At a Glance
- Tasks: Support a major third-party risk transformation programme and manage critical suppliers.
- Company: Join a leading organisation focused on Cyber Security and risk management.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Collaborative environment with diverse teams and exciting career advancement opportunities.
- Why this job: Make a real impact by enhancing supplier risk practices and frameworks.
- Qualifications: Strong Business Analysis experience and understanding of third-party risk frameworks.
The predicted salary is between 36000 - 60000 £ per year.
We are seeking an experienced Cyber Security Third Party Risk Business Analyst to support a major third-party risk transformation programme, with a focus on defining and managing critical suppliers across the organisation. This role will work closely with Procurement, Legal, Cyber Security, Risk, and business stakeholders to design frameworks, strengthen contractual controls, and embed consistent supplier risk practices.
Key Responsibilities
- Develop a clear, evidence-based definition and framework for identifying and classifying critical suppliers.
- Design practical tools, guidance, and documentation to enable consistent application across business units.
- Facilitate workshops and stakeholder sessions to support supplier classification and consolidate outputs into an organisation-wide view.
- Review and enhance security contract addendums, strengthening cyber, regulatory, and risk-related clauses.
- Support broader third-party risk initiatives including process design, governance development, and operating model improvements.
Skills & Experience
- Strong Business Analysis experience, with the ability to translate complex requirements into structured outputs.
- Understanding of third-party risk, supplier risk, or criticality frameworks.
- Experience designing risk models, frameworks, or assessment criteria.
- Ability to analyse contract clauses, particularly security or risk-related content.
- Strong stakeholder engagement skills, with experience working across Legal, Procurement, Risk, or Cyber teams.
- Familiarity with regulations and frameworks such as GDPR, NIS2, DORA, ISO 27001, or ISO 27036 is advantageous.
- Analytical mindset with experience identifying gaps and driving process improvements.
- Comfortable operating in complex, federated environments.
Business Analyst - Third Party Risk employer: Barclay Simpson
Join a forward-thinking organisation that prioritises employee development and fosters a collaborative work culture. As a Business Analyst in Third Party Risk, you will benefit from comprehensive training programmes, opportunities for career advancement, and a supportive environment that values innovation and teamwork. Located in a vibrant area, our company offers a unique blend of professional growth and a dynamic workplace atmosphere, making it an excellent choice for those seeking meaningful and rewarding employment.
StudySmarter Expert Advice🤫
We think this is how you could land Business Analyst - Third Party Risk
✨Tip Number 1
Network like a pro! Reach out to folks in your industry, especially those in Cyber Security and Risk. Attend events or webinars where you can meet potential employers and make connections that could lead to job opportunities.
✨Tip Number 2
Show off your skills! Create a portfolio or case studies showcasing your experience with third-party risk analysis and frameworks. This will give you an edge during interviews and help you stand out from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on key regulations like GDPR and ISO standards. Be ready to discuss how you've applied these in past roles, as this will demonstrate your expertise and understanding of the field.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities that might be perfect for you. Plus, it’s a great way to ensure your application gets seen by the right people.
We think you need these skills to ace Business Analyst - Third Party Risk
Some tips for your application 🫡
Tailor Your CV:Make sure your CV speaks directly to the job description. Highlight your experience in business analysis and third-party risk, and don’t forget to mention any relevant frameworks or regulations you’re familiar with. We want to see how your skills align with what we’re looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for the role. Share specific examples of how you’ve successfully managed supplier risks or designed frameworks in the past. Let us know what makes you tick and why you want to join our team!
Showcase Your Stakeholder Engagement Skills:Since this role involves working closely with various teams, make sure to highlight your stakeholder engagement experience. Share stories about how you’ve facilitated workshops or collaborated with different departments. We love seeing candidates who can bridge gaps and bring people together!
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It’s super easy and ensures your application gets to the right place. Plus, you’ll get to explore more about us and what we do while you’re at it!
How to prepare for a job interview at Barclay Simpson
✨Know Your Frameworks
Make sure you brush up on key frameworks like GDPR, ISO 27001, and NIS2. Being able to discuss how these regulations impact third-party risk will show that you understand the landscape and can contribute meaningfully.
✨Showcase Your Analytical Skills
Prepare examples of how you've identified gaps in processes or improved frameworks in previous roles. Use specific metrics or outcomes to illustrate your impact, as this will demonstrate your analytical mindset and problem-solving abilities.
✨Engage Stakeholders Effectively
Think about times when you've successfully engaged with cross-functional teams, especially in Legal, Procurement, or Cyber Security. Be ready to share how you facilitated workshops or sessions to drive consensus and gather insights.
✨Understand Contract Clauses
Familiarise yourself with common security and risk-related clauses in contracts. Be prepared to discuss how you've reviewed or enhanced these clauses in the past, as this will highlight your attention to detail and understanding of contractual obligations.
