information Assurance, and developing Information Security Management Systems (ISMS), including risk assessments/management and the deployment of appropriate controls. An excellent communicator, verbal (active listener) and written (able to write concisely). Ability … Full Membership of recognised security professional body such as the Institute of Information Security Professionals (IISP), IS2, BCS, CIISEC. NCSC Certified Cyber Professional/CESG CCP (Security and Information Risk Advisor or Security Architect). Understanding of 'Secure by Design' methodology and NIST 800-37 RiskManagement Framework. A keen interest in the latest technology with a More ❯
Bristol, Almondsbury, Gloucestershire, United Kingdom Hybrid / WFH Options
Advance TRS
of managed systems. Conduct and manage security assurance activities of Defence systems, ensuring compliance with Defence, corporate or regulatory requirements and secure use in operational environments. Perform Cyber Security risk assessments, determining the most cost-effective deployment of security controls and solutions in line with business risk appetite, protecting information assets from loss misuse, leakage, or corruption. Create … or innovative ways to resolve. Essential- What you can bring: Experience of delivering technical Cyber Security consultancy in multi-disciplined environments. Experience of Information Assurance, and developing Information Security Management Systems (ISMS), including risk assessments/management and the deployment of appropriate controls. An excellent communicator, verbal (active listener) and written (able to write concisely). Ability … Full Membership of recognised security professional body such as the Institute of Information Security Professionals (IISP), IS2, BCS, CIISEC. NCSC Certified Cyber Professional/CESG CCP (Security and Information Risk Advisor or Security Architect). Understanding of 'Secure by Design' methodology and NIST 800-37 RiskManagement Framework. A keen interest in the latest technology with a More ❯
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Advance TRS
of managed systems. Conduct and manage security assurance activities of Defence systems, ensuring compliance with Defence, corporate or regulatory requirements and secure use in operational environments. Perform Cyber Security risk assessments, determining the most cost-effective deployment of security controls and solutions in line with business risk appetite, protecting information assets from loss misuse, leakage, or corruption. Create … or innovative ways to resolve. Essential- What you can bring: Experience of delivering technical Cyber Security consultancy in multi-disciplined environments. Experience of Information Assurance, and developing Information Security Management Systems (ISMS), including risk assessments/management and the deployment of appropriate controls. An excellent communicator, verbal (active listener) and written (able to write concisely). Ability … Full Membership of recognised security professional body such as the Institute of Information Security Professionals (IISP), IS2, BCS, CIISEC. NCSC Certified Cyber Professional/CESG CCP (Security and Information Risk Advisor or Security Architect). Understanding of 'Secure by Design' methodology and NIST 800-37 RiskManagement Framework. A keen interest in the latest technology with a More ❯
Kronberg im Taunus, Hessen, Germany Hybrid / WFH Options
Fidelity International
a team. Extensive IT professional/Info Sec or IT auditing experience. Experience in systems development and/or delivery projects. An IT Audit, Internal Audit, IT security/riskmanagement qualification or certifications such as CISA, CRISC, CGEIT, CISM, CISSP. Proficiency in auditing one or more of the following: operating systems, databases, networks, applications and cloud services. … close native level of German (at least C1) Fluent in English (B2 is enough) Responsibilities: About your team : Internal Audit is an independent function that reports directly to the Management Board of FFB. Our mandate is to examine and critically evaluate the effectiveness of the Company's internal controls and governance systems, as well as the adequacy of, and … compliance with, regulatory obligations, internal strategies, policies, processes and reporting procedures. In addition, we help management and the Board to fulfil their oversight responsibilities through effective challenge to help them identify, assess and commercially manage the Company's risk. Using a risk based methodology, our annual audit plan is developed in consultation with FFB management to include More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Gravitas Recruitment Group (Global) Ltd
product teams Support Oracle database migration efforts, including coordination of testing activities involving 24 teams Provide technical leadership and communicate effectively with engineers, architects, and senior stakeholders Drive planning, riskmanagement, and issue resolution across high-risk and critical initiatives Adapt Agile delivery methodologies to suit a multi-team, non-sprint-based environment Conduct deep dives into … across teams to align efforts and achieve seamless cloud migration outcomes Help create and implement delivery approaches that balance technical and business needs What You’ll Need Strong project management and delivery leadership experience in large-scale cloud migration programs Proven experience with Oracle migrations and cloud platforms (Google Cloud Platform preferred, Azure acceptable) Technical background enabling effective communication More ❯
product teams Support Oracle database migration efforts, including coordination of testing activities involving 24 teams Provide technical leadership and communicate effectively with engineers, architects, and senior stakeholders Drive planning, riskmanagement, and issue resolution across high-risk and critical initiatives Adapt Agile delivery methodologies to suit a multi-team, non-sprint-based environment Conduct deep dives into … across teams to align efforts and achieve seamless cloud migration outcomes Help create and implement delivery approaches that balance technical and business needs What You’ll Need Strong project management and delivery leadership experience in large-scale cloud migration programs Proven experience with Oracle migrations and cloud platforms (Google Cloud Platform preferred, Azure acceptable) Technical background enabling effective communication More ❯
