Job Title: Third-Party Risk Management Officer
Location: UK (London / Cambridge / Londonderry)
Employment Type: Full Time (Hybrid)
The job
The Third-Party Risk Management team oversees all of AVEVA's suppliers to ensure that they do not represent an unacceptable risk to the business or fail to meet minimum security requirements. The role requires a broad understanding of procurement concepts, security, regulation and the capacity to engage with a range of stakeholders. The team are currently stretched dealing with an influx of suppliers that need to be assessed to help AVEVA meet its regulatory obligations; this will be a fast‑paced role focused on delivering tangible business outcomes.
Key responsibilities
- Manage and assess third‑party suppliers to identify security risks and issues
- Communicate risks and issues to a range of stakeholders (including suppliers) in a clear and actionable way to drive improvements across AVEVA's supply chain
- Build communication and relationship skills, and navigate complex requirements with stakeholders
- Assist external suppliers with their maturity to improve organisational and technical measures to ensure information security is baked into their processes and the technology and/or services they provide to AVEVA
- Assist in maturing processes and tooling to streamline third‑party risk management processes
- Data analysis, data entry and report production in TPRM tooling
Essential requirements
- Good communication and engagement skills with capacity to explain issues to a range of audiences
- Good knowledge of procurement concepts, tools and processes
- Basic knowledge of contract law
- Intermediate security knowledge, including working knowledge of ISO 27001 and NIST cybersecurity framework
- Basic understanding of NIS 2 and EU CRA regulations
- Capacity to drive process management improvements, including design and application to standard operating procedures
- Capacity to promote AVEVA's interests with suppliers that have security issues or need to address risks
Desired skills
- Critical thinking skills to generate business value and identify opportunities for improvements
- Tenacity to drive improvements and enhancements to suppliers' security controls to mitigate risks identified to AVEVA through its supply base
- Experience of TPRM tooling such as Riskonnect
Digital Security at AVEVA
Our Digital Security team is responsible for protecting AVEVA’s digital assets and keeping the company’s data and IP secure. We’re also playing a critical role in AVEVA’s move to the cloud.
As cyber threats grow and more data moves into the cloud, the importance of our role is only going to grow. If you’re a collaborative problem solver that’s passionate about cyber security, you’ll find fulfillment and opportunity in our team.
UK Benefits include
Flexible benefits fund, emergency leave days, adoption leave, 28 days annual leave (plus bank holidays), pension, life cover, private medical insurance, parental leave, education assistance program.
Hybrid working
We work in a hybrid way at AVEVA. Most roles are based at a local AVEVA office, with an expectation of being on‑site 50% of your working hours to support collaboration and connection. Some positions are fully office‑based depending on the nature of the work, and certain roles that support specific customers or markets may be remote.
AVEVA requires all successful applicants to undergo and pass a drug screening and comprehensive background check before they start employment. Background checks will be conducted in accordance with local laws and may, subject to those laws, include proof of educational attainment, employment history verification, proof of work authorization, criminal records, identity verification, credit check. Certain positions dealing with sensitive and/or third‑party personal data may involve additional background check criteria.
AVEVA is an Equal Opportunity Employer. We are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business. AVEVA provides reasonable accommodation to applicants with disabilities where appropriate. If you need reasonable accommodation for any part of the application and hiring process, please notify your recruiter. Determinations on requests for reasonable accommodation will be made on a case‑by‑case basis.
