Risk & Compliance Jobs in London

Make yourself visible and let companies apply to you.

Roles

Risk & Compliance Jobs in London

Overview

Looking for top Risk & Compliance jobs in London? Haystack connects you with the best roles in financial services, legal, and corporate sectors across the city. Whether you’re an experienced compliance officer or risk analyst, explore up-to-date London opportunities and advance your career in one of the world’s leading financial hubs. Start your Risk & Compliance job search in London today with Haystack!

Filters applied

London

Risk & Compliance

Salary

Location

Remote preference

Role type

Seniority

Tech stack

Sectors

Contract type

Company size

Visa sponsorship

Assistant Audit Manager SAICA

Qualified ACA/ACCA/ICAS Qualified or overseas equivalent.

Educated up to degree level or CTS.

Experience supervising and coaching junior members of staff on site.

Working knowledge of UK and International GAAS, IFRS, UK GAAP and Financial Reporting requirements.

Working knowledge of firm services, issues regarding advice, and regulation and compliance, including anti-money laundering.

Demonstrable knowledge of current economic and market trends.

You’ll be able to be yourself; we’ll recognise and value you for who you are and celebrate and reward your contributions to our business. We’re committed to agile working, and we offer everyone the opportunity to work in ways that suit them, their teams, and the task at hand. At BDO, we’ll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development.We’re in it togetherMutual support and respect is one of BDO’s core values and we’re proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we’ll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you’ll always have access to the people and resources you need to do your best work.We know that collaboration is the key to creating value and satisfying experiences at work, so we’ve invested in state-of-the-art collaboration spaces in our offices. BDO’s people represent a wealth of knowledge and expertise, and we’ll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you’ll never stop learning at BDO.We’re looking forward to the futureAt BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we’re always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We’ve got a clear purpose, and we’re confident in our future, because we’re adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.

AQD Audit Stream Risk Management Team – Director

Ideas | People | TrustWe’re BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today’s changing world.We work with the companies that are Britain’s economic engine – ambitious, entrepreneurially-spirited and high‑growth businesses that fuel the economy – and directly advise the owners and management teams leading them.We’ll broaden your horizonsAudit quality is central to our strategy as an Audit Stream, the key ingredient to our success. Consistent high audit quality enables us to attract, develop and retain talented people and be proud of our work. Audit quality allows us to compete in the market and demonstrate that we can play a key role in market reform.Consistently high audit quality does not happen by chance. It requires a mindset and culture of challenge and professional scepticism, appropriate resources both people and intellectual, investment in central support for engagement teams and technology solutions. Within the last year we have increased our headcount significantly, invested in new partners, and commenced a significant investment programme in our central quality support team.We’ll help you succeedThe work we do is underpinned by quality. We deliver audits which are trusted and transparent which can be relied upon by companies and their stakeholders.You’ll be someone who is comfortable working pro-actively and, managing your own tasks, as well as confident collaborating with others and communicating regularly with Senior Managers, Directors, and BDO’s Partners. You’ll help deliver accurate and transparent reporting to all relevant stakeholders as you provide long term value.This is an opportunity for a talented, high performing and ambitious Director to join the Audit Stream Risk Management (ASRM) team in the Audit Quality Department (AQD) in an exciting period. You will report into the ASRM team Partner and work closely with other members of the ASRM team as well as the other directors in the wider AQD team.The Audit Stream Risk Management team is a growing team and provides support to audit teams when audit risk and contractual issues emerge on audit engagements. You will advise the audit team in resolving the issue to enable them to manage any reputational risks and consistently deliver high quality audits. The role will include providing the teams with proactive support to resolve the issue and involving specialists from the wider AQD team when required. As part of this supportive and knowledgeable team, you’ll have a chance to use and develop your technical skills to solve complex audit risk and contractual issues and contribute to the delivery of high quality audits.Responsibilities

Lead in resolving complex audit stream risk issues that emerge, ensuring a detailed review of audit files is performed, when required, by the senior managers in the team to establish the nature and extent of the risk bringing in specialist support from the wider AQD team as required.

Proactively identify wider risk issues and prevent such risks from crystalising by implementing policies, guidance and training to the audit stream.

Support the ASRM partner on reviewing and monitoring the highest risk audit engagements, known as the Close Monitored List.

Provide oversight to the ASRM team on other audit risks and contractual matters arising from the Audit Stream and ensuring they are satisfactorily resolved.

Lead on projects to ensure that all processes and controls related to audit stream risk management are correctly implemented to support a System of Quality Management, ensuring that any remediation points are addressed.

Support RIs experiencing a challenging inspection or regulatory process.

Contribute to audit quality initiatives led by the wider Audit Quality Improvement Team.

You’ll be someone with:

Ideas, drive, energy and passion!

ACA or equivalent qualification with a background in Audit, Methodology or Regulatory oversight

Recent experience at Senior Manager or Director level on PIE and listed audits or similar file review experience

Strong technical audit expertise with the ability to identify wider risks

Ability to challenge, influence, and communicate effectively at senior levels

A proactive, collaborative mindset and attention to detail

You’ll be able to be yourself; we’ll recognise and value you for who you are and celebrate and reward your contributions to our business. We’re committed to agile working, and we offer everyone the opportunity to work in ways that suit them, their teams, and the task at hand.At BDO, we’ll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development.We’re in it togetherMutual support and respect is one of BDO’s core values and we’re proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we’ll support you at every stage in your career, whatever your personal and professional needs.Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you’ll always have access to the people and resources you need to do your best work.We know that collaboration is the key to creating value and satisfying experiences at work, so we’ve invested in state-of-the-art collaboration spaces in our offices. BDO’s people represent a wealth of knowledge and expertise, and we’ll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you’ll never stop learning at BDO.We’re looking forward to the futureAt BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we’re always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions.We’ve got a clear purpose, and we’re confident in our future, because we’re adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.#LI-SS3 #TJ-SS3

Audit Quality - Corporate Reporting Advisory Senior Manager

Ideas | People | TrustWe’re BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today’s changing world.We work with the companies that are Britain’s economic engine – ambitious, entrepreneurially-spirited and high‑growth businesses that fuel the economy – and directly advise the owners and management teams leading them.We’ll broaden your horizonsAudit quality is central to our strategy as an Audit Stream, the key ingredient to our success. Consistent high audit quality enables us to attract, develop and retain talented people and be proud of our work. Audit quality allows us to compete in the market and demonstrate that we can play a key role in market reform.Consistently high audit quality does not happen by chance. It requires a mindset and culture of challenge and professional scepticism, appropriate resources both people and intellectual, investment in central support for engagement teams and technology solutions. Within the last year we have increased our headcount significantly, invested in new partners, and commenced a significant investment programme in our Audit Quality Department.We’ll help you succeedThe work we do is underpinned by quality. We deliver audits which are trusted and transparent which can be relied upon by companies and their stakeholders.You’ll be someone who is comfortable working pro-actively and, managing your own tasks, as well as confident collaborating with others and communicating regularly with Senior Managers, Directors, and BDO’s Partners. You’ll help deliver accurate and transparent reporting to all relevant stakeholders as you provide long term value.This is an opportunity for talented, high performing and ambitious Senior Manager to join the Corporate Reporting Advisory Team (CRT) in the Audit Quality Department (AQD) in an exciting period, to help to shape the role and the expanding team. You will report into the Team Partners and work closely with Directors.General responsibilities