Washington, Washington DC, United States Hybrid / WFH Options
Leyden Solutions Inc
taken to implement information security requirements for IT systems throughout their life cycle, from the requirements definition phase through disposal. • Perform compliance monitoring, analysis, tracking and reporting • Apply NIST RiskManagement Framework and NIST SP 800-53 security controls • Analyze and re-mediate weaknesses while working with system administrators and other personnel in the organization to implement risk … IT experience, or 10 years of experience and a master's degree • Must be able to demonstrate integration of regulations and processes such as NIST 800 series special publications, RiskManagement Framework (RMF), and Federal Information Security Act (FISMA) reporting for national security systems (NSS) • Must have exceptional writing capabilities on technical and process security controls • Must be … able to articulate risk mitigation and answer IT Security questions in a professional manner Preferred Qualifications: • Experience briefing ISSMs and executives on IT security preferred • BS in Computer Science Information Systems or related field preferred Travel: None About Us: Leyden Solutions is a services, technology and process innovator formed with a mission to provide the USG and select commercial More ❯
Cambridge, Cambridgeshire, United Kingdom Hybrid / WFH Options
AVEVA Denmark
and support on the developing policy, standards, and exemption services to enable controls and supporting control practices to be embedded and optimised across the organisation. Includes optimisation of underpinning risk and control indicators. Implementation of Security RiskManagement & Assurance. Provide subject matter expert knowledge on developing security riskmanagement and risk assurance services that … enable effective, and data driven riskmanagement and reporting across operations. This includes the capability to monitor and report effectiveness of riskmanagement within the product development lifecycle and supply chain. Ability to Gather and Review Evidence For Compliance. Complete discovery investigations to demonstrate compliance to regulations, standards and customer requirements and present evidence in a … controls across the organisation. This includes the controls used within the product development lifecycle and supply chain. Stakeholder Engagement. Build and maintain trusted relationships with stakeholders to embed security risk practices into operational activities. This includes providing guidance and thought leadership on risk best practice and assurance to technical and non-technical stakeholders. Essential requirements Experience . Preferable More ❯
Fort Belvoir, Virginia, United States Hybrid / WFH Options
IAMUS
documentation for completeness and accuracy in accordance with federal and DoD policy. Thoroughly understand and be able to implement DoD RMF system accreditation processes. Assess use case and operational risk of integrated open source, and GOTS/COTS software components. Will use vulnerability management systems, automated security scanning tools, and system accreditation record systems. Must be able to … exchanges for data gathering, and collaborate with diverse audiences. Will follow established processes where applicable, and establish and execute defensible processes where none are prescribed. Provide security planning, assessment, risk analysis, and riskmanagement support. Recommend system-level solutions to resolve security requirements and guide the development team in meeting the security posture requirements. Support the Government … workings of various software and system level applications. DoD 8570 compliance with IAT Level II (SSCP, Security+, CCNA-Security, or GSEC certification) Experience with DISA STIGs and SRGs, vulnerability management systems, mitigation and compliance processes, and reviewing results from automated security scanning tools. The ability to work independently and as part of a team is needed. Work is hybrid More ❯
Manchester, Lancashire, United Kingdom Hybrid / WFH Options
First Central Services
Heath, West Sussex, or Guernsey , with occasional office visits. Core skills required: Significant experience in at least two technology solution development disciplines, such as technical or infrastructure architecture, network management, application development, middleware, database management, or cloud development. Excellent interpersonal skills including teamwork, facilitation, and negotiation. Formal architectural certification (preferred). Formal cloud certification (preferred). Good understanding … of SOLID principles and design patterns. Excellent analytical and technical skills. Knowledge of cloud security best practices and compliance. Riskmanagement abilities. Problem-solving skills with a logical approach. Strong communication and interpersonal skills. Key responsibilities: Lead the architectural definition of the Focus Platform, ensuring it meets business and technical goals. Provide technical direction to unify engineering teams … new technologies and innovations to enhance the platform. Engage with senior stakeholders and the executive team, providing advisory services. Ensure compliance with company policies, standards, and regulations. Maintain department risk registers and provide relevant documentation and updates. Experience & knowledge: Leadership experience with architects and senior engineers. Experience with Azure cloud platform architecture. Expertise in C# .Net full-stack application More ❯
Boston, Massachusetts, United States Hybrid / WFH Options
Fidelity Investments
