Hire the Best Risk Assessment Freelancers
in the United Kingdom

I’m a fintech Risk & Compliance professional with experience across leading regulated organisations including Revolut, Deloitte, EY and Santander. I have received 5 star client feedback for FCA compliance and regulatory consulting engagements, with clients highlighting my professionalism, communication and practical, risk based approach. I specialise in helping fintechs and growing businesses design, implement and strengthen risk and compliance frameworks in a practical and proportionate way, enabling organisations to meet regulatory expectations without unnecessary complexity. My experience includes: • Building risk and compliance frameworks from the ground up • Designing and implementing compliance monitoring programmes • Supporting FCA and regulatory alignment across multiple jurisdictions • Advising on conduct risk, Consumer Duty and customer outcomes • Developing risk reporting, KRIs and governance structures • Third-party risk management and supplier oversight • Data protection and GDPR (CIPP/E qualified) • Internal audit, control reviews and audit readiness activities • Policy development, governance frameworks and regulatory documentation I take a pragmatic, business focused approach, identifying key risks quickly and providing clear, actionable recommendations that support compliance while enabling business growth. If you need support with a compliance review, risk framework, governance programme, GDPR compliance or regulatory readiness initiative, I would be happy to help.

I help organisations transform complex regulatory requirements into practical, audit-ready Health and Safety Management Systems that protect both the workforce and the organisation’s legal compliance. My work focuses on building structured HSE documentation systems that meet regulatory obligations while remaining practical for real workplace implementation. I have supported construction companies, training providers, and international organisations with projects ranging from high-volume technical assessments (100+ COSHH reports) to large-scale compliance reviews worth $4,000+, delivering professional documentation systems that are clear, structured, and operationally effective. I specialise in the development and review of: • Health and Safety Policies and Safety Management Systems (SMS) • HSE Documentation Frameworks and Compliance Manuals • RAMS – Risk Assessments and Method Statements • COSHH Assessments and Chemical Safety Documentation • Risk Assessment Templates and Workplace Safety Documentation • Regulatory Compliance Documentation and Governance Policies • ISO 45001 Safety Management Systems • ISO 45003 Psychosocial Risk Management Frameworks • Accident Reporting and Investigation Documentation • HSE eLearning and Safety Training Compliance Reviews • Administrative Code Policies and Internal Compliance Systems My documentation is designed to be: • Regulatory compliant • Audit ready • Operationally practical • Structured for real workplace implementation I work with organisations that require clear, professional compliance systems, including construction companies, logistics operations, facilities management providers, training organisations, and businesses operating in regulated environments. If you need to develop HSE policies, compliance documentation, or a complete safety management system, feel free to invite me to your job or send a message to discuss your project requirements.

Hi, I'm Nana! I've helped businesses migrate email platforms safely, securely, and without downtime for over 20 years. During that time I've also helped them fix spam issues and set up their domain on online platforms. I hold a Microsoft MCSE email specialization and have extensive expertise with Google Workspace, Microsoft 365, and various other email systems. Having founded and managed my own company, I understand the challenges you face. Let me handle the technical side, so you can focus on your core business. My guarantees: No downtime. No emails lost. No data lost. No Junk mail. Post-project validation. Security and privacy. Satisfaction - 7 days post service support. You shouldn't worry about email setup, migration, or delivery issues. Focus on your main tasks and leave all your email worries to me. I have over 20 years of experience with every kind of email system you can imagine and I am certified. Things I can do for you: * Custom domain registration and email setup on - Google Workspace, Microsoft 365, Microsoft Outlook, Zoho Mail, iCloud Mail, cPanel webmail, Fastmail, Bluehost, Godaddy, Rackspace, Proton Mail, Yahoo Mail, Yandex Mail, Namecheap Mail, Zimbra and any other email platform. * Email migration with no downtime. Seamless migration to or from any email platform to another. You emails, your contacts and your calendar items will all be moved. * Verify your domains, setup secondary domains and aliases. * Setup email forwarding * Setup and configure shared mailboxes and shared calendars. * Setup and configure DNS records to avoid spam folder and fix delivery issues: SPF, DKIM, DMARC, TXT, MX, etc. * Configure mail clients like Outlook, Thunderbird, etc. * Configure email marketing tools and provide audits and recommendations to improve ongoing inbox placement and campaign success. I look forward to helping you. If you have any questions message me to discuss.

Top Rated Plus | CISA | ISO 27001 & ISO 42001 Lead Auditor | IAPP Certified Privacy Professional I'm an IT Audit Manager at a leading European consulting firm, with prior experience at a Big 4, delivering high-impact assurance and advisory engagements across Financial Services, Energy & Infrastructure, and Public Sector clients globally. What I bring to the table: ISO 27001 & 42001 - I hold Lead Auditor certifications for both ISO 27001:2022 and ISO 42001 (AI Management Systems). I've led certification audits end-to-end and supported clients through readiness, gap assessment, policy and procedure development, internal audit programmes, and management review - for both first-time certifications and surveillance cycles. My experience spans multinationals, SMEs, and early-stage startups across the UK, US, EU, and beyond, so I understand how to make the standard practical and proportionate regardless of your organisation's size or maturity. AI Governance - One of a small pool of practitioners certified to audit against ISO 42001. I help organisations build and assess governance frameworks for AI systems, covering risk, accountability, and compliance requirements. Privacy & Data Protection - As a CIPP/E certified professional, I've conducted GDPR audits and gap assessments for clients across the UK, US, EU, and South Africa, covering data mapping, lawful basis, DPIAs, and third-party data flows. Broader Assurance Coverage - My engagements span: - SOC 2 (manual and tool-assisted via Vanta, Drata, Secureframe) - SWIFT Customer Security Controls Framework (CSCF) - Third-Party Risk Assessment (NIST SP 800-53, CIS Controls, CSA CCM) - IT Health Checks (ITHC) and penetration testing oversight - Segregation of Duties (SoD) reviews - SDLC, Change & Incident Management - DR/BCP reviews - ISO 9001 and ISO 27701 Certifications: CISA | ISO 27001:2022 Lead Auditor | ISO 42001 Lead Auditor | CIPP/E | SWIFT CSCF | CSM | CSPO Whether you're a startup pursuing your first ISO certification or an established organisation needing an experienced pair of eyes on your controls, I deliver quality work on time with no chasing required. If you need someone who can hit the ground running, ask the right questions, and give you an honest view of where you stand, feel free to reach out.