Work with Managers, Senior Managers, Directors and Partners within both AQD, the Audit Stream and across the wider firm

Maintain and encourage an open and constructive environment in which to provide technical accounting support and advice

Bring pre-existing financial services specialist technical accounting knowledge (this might be Banking and Alternative Finance, Fintech or Insurance focused), and experience to the CRT team and contribute to all output areas

Provide support and supervision to the more junior team members.

Specific responsibilitiesThe individual will support the CRT Directors and other members of AQD, ultimately reporting to the AQD lead partners and will be responsible for the following:

Technical review of a personal portfolio of annual reports of publicly traded and other higher risk companies, working with the audit team to confirm compliance with financial reporting standards, company legislation and regulatory requirements

Providing clear and practical solutions to the most complex technical financial reporting queries, and act as a consultant for the more junior members of the team in your specialist area

Preparing and presenting financial reporting training, updates and seminars both internally and externally

Helping to develop financial reporting tools and guidance for application by the firm’s partners and staff

Writing articles and other publications on financial reporting matters for internal and external communications

Assisting with the preparation of draft responses to external consultations in relation to legal, regulatory and financial reporting matters

Monitoring external developments in financial reporting areas and, specifically in your specialist area, reporting back to the team and developing an appropriate action plan where required

Supporting and coaching the more junior members of the CRT and wider AQD team.

The role would be particularly suited to an individual with experience of working within the technical department of another major firm of accountants, or an experienced auditor who is looking to move into a technical role and is able to demonstrate a strong technical aptitude.The right candidate for this role will:

Be ACA/ICAS qualified or overseas equivalent

Be a Senior Manager in a technical team or have other relevant experience in technical financial reporting

Exhibit a strong working knowledge of:

IFRSs, UK GAAP, and the Companies Act

Sector specialism for financial services, particularly Banking and Alternative Finance, Fintech or Insurance. The content requirements for the annual report of a company listed on either the Main Market or the AIM market of the London Stock Exchange

The wider financial reporting environment, including future developments in law, regulation and emerging areas

Have practical experience of performing technical reviews of annual reports of listed companies

Have a proven ability to apply technical knowledge to complex financial reporting issues and provide practical and supportable solutions

Demonstrate strong oral and written communication skills, and an ability to adapt as appropriate to the scenario

Have an ability to create productive relationships across the firm and network and to influence other senior professionals

Be willing to work as part of a close-knit team and as a self-directed individual

Be highly motivated and proactive, with a desire to innovate and seek new ways of improving our service to internal customers.

You’ll be able to be yourself; we’ll recognise and value you for who you are and celebrate and reward your contributions to our business. We’re committed to agile working, and we offer everyone the opportunity to work in ways that suit them, their teams, and the task at hand.At BDO, we’ll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development.We’re in it togetherMutual support and respect is one of BDO’s core values and we’re proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we’ll support you at every stage in your career, whatever your personal and professional needs.Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you’ll always have access to the people and resources you need to do your best work.We know that collaboration is the key to creating value and satisfying experiences at work, so we’ve invested in state-of-the-art collaboration spaces in our offices. BDO’s people represent a wealth of knowledge and expertise, and we’ll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you’ll never stop learning at BDO.We’re looking forward to the futureAt BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we’re always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions.We’ve got a clear purpose, and we’re confident in our future, because we’re adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.#LI-SS3 #TJ-SS3

IT Buyer (Security Clearable)

Role: IT Buyer Positions: 2 Clearance: Security Clearable, BPSS to start. Location: Farnborough, Hampshire Days Onsite: 2 per week Day Rate: £500 to £550 Inside IR35 Duration: 6 MonthsPlease note, you will need to be able to gain SC Clearance to be considered for this role and will need BPSS to start*iO Associates have partnered with an R&D client on their search for two IT Buyers to come in on an initial Contract basis over the next 6 Months with a view to starting on the 5th of January 2026.Key Responsibilities:

Lead end-to-end sourcing and procurement activities across IT hardware, software, telecommunications, and professional services, including managing tender processes, securing favourable commercial terms, negotiating volume discounts, and reviewing and finalising T&Cs with Tier-1 IT vendors.

Evaluate and review contracts for alignment with organisational policies, identifying issues or delivery gaps, and working with suppliers to negotiate refunds, remediation, or enhanced SLAs.

Reduce unnecessary spend through effective demand management and deliver measurable cost savings through strategic and assertive negotiation.

Key Skills:

Strong understanding of technology trends, market dynamics, cost drivers, and supplier technology roadmaps.

Proven track record in IT Procurement or Supply Chain roles, managing the acquisition of technology and services across multiple regions.

Experienced in negotiating and executing a wide range of contractual documents, including Data Processing Agreements, Information Security Schedules, End User Licence Agreements, Framework Agreements, Master Services Agreements, and related contract types.

Skilled in leading complex commercial negotiations with Tier-1 IT vendors-such as Microsoft, Cisco, AWS, and IBM-with a history of delivering tangible cost savings to the organisation.

Again, this will be a Hybrid requirement with 2 Days per week being required Onsite in Farnborough. So, if you’re interested and want to find out more, please respond with your updated CV or reach me directly on m.simmonds @ioassociates.co.uk (no spaces)Role: IT Buyer Positions: 2 Clearance: Security Clearable, BPSS to start. Location: Farnborough, Hampshire Days Onsite: 2 per week Day Rate: £500 to £550 Inside IR35 Duration: 6 Months

ESN Cyber Security Governance, Assurance SME (SC Cleared)

£600,000/day - £700,600/day

RECENTLY POSTED

TECH-AGNOSTIC ROLE

Your new company Working for a renowned telecoms organisation.Your new role Working for a renowned telecoms organisation within The Emergency Services Network (ESN) team in a critical national infrastructure program and a strategic priority for the company, ensuring secure and reliable communications for Emergency Services where availability can be a matter of life or death. Security is fundamental to the ESN, requiring robust governance and assurance to maintain the confidentiality, integrity, and resilience of the network against a wide range of cyber and physical threats. As an ESN Cyber Security Governance & Assurance SME, you will help lead the delivery of security governance, compliance, and risk management across the ESN programme. This includes implementing ISO27001 - compliant security strategies, managing contractual security obligations, and ensuring adherence to frameworks such as the HMG Security Policy Framework. You will work closely with internal teams, suppliers, and customer security stakeholders to provide assurance, drive continuous improvement, and maintain confidence in the ESN’s security posture.What you’ll need to succeed

Strong experience in security governance and assurance, with a proven track record in delivering security accreditations and managing security processes.

