Third Party Cyber Risk Manager
Posted 2 weeks ago by Tria
£500 Per day
Inside
Hybrid
London
Summary: The Third-Party Cyber Risk Manager will lead cyber assurance activities for suppliers and vendors within a large UK enterprise organization. This contract role focuses on assessing cyber risk during supplier onboarding and contract renewals, ensuring that appropriate security controls are established before granting access to systems or data. The position requires strong stakeholder engagement and the ability to work independently in a hybrid environment.
Key Responsibilities:
- Conduct cyber risk assessments for new and existing third-party suppliers
- Perform initial risk tiering based on services, data access, and system access
- Review supplier security documentation (e.g., ISO 27001, SOC reports)
- Liaise with suppliers and internal stakeholders to gather assurance evidence
- Provide risk recommendations and track remediation actions
- Ensure security requirements are embedded within supplier contracts
- Work closely with procurement, privacy, legal, and business teams
Key Skills:
- Experience in third-party cyber risk management or supplier assurance
- Strong understanding of cyber risk principles and security controls
- Experience working in large or complex organisations
- Strong stakeholder engagement skills
- Ability to work independently in a hybrid environment
Salary (Rate): £500/day
City: London
Country: UK
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
Third-Party Cyber Risk Manager (Contract)
Hybrid
6 months Minimum
Start date April
We are supporting a large UK enterprise organisation seeking a Third-Party Cyber Risk Manager to lead cyber assurance activities for suppliers and vendors.
This role focuses on assessing cyber risk during supplier onboarding and contract renewals, ensuring appropriate security controls are in place before access to systems or data is granted.
Key Responsibilities.
- Conduct cyber risk assessments for new and existing third-party suppliers
- Perform initial risk tiering based on services, data access, and system access
- Review supplier security documentation (e.g., ISO 27001, SOC reports)
- Liaise with suppliers and internal stakeholders to gather assurance evidence
- Provide risk recommendations and track remediation actions
- Ensure security requirements are embedded within supplier contracts
- Work closely with procurement, privacy, legal, and business teams
Requirements.
- Experience in third-party cyber risk management or supplier assurance
- Strong understanding of cyber risk principles and security controls
- Experience working in large or complex organisations
- Strong stakeholder engagement skills
- Ability to work independently in a hybrid environment
If you're looking to add a highly regarded company to your CV, whilst working on a new project - get in touch or APPLY NOW!