Job Description: Principal Full Stack Engineer The Role Fidelity's Asset Management Division is seeking a Principal Full Stack Engineer to join their Quantitative Research and Investing Technology (QRIT) Team. You will work closely with quantitative analysts, operations, as well as peer technology teams in a dynamic and fast-paced environment. You will help build scalable, reliable, and efficient … tools based on sound engineering practices in areas such as portfolio construction, riskmanagement, and alpha research. This is a hands-on development and delivery role, which requires strong technical skills, as well as participation in architecture, design, and analysis activities. The Expertise and Skills You Bring Bachelor's degree (or higher) in computer science, engineering, statistics, applied … end systems from concept to finished product. Experience with test-driven, object-oriented design and development, and best-practice software design patterns. Experience with source/version control, project management software, and continuous integration and deployment tools. Ability to communicate effectively with multiple stakeholders, including fundamental and quantitative researchers and technology partners. The Team The Quantitative Development team is More ❯
Smithfield, Rhode Island, United States Hybrid / WFH Options
Fidelity Investments
Job Description: Principal Full Stack Engineer The Role Fidelity's Asset Management Division is seeking a Principal Full Stack Engineer to join their Quantitative Research and Investing Technology (QRIT) Team. You will work closely with quantitative analysts, operations, as well as peer technology teams in a dynamic and fast-paced environment. You will help build scalable, reliable, and efficient … tools based on sound engineering practices in areas such as portfolio construction, riskmanagement, and alpha research. This is a hands-on development and delivery role, which requires strong technical skills, as well as participation in architecture, design, and analysis activities. The Expertise and Skills You Bring Bachelor's degree (or higher) in computer science, engineering, statistics, applied … end systems from concept to finished product. Experience with test-driven, object-oriented design and development, and best-practice software design patterns. Experience with source/version control, project management software, and continuous integration and deployment tools. Ability to communicate effectively with multiple stakeholders, including fundamental and quantitative researchers and technology partners. The Team The Quantitative Development team is More ❯
Merrimack, New Hampshire, United States Hybrid / WFH Options
Fidelity Investments
Job Description: Principal Full Stack Engineer The Role Fidelity's Asset Management Division is seeking a Principal Full Stack Engineer to join their Quantitative Research and Investing Technology (QRIT) Team. You will work closely with quantitative analysts, operations, as well as peer technology teams in a dynamic and fast-paced environment. You will help build scalable, reliable, and efficient … tools based on sound engineering practices in areas such as portfolio construction, riskmanagement, and alpha research. This is a hands-on development and delivery role, which requires strong technical skills, as well as participation in architecture, design, and analysis activities. The Expertise and Skills You Bring Bachelor's degree (or higher) in computer science, engineering, statistics, applied … end systems from concept to finished product. Experience with test-driven, object-oriented design and development, and best-practice software design patterns. Experience with source/version control, project management software, and continuous integration and deployment tools. Ability to communicate effectively with multiple stakeholders, including fundamental and quantitative researchers and technology partners. The Team The Quantitative Development team is More ❯
Jersey City, New Jersey, United States Hybrid / WFH Options
Fidelity Investments
Job Description: Principal Full Stack Engineer The Role Fidelity's Asset Management Division is seeking a Principal Full Stack Engineer to join their Quantitative Research and Investing Technology (QRIT) Team. You will work closely with quantitative analysts, operations, as well as peer technology teams in a dynamic and fast-paced environment. You will help build scalable, reliable, and efficient … tools based on sound engineering practices in areas such as portfolio construction, riskmanagement, and alpha research. This is a hands-on development and delivery role, which requires strong technical skills, as well as participation in architecture, design, and analysis activities. The Expertise and Skills You Bring Bachelor's degree (or higher) in computer science, engineering, statistics, applied … end systems from concept to finished product. Experience with test-driven, object-oriented design and development, and best-practice software design patterns. Experience with source/version control, project management software, and continuous integration and deployment tools. Ability to communicate effectively with multiple stakeholders, including fundamental and quantitative researchers and technology partners. The Team The Quantitative Development team is More ❯
services our customers expect from us. With extensive experience, deep knowledge and worldwide presence across financial markets, we enable businesses and economies around the world to fund innovation, manage risk and create jobs. It's how we've contributed to supporting the financial stability and growth of communities and economies globally for more than 300 years. Through a comprehensive … strategically important role, required to develop, govern, embed and operate capabilities to oversee Internal Audits, External Audits, Self-Identified Issues, regulatory examinations and associated action plans to ensure mature riskmanagement practices and compliance with regulations. ROLE SUMMARY: This is a key role, required to lead the development and implementation of capabilities to oversee Internal Audits, External Audits … Self-Identified Issues, regulatory examinations and associated action plans to ensure mature riskmanagement practices and compliance with regulations. By enhancing existing capabilities and implementing new procedures across the wider Engineering division, this role will ensure a common, consistent and comprehensive management of risk and compliance. This role is a key component in helping to drive More ❯