Ability to develop and write security procedures, controls documentation, and assurance artefacts (e.g., RMADS, Security Operating Procedures).

Demonstrated expertise in security auditing and compliance activities, including producing reports and actionable recommendations.

Hands-on experience administering security processes and performing assurance activities, ideally within Central Government departments or agencies.

In-depth knowledge and practical experience with ISO27001 controls, audits, and implementation.

Experience working in public sector environments or telecommunications projects is highly desirable.

Experience working with HMG security controls.

A proactive, delivery-focused approach-this role requires someone who can “roll up their sleeves” and produce high-quality documentation, not just manage teams.

Must hold SC Clearance/ BPSS as a minimum requirement.

What you’ll get in return Flexible working options available.What you need to do now If you’re interested in this role, click ‘apply now’ to forward an up-to-date copy of your CV, or call us now.Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C’s, Privacy Policy and Disclaimers which can be found at (url removed)

Security Governance & Assurance Specialist

Cyber Security Governance & Assurance SpecialistDuration: 6 months +Location: London, on-site requirements once every 2 weeks / when required by customerSecurity Clearance requiredThe Emergency Services Network (ESN) is a major strategic priority for our client and our commitment to connect for good for our customers and our country.The Security of the ESN is key to our customer and to our Emergency Services users. Availability of the network is a matter of life or death to the Emergency Services and they have to have confidence in the confidentiality and integrity of their communications and operations.We have to build and maintain effective security controls to prevent and detect a wide range of cyber and physical threats.This job matters because it:

Contributes to the ESN Security Management Plan, ISMS and Security Processes - ensuring effective management of security within the Programme and that Contract obligations are met.

Identifies security threats to ESN and ensures the adequacy of processes and controls in place to mitigate them.

Works with other Security professionals and other teams to meet ESN security objectives.

Engages with Customer security teams, providing assurance that Security requirements are met and identifying opportunities for improvement.

In support of the above the ESN Cyber Security Governance & Assurance Specialist executes a range of workstreams in delivering contributions, ESN Programme’s and the Customer’s overall cyber security risk management program, which is designed to ensure that the technology systems and data associated with the ESN are adequately protected.The ESN Cyber Security Governance & Assurance Specialist shall:

Identify and understand all elements of contractual security obligations for the ESN Contract.

Deliver and verify the implementation of end to end security services as defined within specified the ESN contracts.

Deliver and implement ISO27001 compliant security strategies, policies, procedures, processes, threat identification & responses that provide wrap-around security services and solutions for the ESN service.

Deliver the required Security accreditation for the ESN contract.

Manage operational risks related to people, information, assets, revenues and reputation and ensure compliance with relevant security requirements, typically: the HMG Security Policy Framework, Contractual Obligations, company security and business continuity policies.

Monitor and manage third party supplier compliance to the flow-down of contractual obligations from the client.

Monitor and manage security awareness within the ESN Programme.

Skills required:Customer-Facing:

Ability to establish trusted relationships and successful partnerships with internal and external customers.

Be experienced in communicating and influencing across all levels.

Be commercially aware.

Assurance:

Ability to plan and execute assurance activities on time, budget and quality:

Plan and organise your own work effectively and meet agreed delivery targets.

Identify and assess security risks and evaluate mitigations.

Understand contractual obligations, their flow down to 3rd parties and the ability to plan and execute assurance reviews to ensure these requirements are being met.

Write assurance artefacts, reports and other documents to a high standard, supported by reliable and relevant evidence.

Operate:

Have a proven track record in security and information risk management.

Have knowledge and experience of the following: ISO27001, NIST Cyber Security Framework (CSF), National Cyber Security Centre (NCSC) and National Protective Security Authority (NPSA) Standards and Guidance.

MANDATORY experience required:

Security clearance to BPSS level as a minimum.

Be experienced in working in an information assurance role on large-scale contracts ideally for Central Government departments or agencies.

Have proven experience in the writing of assurance artefacts such as security accreditation evidence (RMADS) and Security Operating Procedures (SyOPs).

Experience of administering security processes

Experience of carrying out assurance activities and writing reports and recommendations.

Experience working with ISO27001 controls and audit

PREFERRED

Prior experience working on complex HMG contracts

Experience in auditing and security accrediations

Experience of working with Telecoms Security Act (TSA) requirements

IT security/network experience

Have a proven track record in security management (2-3 years)

Senior Control and Assurance Advisor

Entity:FinanceJob Family Group:Finance GroupJob Description:As a Senior Control and Assurance Advisor at BP PLC, you will play a critical role in safeguarding our financial integrity and operational efficiency. You will be responsible for designing, implementing, and monitoring robust internal controls and assurance processes, ensuring compliance with financial regulations and company policies, and driving continuous improvement across our business processes.Our purpose is to deliver energy to the world, today and tomorrow. For over 100 years, bp has focused on discovering, developing, and producing oil and gas in the nations where we operate. We are one of the few companies globally that can provide governments and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner.Key accountabilities:

Responsible for delivery of internal control over financial reporting (ICFR) requirements for ST&S businesses, including compliance with SOx 404 requirements. Provide ST&S input on bp group control policy revisions, and other common control topics across the bp group.

Drive continuous improvement into ST&S control processes to simplify and make sustainable

Ensure timely identification and reporting of ICFR gaps, including drafting complex control gap papers. Co-ordinate and document input from multiple finance and business key partners to ensure that the gap write-up is articulated clearly, root causes are established and that partners are aligned on appropriate remediation actions. Provide control input and guidance to ensure timely delivery of remediation actions.

Perform ‘gap assessments’ against bp’s internal control framework for new acquisitions, in line with requirements of the bp control framework. Communicate and align partners on practical control integration plans and provide regular status updates to senior finance management.

Fulfil requests from the business for ICFR advice and provide practical guidance to ensure compliance with bp group control processes.

Provide clear and practical control advice to cross functional stakeholders of projects and complex business transformation initiatives, to deliver bp group control policy requirements.

Deliver annual review of trading delegations, and provide guidance to the business on complex aspects of delegation of authority interpretation.

