Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Oversee third-party risk management, focusing on information security and compliance.
- Company: Join a leading FTSE 250 company with a remote work culture.
- Benefits: Competitive salary, flexible working, and opportunities for professional growth.
- Other info: Be part of a dynamic team driving change and innovation.
- Why this job: Make a real impact by protecting the organisation from third-party risks.
- Qualifications: 5+ years in risk management or information security; relevant degree preferred.
The predicted salary is between 60000 - 75000 £ per year.
Hiring Third Party Risk Manager for a leading FTSE 250 company, position is Remote.
The Third-Party Risk Manager will be responsible for overseeing the company's third-party risk management program, with a primary focus on information security and compliance. Reporting to the Head of Third Party Risk, the successful candidate will collaborate with various stakeholders across the organization to identify, assess, and mitigate risks associated with third-party vendors, suppliers, and partners. This role requires a deep understanding of information security principles, regulatory requirements, and best practices in third-party risk management.
Key Responsibilities:
- Develop and implement a comprehensive third-party risk management framework aligned with industry standards, regulatory requirements, and organizational objectives.
- Conduct thorough risk assessments of third-party vendors and suppliers to evaluate their security posture, compliance with applicable regulations, and overall risk exposure.
- Establish and maintain effective relationships with third-party vendors, including conducting regular meetings and communications to discuss security requirements, performance expectations, and risk mitigation strategies.
- Collaborate with internal stakeholders, including legal, procurement, IT, and compliance teams, to ensure alignment and consistency in third-party risk management processes and procedures.
- Evaluate and monitor third-party contracts, service level agreements (SLAs), and other agreements to ensure compliance with security and privacy requirements, including data protection regulations (e.g., GDPR, CCPA).
- Develop and implement remediation plans to address identified risks and deficiencies in third-party relationships, working closely with vendors to implement corrective actions and improvements.
- Stay abreast of emerging threats, vulnerabilities, and regulatory changes impacting third-party risk management and information security, and proactively adjust risk management strategies and controls accordingly.
- Provide regular reporting and updates to senior management and stakeholders on the status of third-party risk management activities, including key risk indicators (KRIs), trends, and areas of concern.
- Participate in vendor due diligence activities, including assessing the security and compliance posture of prospective vendors and conducting on-site audits or assessments as needed.
- Serve as a subject matter expert on third-party risk management and information security, providing guidance and support to internal teams and stakeholders as needed.
Qualifications:
- Bachelor's degree in Information Security, Risk Management, Business Administration, or related field; relevant certifications (e.g., CISSP, CISM, CRISC) preferred.
- Proven experience (5+ years) working in third-party risk management, information security, or compliance roles, preferably in a regulated industry.
- Deep understanding of information security principles, standards, and best practices, including ISO 27001, NIST Cybersecurity Framework, and PCI DSS.
- Strong knowledge of regulatory requirements and frameworks related to third-party risk management and data protection, such as GDPR, CCPA, HIPAA, and SOC 2.
- Experience conducting risk assessments, vendor audits, and compliance reviews, with strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills, with the ability to effectively communicate complex technical concepts to non-technical stakeholders.
- Proven ability to work independently and collaboratively in a cross-functional team environment, managing multiple priorities and deadlines effectively.
- Demonstrated leadership skills and the ability to influence and drive change within the organization.
- High level of integrity, professionalism, and ethical conduct, with a commitment to upholding confidentiality and privacy principles.
Join our team and play a vital role in protecting our organization from third-party risks while maintaining the highest standards of information security and compliance. If you're a proactive and results-driven professional with a passion for risk management and security, we want to hear from you. Apply now to be part of our dynamic and innovative team.
Third party risk manager in London employer: Enfosec
Contact Detail:
Enfosec Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Third party risk manager in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry and let them know you're on the hunt for a Third Party Risk Manager role. You never know who might have a lead or can put in a good word for you.
✨Tip Number 2
Get your online presence sorted! Make sure your LinkedIn profile is up-to-date and showcases your skills in information security and risk management. Engage with relevant content and connect with professionals in the field to boost your visibility.
✨Tip Number 3
Prepare for interviews by brushing up on your knowledge of regulatory requirements and best practices in third-party risk management. Be ready to discuss how you've tackled risks in past roles and how you can bring that expertise to our team.
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in joining our dynamic team.
We think you need these skills to ace Third party risk manager in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Third Party Risk Manager role. Highlight your experience in information security and compliance, and don’t forget to mention any relevant certifications you have. We want to see how your skills align with what we’re looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about third-party risk management and how your background makes you a great fit for our team. Keep it engaging and personal – we love to see your personality come through!
Showcase Relevant Experience: When detailing your work experience, focus on roles where you've managed third-party risks or conducted risk assessments. Use specific examples to demonstrate your understanding of regulatory requirements and best practices. We’re keen to see how you’ve tackled challenges in the past!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us that you’re genuinely interested in joining our dynamic team at StudySmarter!
How to prepare for a job interview at Enfosec
✨Know Your Stuff
Make sure you brush up on your knowledge of information security principles and regulatory requirements. Familiarise yourself with frameworks like ISO 27001 and NIST Cybersecurity Framework, as well as data protection regulations like GDPR and CCPA. This will show that you're not just a candidate, but a knowledgeable expert in the field.
✨Showcase Your Experience
Prepare to discuss your previous experience in third-party risk management. Be ready to share specific examples of how you've conducted risk assessments or vendor audits. Highlight any challenges you faced and how you overcame them, as this demonstrates your problem-solving skills and ability to manage risks effectively.
✨Build Relationships
Since the role involves collaborating with various stakeholders, think about how you can demonstrate your interpersonal skills. Prepare examples of how you've successfully built relationships with vendors or internal teams in the past. This will help convey your ability to communicate complex concepts clearly and work collaboratively.
✨Stay Current
Keep yourself updated on emerging threats and vulnerabilities in the information security landscape. During the interview, mention any recent trends or changes in regulations that could impact third-party risk management. This shows that you're proactive and committed to staying ahead in the field.