EXECUTIVE SUMMARY Senior compliance, quality and risk governance leader with a 20+ year track record designing, implementing and maturing regulatory, risk and quality frameworks across legal services, professional bodies, healthcare, education and SaaS environments. Expert in developing governance systems that strengthen organisational resilience, achieve ISO certification, enhance regulatory alignment and drive continuous improvement. Experienced advising Boards and Executive Teams, leading enterprise risk initiatives, directing audit and assurance activity, and embedding frameworks aligned to ISO, SRA, CQC, OFSTED/OFQUAL, GDPR and the UK Digital Identity & Attributes Trust Framework (UKDIATF) & ISO 27566-1 . Recognised for building high-performing audit/compliance functions, stabilising complex environments, and delivering multi-stakeholder transformation programmes. A strategic operator with a hands-on approach to implementation, culture change and operational excellence. ________________________________________ LEADERSHIP CAPABILITIES • Governance Design & Maturity Frameworks • Enterprise Risk Management & Risk Governance • Compliance Strategy & Operating Model Development • ISO Certification Leadership (9001, 14001, 22301, 27001, 17025, 13485, 17065, 19011) • Regulatory Alignment (SRA, CQC, OFSTED, OFQUAL, UKDIATF, GDPR/DPA) • Audit & Assurance Leadership (Internal, Supplier, External, 3rd-party) • Board Reporting & Executive Stakeholder Management • Policy, Framework & Controls Development • Agile Project Delivery & Organisational Change • Quality, Operations & Continuous Improvement Leadership • Digital Compliance, Identity & Information Governance ** MDSAP/FDA 21 CFR 820.30, Medical Devices, ISO 13485 & 14971. ** clickup project management platform ________________________________________ RELEVANT LEADERSHIP EXPERIENCE Senior Compliance Officer (Contract) Directed compliance governance, operational assurance and ISO frameworks for a national professional body undergoing significant organisational expansion. Key Leadership Achievements: • Led ISO 9001, 14001 and 27001 certification programmes, ensuring third-party audit readiness and sustainable governance controls. • Designed organisational compliance workflows, quality systems and enterprise audit strategies. • Supported OFSTED and OFQUAL regulatory compliance for apprenticeships, adult learning and professional training frameworks. • Produced board-level governance reports, risk analysis and assurance outputs. • Designed an industry-specific Quality Standard—including scope definition, KPI structures, risk governance, due diligence, stakeholder strategy and budget oversight. • Established supplier governance and internal audit criteria for a multi-vendor environment. ________________________________________ Provides senior advisory leadership to regulated and high-risk organisations on compliance frameworks, governance maturity, enterprise risk and operational quality systems. Key Leadership Achievements: • Designed and embedded risk-based audit and assurance frameworks across legal and regulated services. • Advised on SRA Code of Conduct governance across multiple legal disciplines, improving oversight, client care, complaint management and risk controls. • Implemented multi-standard ISO Management Systems (9001, 14001, 22301, 27001) including readiness, documentation, gap analysis and audit leadership. • Developed organisation-wide governance documentation, risk registers, control frameworks and compliance monitoring programmes. • Managed audit teams delivering independent assurance to senior leadership. • Strengthened AML, sanctions, CDD/PEP, ABC, conflicts and client onboarding governance controls. • Supported Digital ID compliance for UKDIATF (SaaS) and contributed to PAS 1296 (Age Verification) aligned processes. • Delivered AgilePM-led transformation projects involving workflow redesign, operational optimisation and compliance digitalisation. ________________________________________ QUALIFICATIONS • Agile Project Management (AgilePM) – Foundation (Practitioner in progress) • Lead Auditor – ISO 9001 • Specialist knowledge: ISO 17025, ISO 13485, ISO 19011, ISO 17065 • Professional Presentations Training (SGS UK) ________________________________________ EDUCATION BSc (Hons) Quality Management, University of Salford HND Business & Finance, University of Salford

Sivakumar Raju is a seasoned Technology Risk, Audit, and Compliance Consultant with over 15 years of experience in implementing and auditing information security frameworks. He specialises in developing security policies, conducting risk assessments, evaluating the effectiveness of controls, and providing strategic guidance to address compliance gaps. Experienced Technology Auditor Offering the Following Services: 1. SOC 1 (System and Organization Controls 1) – Based on ISAE 3402, issued under the AICPA framework (U.S.); focuses on controls relevant to financial reporting. 2. SOC 2 / SOC 3 – Based on AICPA Trust Services Criteria; focuses on security, availability, processing integrity, confidentiality, and privacy. 3. ISO/IEC 27001: 2022 Certification 4. CSA STAR Attestation 5. PCI DSS (Payment Card Industry Data Security Standard) 6. NIST SP 800-53 / FedRAMP Compliance 7. C5 (Cloud Computing Compliance Criteria Catalogue) 8. Third party vendor risk assessments 9. ISAE 3402 Audit Support (Third party service auditor reports)