Perform ICFR risk assessment on ST&S projects and process changes with an impact on financial reporting and/or controls and provide updates to senior management.

Provide required input to the bp external auditor in relation to external audit deliverables, including control incident reviews, walkthroughs, agreement of findings and management actions, and driving remediation of deficiencies through to resolution.

Provide required input to Internal Audit on SOX walkthroughs and audits. Support delivery of the internal audit cycle, and timely resolution of agreed audit actions.

Essential Experience & Job Requirements:

Qualified accountant (ICAEW, ICAS, CIMA, ACCA or equivalent)

Previous external audit experience

Deep experience of Internal Controls over Financial Reporting and track record of documenting internal controls for a trading organisation, preferably commodities based

Sound understanding of external financial reporting requirements for a trading organisation and associated control processes

Ability to identify control risks within complex processes and advise on actions to mitigate risk.

Evidence of complex process improvement/design and development.

Strong impact, interpersonal and communication skills, maintain constructive working relationships

Ability to coach, challenge, and influence effectively.

Ability to communicate, influence and challenge multiple finance and business stakeholders including VP and SVP level, particularly regarding the robustness of internal controls and resolution of audit findings.

Ability to manage and deliver multiple priorities

Key interfaces

Finance & risk and business teams (70%)

Bp group control & assurance teams (20%)

External audit, internal audit (10%)

Why join us?At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous learning and development opportunities to craft your career path, life and health insurance, medical care package and many others.We support our people to learn and grow in a diverse and exciting environment. We believe that our team is strengthened by diversity. We are committed to crafting an inclusive environment in which everyone is respected and treated fairly.There are many aspects of our employees’ lives that are significant, so we offer benefits to enable your work to fit with your life. These benefits can include flexible working options, collaboration spaces in a modern office environment, and others benefits.Reinvent your career as you help our business meet the challenges of the future. Apply now!Travel RequirementSome travel may be required with this role, this is negotiableThis role is not eligible for relocationThis position is a hybrid of office/remote workingAccounting for financial instruments, Accounting policy, Accounting Processes and Financial Systems, Analytical Thinking, Analytics, Business process control, Business process improvement, Commercial Acumen, Commercial assurance for external reporting, Communication, Creativity and Innovation, Credit Management, Customer centric thinking, Data Analysis, Digital Fluency, Financial Reporting, Internal control and compliance, Risk ManagementLegal Disclaimer:We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us.If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.

Senior Audit Manager - AI Technology, Cyber, Data and GenAI Engineering - Senior Vice President - Citi

Discover your future at Citi Working at Citi is far more than just a job. A career with us means joining a team of more than 230,000 dedicated people from around the globe. At Citi, you’ll have the opportunity to grow your career, give back to your community and make a real impact.Job Overview Excited to grow your career?We value our talented employees, and whenever possible strive to help one of our associates grow professionally before recruiting new talent to our open positions. If you think the open position you see is right for you, we encourage you to apply!Team/Role OverviewThe Senior Audit Manager is within the AI Technology, Cyber, Data and GenAI Engineering team and is a senior level management position, reporting to the Audit Director - AI Technology, Cyber, Data and GenAI Engineering, with an overall objective to execute audit activities and assessments of the risk and control environment for the adoption of AI/GenAI, specifically related to AI Technology, Cyber, Data and GenAI Engineering.This role will primarily focus on AI Technology, Cyber, Data and GenAI Engineering with the overall objective of this role to ensure that Citi Internal Audit’s approach to AI to position Citi IA as the leading IA function in the financial services industry .Citi IA is a dynamic global function of over 2,500 professionals located across more than 60 countries, covering Citi’s global businesses and service to clients and customers through its network in 98 countries. Through a culture of continuous improvement, Citi IA is focused on maintaining its position as a best-in-class IA function and is committed to investing in people, learning and development, innovation, and methodology programs. The Internal Audit mission is to provide independent, objective, reliable, valued and timely assurance to the Board, senior management and regulators of Citigroup and Citibank (and its subsidiaries), over the effectiveness of culture, ethical conduct, governance, risk management, and controls that mitigate current and evolving risks and to enhance the control environment. IA is a change agent within Citi to enhance the control culture of Citigroup worldwide and therefore support senior management decision making around the globe.Citi operates in over 100 countries and provides consumers, corporations, governments, and institutions with a broad range of financial services and products. Citi strives to create the best outcomes for clients and customers with financial ingenuity that leads to solutions that are simple, creative, and responsive.What you will do

Deliver audit reports, Internal Audit and Regulatory issue validation and business monitoring and governance committee reports relating to AI Technology, Cyber, Data and GenAI Engineering

Act as a trusted subject matter experts on AI Technology, Cyber, Data and GenAI Engineering across the IA team

Oversight of portfolios within the AI Technology, Cyber, Data and GenAI Engineering team including stakeholder engagement, assessment of key emerging and inherent risks, etc

Participate in business initiatives and pro-actively advise and assist the business on change initiatives

Implement integrated auditing concepts and technology, and follow trends in the Audit field and adapt them for the Audit function

Identify solutions for a variety of complex and unique control issues, utilizing complex judgement and sophisticated analytical thought

Analyse report findings, and recommend interventions where needed, proposing creative and pragmatic solutions to risk and control issues

Partner with Directors and Managing Directors to develop approaches for addressing broader corporate emerging issues

Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm’s reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards

What we will need from you

Previous experience in a related role

Sound understanding in AI Technology, Cyber, Data and GenAI Engineering

Understanding of GenAI security, data and operational architecture

Understanding of financial services regulations and how they intersect with AI/GenAI e.g. conduct risk, operational resilience, data protection, algorithmic trading, AML/KYC, consumer protection

Demonstrated successful experience in business, functional and people management

Proven ability to execute concurrently on a portfolio of high quality deliverables according to strict timetables

Demonstrated ability to implement continuous improvement and innovation in audit tools and techniques

Consistently demonstrates clear and concise written and verbal communication

Demonstrated ability to remain unbiased in a diverse working environment

Effective negotiation skills

Education

Bachelor’s degree/University degree in law, ethics, decision science, computer science, data science, finance, accounting or a related field, or equivalent experience.

Master’s degree preferred.

What we can offer youWe work hard to have a positive financial and social impact on the communities we serve. In turn, we put our employees first and provide the best-in-class benefits they need to be well, live well and save well.By joining Citi London, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (annually reviewed), and enjoy a whole host of additional benefits such as:

Generous holiday allowance starting at 27 days plus bank holidays; increasing with tenure.

A discretional annual performance related bonus

Private medical insurance packages to suit your personal circumstances.

Employee Assistance Program

Pension Plan

Paid Parental Leave

Exclusive discounts for employees, family, and friends

Access to an array of learning and development resources

Alongside these benefits Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self every day. We want the best talent around the world to be energised to join us, motivated to stay, and empowered to thrive.Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities.

Employment Law Manager

Full time, 12 Month Fixed Term ContractLocation – Flexible – hybrid 2 days a week in local officeSalary up to £70,000 depending on experienceClosing date: 12 JanuaryWho we are:We’re not just talking about making a difference, we’re making it happen. We generate dispatchable, renewable power and create stable energy in an uncertain world. Building on our proud heritage, we have ambition to become the global leader in sustainable biomass and carbon removals.You’ll be joining our teams of practical doers, future thinkers and business champions. We’re enabling a zero carbon, lower cost energy future for all, and working hard to decarbonise the planet for generations to come.About the role:We’re looking for an experienced Employment Law Manager to join our team on a fixed-term basis to cover maternity leave. In this role you’ll provide expert employment law advice to senior managers and HR professionals across the organisation, covering issues such as TUPE, discrimination, grievances, disciplinaries, contractual disputes and tribunal cases.You’ll work closely with HR Advisors and Business Partners, supporting case management and leading on the most complex matters, with occasional advice required on right to work and immigration.Ultimately, you’ll ensure timely, high-quality legal guidance that supports our business strategy while maintaining full compliance with employment law and regulations.Who we’re looking for:You’ll be a fully qualified solicitor with a few years’ specialist experience in employment law, ideally gained in both practice and in‑house roles. This is a chance to take ownership of complex and varied employment matters across Drax, from contract reviews and case advisory work to tribunal preparation and stakeholder guidance. Knowledge or an interest in North America employment law is also beneficial.You’ll thrive if you bring a commercial, pragmatic mindset, enjoy working in a multi‑disciplinary environment, and have the confidence to influence, coach and challenge senior leaders. In return, you’ll gain exposure to diverse business units, play a key role in shaping how we manage employment law, and make a visible impact by driving the right behaviours and delivering change. It’s a bonus for us if you have experience advising or working in a unionised workforce.Rewards and benefits:As you help us to shape the future, we’ve shaped our rewards and benefits to help you thrive and supportyour lifestyle. If successful in this role, you’ll get:· A discretionary bonus depending on company performance· Private Healthcare· SAYE (Sharesave): discretionary scheme from time to time· Personal accident cover· Group personal pension plan where we’ll pay up to 10%· Holiday 25 days plus bank holidays· Reimbursement of the cost of your annual membership of one relevant and appropriate professional bodyWe’re committed to making a tangible impact on the climate challenge we all face. Drax is where your individual purpose can work alongside your career drive. We work as part of a team that shares a passion for doing what’s right for the future. With Drax you can shape your career and a future for generations to come.Together, we make it happen.At Drax, we’re committed to fostering an environment where everyone feels valued and respected, regardless of their role. To make this a reality, we actively work to better represent the communities we operate in, foster inclusion, and establish fair processes. Through these actions, we build the trust needed for all colleagues at Drax to contribute their perspectives and talents, no matter their background. Find out more about our approach here.Talk to us about flexible working!How to apply:Think this role’s for you? Click the ‘apply now’ button to begin your Drax journey.If you want to find out more about Drax, check out our LinkedIn page to see our latest news.We understand that you may have some additional questions about the role. If you’d like to have a confidential chat to discuss the role in more detail, please email careers@drax.comWe reserve the right to close roles early when the particular role and / or location has had sufficient applications.

Cybersecurity Governance and Assurance Specialist

London - 2 days a week on site£65,000The company:This regulated organization work with banks, insurers and pension providers to ensure that their customers are protected from losses. The team is expanding to support the needs of the business and their clients and are looking for a Cybersecurity Governance and Assurance Specialist to support with BAU activities across the organisation and ensures that all security requirements are met.Cybersecurity Governance and Assurance SpecialistThe role:The successful applicant for the Cybersecurity Governance and Assurance Specialist will be responsible for:

Ensuring that security is Embedded from the start of all new projects, putting input into high- and low-level designs

Owning and delivering Threat modelling for new projects

Giving assurance that all infrastructure security baselines are adhered to across Windows endpoints, Firewalls and network devices

Supporting the ISO27001 audit readiness

Supporting teams with third party risk assessments and vendor risk actions in a timely manner

Reviewing appsec scans and ensuring that triage and remediation activities are implemented

Working across a variety of concurrent projects which will need to be prioritised based on risk and statutory requirements

Cybersecurity Governance and Assurance SpecialistYour profile:The ideal candidate for the Cybersecurity Governance and Assurance Specialist will:

Have had practical experience in a regulated sector in a security role. Sectors considered include: Financial Services, Fintech, Aviation or other regulated sectors

Strong proven ability to work in a multistakeholder environment, specifically influencing outcomes without direct authority

Have tangible threat modelling experience, using STRIDE or similar frameworks

Be working in a role that has had to support or maintain IS)27001 certifications

Cybersecurity Governance and Assurance SpecialistYour technical knowledge and skillsThe ideal applicant for the Cybersecurity Governance and Assurance Specialist will have:

A Broad understanding of various security domains including IdAM, Network Security and Cloud Security fundamentals

Working knowledge of AppSec fundamentals including OWASP Top 10 and SAST/DAST interpretations

Familiarity with control mapping and risk assessments

The ability to identify automation opportunities

If this sounds like the role for you, hit the apply button nowWe invite individuals from underrepresented groups to apply for any of our roles and are committed to supporting accessibility needs. Unfortunately, this client is unable to offer visa sponsorship at this time

Business Continuity Manager

A prestigious international bank is seeking a dynamic new addition in this newly created role.Your responsibilities will include:

Developing/implementing/maintaining an effective Business Continuity Management and Operational Resilience framework across the bank, in line with regulatory requirements

Collaborating with departments to conduct Business Impact Analysis and identify critical processes, resources, and set recovery objectives

Working closely with teams to create, enhance, and update Business Continuity Plans

Coordinating with IT to ensure business recovery objectives and disaster recovery plans meet business needs

Providing detailed reports to senior management on Business Continuity Management and Operational Resilience framework performance

Conducting regular risk assessments and scenario analysis to assess the framework’s effectiveness

Your experience must include:

Demonstrated senior-level experience in Business Continuity Management and Operational Resilience within the banking sector

Strong knowledge of UK regulatory requirements related to Operational Resilience

Exceptional presentation and communication skills for effective interaction at all levels is essential

Proficiency in project management

Preferably, a diverse background encompassing various banking domains such as corporate/wholesale banking, traded and capital markets, and settlements

Please note this role will be working 5 days a week in the London office.

Senior Financial Crime Analyst- Insurance

Senior Financial Crime AnalystWe are currently recruiting for a Snr Financial Crime Analyst with Insurance experience to join one of our Insurance clients on a 6-month contract.Inside IR35Hybrid- 3 days a week onsite in LondonResponsibilities

Supporting the Financial Crime Specialists and the Compliance function in providing appropriate, timely and strategic Financial Crime advice to the business in a clear, effective, and efficient manner.

Undertaking sanctions checks including detailed and strategic assessments of the application of applicable sanctions regimes and relevant export control measures to specific coverages.

Conduct robust Financial Crime due diligence for new business opportunities and renewal business.

Assisting the Financial Crime Specialists with conducting strategic reviews of internal frameworks relevant to financial crime systems and controls.

Financial Crime Monitoring and Reporting

Contributing to the creation of quarterly Financial Crime MI and reports for Boards and Committees.

Supporting the Compliance Business Partner with Financial Crime Horizon Scanning

Work with Risk and Compliance Transformation and Change team to support the delivery of strategic Financial Crime process improvements, including new technology solutions.

Experience

A good understanding of global sanctions regulation as well as wider financial crime laws and regulations with experience in applying them across a variety of Insurance product types

An understanding of a financial crime risk management framework to mitigate financial crime risks faced by the business and meet regulatory and legal expectations.

Ability to communicate complex topics in a simple and audience-sensitive way both verbally and in writing.

Relevant insurance experience, preferably within the London/Lloyd’s market.

Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.

Data Protection Officer

Morson Edge are delighted to be supporting a leading Public Sector organisation to help recruit a DPO ( Data Protection Officer) on a permanent basis. The DPO will provide advice and direction to ensure the highest standards of compliance with data protection laws and associated regulatory guidance are achieved. The role holder will fulfil all statutory tasks as defined within Article 39 of the UK GDPRAdvise on emerging data protection risks including AI, automated decision making and evolving UK data protection reforms. Monitor organisational compliance with data protection legislation through audits and other available mechanisms including the ICO’s Accountability Framework. Provide advice on data protection impact assessments and monitor the organisation’s performance in carrying these out Ensure there are effective measures in place for identifying and responding to personal data incidents, breaches and complaints To provide leadership and direction about the clients’ response in the event of a serious data breach Respond to data protection complaints. To keep updated on changes to the legislative and regulatory landscape, including emerging laws and regulation of AI technologies, that will impact the client to ensure any changes are reflected in internal policies and training etc To be the first point of contact for the Information Commissioner’s Office/Information Commission and for individuals whose data is processed Manage the network local Data and Information Owners (DIOs) Ensure there are up to date data processing agreements in place with any third parties processing personal data on behalf of the client including appropriate contract terms with suppliers, and data sharing agreements with other data controllers To maintain close liaison and oversight of the work of the BSB Data Protection Team To lead and co-ordinate handling of Subject Access Requests and the exercise of other Data Subjects’ rights and create appropriate channels of communication to allow stakeholders to exercise their rights (including webpages, emails etc).Liaise with the Head of Information Management and the Data Protection Team on BSB Subject Access Requests and the exercise of other Data Subjects’ Rights, as necessary.Maintain framework of controls: Maintain the Record of Processing Activities Maintain regular review of the Accountability Tracker to assess overall compliance. Maintain up to date internal policies, procedures, and training for staff to handle personal data securely and appropriately With the IT Team, PMO, IM Team and CSO, to ensure all IT systems are UK GDPR compliant, and that new suppliers complete required checks of their systems for UK GDPR compliance and information security before they are introduced. Help ensure the requirements of the Working Abroad Policy are met, along with other members of the Working Abroad Team, to ensure GCB’s IT systems’ security is maintained when staff work abroad. Maintain a scheme to monitor internal compliance and ensure identified risks are identified and shared with business teams and senior management. Maintain a scheme of reporting to senior management and governance groups, including but not limited to Audit Committee and GRA, to satisfy best practice, other policy or legislative requirements. Maintain a scheme for reporting data breaches to senior management and the ICO in line with UK GDPR, other legislation and businesses own policy requirements.Please make contact and send your CV to discuss role .InterQuest Group is acting as an employment agency for this vacancy. InterQuest Group is an equal opportunities employer and we welcome applications from all suitably qualified persons regardless of age, disability, gender, religion/belief, race, marriage, civil partnership, pregnancy, maternity, sex or sexual orientation. Please make us aware if you require any reasonable adjustments throughout the recruitment process.

Senior IT Auditor Financial Services Retail Bank Hybrid - LondonYour new company UK-based merchant bank headquartered in London. It offers specialist lending, savings, and wealth management through its Commercial, Retail, and Property divisions. Listed on the London Stock Exchange, the group reported c.£950 million in revenue and a £10 billion loan book in FY 2025, supported by strong capital ratios. Your new role

Cyber Risk Coordinator

Police Digital Services

Join Police Digital Service as a Cyber Risk Coordinator starting at £45,000 per annumThe Cyber Risk Coordinator is a key member of the Police Digital Service Cyber Service Team, supporting audit, risk and compliance activities.About Police Digital ServiceTo protect people from harm in our rapidly changing world, police services must not only keep up with technology and business changes but develop capabilities and ways of working that will enable them to adapt to and deal with the complexity of modern criminality.Our Values are:

We value People

We do the right thing

We are innovative

We are one Team

We are proud and passionate

The Cyber Risk Coordinator will work with the Audit Risk and Compliance senior leadership, wider team and external stakeholders to ensure that the information processed remains accurate and available, and provide vital coordination support, including:

Ensuring the accuracy of data held in the National Information Assurance Risk Register.

Providing secretarial support to national risk forums.

Supporting the Audit Risk and Compliance Team senior leadership.

Act as Information Manager for the Audit Risk and Compliance Team.

Coordinate training and other activities on behalf of the Audit Risk and Compliance Team.

Key Responsibilities

Ensuring that the national information assurance risk management processes are working effectively.

Identifying risk deadlines and ensuring that appropriate actions are undertaken.

Ensuring that mitigation activities are reported into the risk register.

Providing secretariat support to national risk management forum.

Monitor the Audit Risk and Compliance Team’s management processes and Key Performance Indicators.

Acting as Information Manager for the Audit Risk and Compliance Team, ensuring the accuracy, correct storage and proper disposal of all information held and processed by the team.

Coordinating external training events provided by the Audit Risk and Compliance Team.

Managing training bookings for the Audit Risk and Compliance Team.

Coordinating Audit Risk and Compliance Team briefing events.

Providing diary support to Audit Risk and Compliance Team senior leadership.

Overseeing the Cyber Security Mailbox, assigning actions as required and tracking completion.

What you need to succeed in the roleEssential

Possess keen attention to detail.

Ability to manage and prioritise a high workload to meet key deadlines.

Experience of using different software packages including the Microsoft suite.

An understanding and preferably knowledge and experience of Data Protection, Freedom of Information and handling government data classifications.

Risk management experience.

Desirable

An understanding of information and cyber security.

Experience of Defence, ?Blue Light’ and/or Government organisation governance.

Diversity, equity and inclusionWe are committed to equal opportunity for all and will not discriminate on any grounds. We encourage applications from people from the widest possible span of experience. We particularly welcome applications from Black, Asian and Minority Ethnic (BAME) candidates and people with disabilities.Working ArrangementsThis is a remote role with some National travel required.Please note, we may choose to close the advert early if we receive a high volume of applications for this role so please endeavour to to complete your application as soon as possible.

Financial Risk Consultant - ALM & QRM

Job Title: Financial Risk Consultant - ALM & QRM Contract: 4-6 months Location London Canary Wharf Hybrid - London (3 days in office)Department Enterprise Risk ManagementAre you a seasoned financial risk professional with deep expertise in Asset and Liability Management (ALM) and the QRM framework? We are seeking a highly skilled Financial Risk Consultant to join a major banking client on a 4-6 month contract. This is an exciting opportunity to work on regulatory-driven risk modeling projects under tight deadlines while collaborating with multidisciplinary teams.About the Role:You will leverage your experience in developing, testing, implementing, and using QRM for risk modeling and analysis, ensuring compliance with EBA and Basel III guidelines. The role requires translating complex business and regulatory requirements into robust ALM solutions across the banking book, influencing strategic decision-making while working closely with stakeholders.Key Responsibilities:

Develop, test, and implement QRM-based ALM and interest rate risk solutions across all banking book segments

Ensure QRM outputs comply with regulatory requirements (EBA, Basel III)

Collaborate with multidisciplinary teams and stakeholders to deliver solutions under tight timelines

Perform independent data analysis using SQL, ETL, SAS, and Excel

Apply ALM concepts, including interest rate risk metrics, balance sheet structure, behavioral modeling, hedging strategies, FTP, EVE, and NII sensitivities

Requirements:

Bachelor’s degree in Finance, Economics, Risk Management, Computer Science, Mathematics, or related quantitative field; Master’s preferred

7+ years of Treasury/ALM experience in medium to large banks (consultancy experience preferred)

5+ years hands-on experience developing and implementing ALM and interest rate risk solutions in QRM

Advanced Excel skills; proficiency in SQL, ETL, SAS, and database management

Strong understanding of ALM, IRR metrics, regulatory requirements, and risk modeling techniques

Exceptional analytical, problem-solving, and project management skills

Excellent communication skills to effectively engage with stakeholders and multidisciplinary teams

Self-starter with the ability to work independently on complex tasks

Why Join:This is a chance to make an immediate impact on a high-profile regulatory project within a leading banking institution. You’ll work alongside experienced professionals, shaping risk management practices and contributing to critical ALM and IRR initiatives.Apply today if you’re ready to bring your expertise in QRM and ALM to a dynamic, challenging, and rewarding contract role.Randstad Technologies is acting as an Employment Business in relation to this vacancy.

Regulatory Reporting Analyst

Regulatory Reporting Analyst Needed !I am currently supporting one of our Investment Banking clients who are looking to bring on a Regulatory Reporting Analyst on an initial 12 month contract with scope of extensions. You will be required to go into the London office 3-4 days a week with my client being able to pay up to 500 per day.Essential Skills

5+ years experience of working in a reporting or control environment

Experiences with preparing Bank of England statistical reports, FINREP, Pillar 3 and COREP reporting

Strong understanding of Bank of England statistical reporting requirements, regulatory rules Basel III, CRD V

Finance qualification (ACA/CIMA/ACCA/CFA) will be beneficial to this role because of the focus on creating a strong control environment

Strong Microsoft Excel and Access (at least intermediate skill set)

If this role is of interest please apply with an updated version of your CV and I’ll reach out if suitable.Please click here to find out more about our Key Information Documents. Please note that the documents provided contain generic information. If we are successful in finding you an assignment, you will receive a Key Information Document which will be specific to the vendor set-up you have chosen and your placement.To find out more about Huxley, please visit (url removed)Huxley, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales

Patent Litigation Partner - U.S. Law Firm - London office

A globally integrated law firm with a long-standing London presence is seeking a senior Patent Litigation Partner to join its dynamic Intellectual Property practice.The London office acts as a strategic anchor for the firm’s European operations, advising on cross-border transactions and disputes across sectors including technology, finance, real estate, insurance, and construction. With nearly four decades of activity in the UK, the team works seamlessly with colleagues across North America and Asia on matters involving trade, finance, intellectual property, and innovation.The firm’s London-based disputes team handles complex litigation and arbitration, including international disputes, regulatory investigations, anti-corruption compliance, and data breach response. The office also provides advisory services in areas such as EU and UK regulatory affairs, employment law, cybersecurity, data privacy, global mobility, employee benefits, and construction.Role OverviewThe firm is now looking to strengthen its IP litigation capabilities in London with the hire of a Patent Litigation Partner. This strategic appointment will enhance the firm’s ability to service existing clients and expand its reach in key innovation-driven sectors.The international IP team is trusted by clients across industries for its depth and breadth of expertise, including:

Patent litigation and enforcement Patent prosecution and strategy (including reexamination, reissue, interference, and foreign filings) Commercial IP agreements (development, supply, licensing) Domain name registration and enforcement Patentability, validity, and infringement opinions IP commercialization and technology transfers IP due diligence in M&A transactions

With over 50 years of experience in intellectual property, the team is consistently recognized for its technical excellence and global reach. Particular strengths include medical devices, trade secrets, and complex technology matters.Candidate Profile

Senior patent litigation partner with a proven track record in high-value disputes Experience advising clients in sectors such as life sciences, technology, or engineering Based in London, currently at an international or specialist IP firm Strong interest in leveraging a global platform to grow international mandates Collegiate mindset and appetite for cross-office collaboration

What’s on Offer

Access to a well-established international client base Opportunity to lead and grow the London IP litigation offering Supportive, collaborative office culture Platform to continue servicing your own clients while expanding into new markets

Senior Cyber Security Risk Specialist

UK Power Networks (Operations) Ltd

Join Our Team as a Senior Cyber Security Risk Specialist!Are you an experienced Cyber Security professional looking for a new challenge? We have an exciting opportunity for a Senior Cyber Security Risk Specialist to join our dynamic Information Systems directorate.Based in our London or Crawley office, this role offers a competitive salary of up to 85,000.00 depending on experience, skills and qualifications plus a 7.5% bonus. You’ll be reporting to the Cyber Security Governance, Risk & Compliance Manager and contributing to crucial security initiatives. After a 6-month probation period, enjoy the flexibility of blended working - with 3 days in the office and 2 remote.Desire: Benefit from our comprehensive package:

25 Days Annual Leave plus bank holidays

Reservist Leave - Additional 18 days full pay and 22 unpaid

Personal Pension Plan - 4% or 5% personal contribution with a corresponding 8% or 10% employer contribution

Tenancy Loan Deposit Scheme, Season Ticket Loan

Tax-efficient benefits: Cycle to Work, Home & Tech, and Green Car Leasing Schemes

Occupational Health support

Don’t miss out on this incredible opportunity. Apply now and become a key player in safeguarding our information systems! Applications close on 21/01/2026.For more information and to view the full job description please click apply!If you have any queries in connection to this vacancy or your application, please contact us at quoting the vacancy reference number and a member of the team will get in touch with you as soon as possible.

Information Security and Compliance Manager

As Info Sec Manager you’ll play a vital role in the team taking responsibility for policies, procedures and controls that will protect their data and systems. Your work will directly impact our ability to support the armed forces community with confidence - allowing you to make a difference every day to come to work.Role Purpose: The Information Security and Compliance Manager is responsible for developing, implementing, and maintaining security policies, procedures, and controls to protect the Royal British Legion’s data and systems. They will play a pivotal role in the management and containment of security incidents, ensuring continuous improvement in their security posture while raising awareness for staff, volunteer and member communities. The post holder will lead on activities that assess, report and mitigate risk associated with third parties with the focus being to protect the confidentiality, integrity, and availability of their information assets.Key Responsibilities: Information Protection

Take responsibility for their information and data protection policies, practices and settings to include sensitivity labels, data retention policies and data loss protection policies

Collaborate with the Head of Risk, DPO and VCISO to identify and manage information security risks and mitigating controls

Lead the wider business areas to ensure security policies and procedures are embedded in all business processes.

Collaborate with internal comms to ensure implemented information protection policies are understood and accepted by the wider organisation

Take an active role in in the containment and reporting of information security incidents, including detection, response, remediation and communication.

Third Party risk management

Lead on the design and implementation of robust processes for reviewing & addressing the data security posture of third-party suppliers.

Take a leading role in managing their relationships with vendors and service providers to assess compliance with security and data protection policies and standards.

Policy, Audit & Reporting

Take the lead on the review process for information security policies working to agreed re-view schedules. Ensure all policies are published and made available to all staff and volunteers increasing awareness among these groups.

Develop their policies and procedures in accordance with industry regulations and standards such as Data Protection Act 2018, PCI-DSS, and ISO27001.

Monitor tools for data governance, data security, and compliance to manage information security risks and regulatory requirements and detect and investigate possible information security incidents.

Actively contribute to the production of the scheduled security assurance reports for Executive Board and Finance Committee.

Deliver accurate reporting against the Security Strategy deliverables ensuring close alignment against strategic and departmental objectives.

Knowledge & Experience

Significant proven experience in information security and compliance management.

Familiarity with ITIL practices and risk management methodologies.

Significant proven experience with cyber security incident management and response

Strong knowledge of security standards and regulations, such as GDPR, PCI-DSS, and ISO27001

Experience of delivering data protections specifically data loss prevention, sensitivity labelling and retention (using Microsoft Purview)

Experience of managing projects through to completion

Skills & Attributes

Excellent problem-solving skills and the ability to provide technical expertise and advice - Strong all round technical skills

Strong communication and collaboration skills & proven ability to work effectively with various departments including senior leaders.

Ability to explain technical solutions to a non-technical audience

Ability to manage and organise own workload and be flexible and ready to adapt to changing demands

Strong analytical skills with the proven ability to (use) on the data available to inform decisions and actions

Qualifications Certified in one of the following:

Certified Information Systems Security Professional (CISSP)

Certified Information Security Manager (CISM)

Certified Information Systems Auditor (CISA)

Certified in Risk and Information Systems Control (CRISC)

ISO/IEC 27001 Lead Implementer

Cyber Assessment Framework Specialist

Role: Cyber Assessment Framework Specialist x 2Location: Bristol, London, Birmingham, or Manchester (3 days per week on-site)Duration: 3 monthsDay rate: £400 Umbrella Only (Inside IR35)Role Overview

The position focuses on developing a new overarching cybersecurity controls framework rather than implementing an existing one.

This framework will unify processes across the organization, including areas like:

Identity and Access Management

Pen Testing

System Security

It will serve as a governance, risk, and compliance (GRC) framework, under which other frameworks (CAF, PCI, ISO) will nest.

Key Characteristics

Business Process Orientation: The role is less technical and more about aligning processes, terminology, and roles across BT.

Systems Thinking: Required to design and develop a framework that works at scale for a large enterprise.

Metrics & Monitoring: Candidate should understand metrics to ensure processes operate effectively.

Stakeholder Engagement: Involves working with managers and operators of processes, plus occasional senior-level engagement.

Skills & Experience

Strong experience in large organizations is essential; small business experience won’t translate well.

Background in telecom is preferred but not mandatory; banking or other regulated sectors at enterprise scale are acceptable.

Emphasis on business analysis and process design within cybersecurity GRC, rather than deep technical expertise.

Page 1 of 2

Frequently asked questions

What types of Risk & Compliance jobs are listed on Haystack in London?

Haystack features a wide range of Risk & Compliance roles in London, including positions such as Risk Analyst, Compliance Officer, Regulatory Consultant, Internal Auditor, and Data Privacy Specialist.

Do I need specific certifications to apply for Risk & Compliance jobs on Haystack?

While requirements vary by role, common certifications like CISSP, CISA, CRISC, or qualifications in GDPR and financial regulations often enhance your chances. Job listings typically specify required or preferred certifications.

Can I filter Risk & Compliance job listings based on experience level on Haystack?

Yes, Haystack allows you to filter job listings by experience level, including junior, mid-level, and senior positions, helping you find roles that match your career stage.

How often are new Risk & Compliance job opportunities posted in London?

New Risk & Compliance jobs in London are posted regularly on Haystack, often daily, ensuring you have access to the latest opportunities in this field.

Does Haystack provide resources to help with my Risk & Compliance job application?

Yes, Haystack offers career advice, resume tips, and interview preparation resources tailored to IT and Risk & Compliance professionals to help make your application stand out.

Terms

Feedback

Contact

Careers