Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Analyse third-party security risks and ensure compliance with M&S standards.
- Company: Join M&S, a dynamic and inclusive retail leader.
- Benefits: Enjoy discounts, competitive holidays, bonuses, and wellbeing support.
- Why this job: Make a real impact in cybersecurity while working with diverse teams.
- Qualifications: 2+ years in third-party security risk management and strong analytical skills.
- Other info: Flexible work environment with excellent training and career growth opportunities.
The predicted salary is between 36000 - 60000 £ per year.
We are seeking an experienced Third-Party Risk Management Analyst to ensure that our suppliers' security positions are in line with M&S standards and contractual terms. With oversight from the Third-Party Risk Management Leadership and Principal, you will be responsible for the analysis and assessment of third-party security risk assessments to identify potential security risks to M&S. You will also act as a nominated single point contact for suppliers and will be responsible for assessing/monitoring their security posture throughout the lifecycle of M&S contracts.
What you'll do:
- Deliver and/or support the delivery of third-party security risk assessments during the vendor selection and onboarding processes and as part of ongoing security monitoring.
- Analyse the output of third-party security risk assessments to identify potential or actual security risks that may impact M&S.
- Deliver and/or support the preparation of ongoing reporting of third-party security risk posture, updating KPIs and dashboards.
- Carry out or support regular reviews of standard contractual clauses from a cybersecurity perspective, collaborating with Legal, Data Protection & Privacy and Procurement teams.
- Support and actively contribute to the processes and systems of the third-party security risk management programme, helping to define and maintain standards and guardrails.
- Proactive interaction with third parties to obtain reporting and insight on key information security events, incidents and mitigation efforts.
Who you are:
- Must have demonstrable knowledge of Third-Party Security, supported by a general understanding of cybersecurity governance domains.
- Experience in delivering and analysing third-party security risk assessments to manage their security obligations in line with global organisational standards.
- At least 2 years' relevant security related experience, preferably across a range of sectors (e.g., Retail, Financial Services).
- Proven analytical and problem-solving skills.
- Time management and organisational skills to manage a variety of stakeholders and meet deadlines.
What's in it for you:
- Being a part of M&S is exactly that - playing your part to bring the magic of M&S to our customers every day.
- After completing your probationary period, you'll receive 20% colleague discount across all M&S products and many of our third-party brands for you and a member of your household.
- Competitive holiday entitlement with the potential to buy extra holiday days!
- Discretionary bonus schemes awarded based on how you achieve your personal objectives and our performance as a business.
- A generous Defined Contribution Pension Scheme and Life Assurance.
- A dedicated welcome to our teams with a tailored induction and a wide range of training programmes to develop your skills.
- Amazing perks and discounts via our M&S Choices portal to maximise your financial and personal wellbeing.
- Industry-leading parental, adoption and neonatal policies, providing support and flexibility for your family.
- Access to a fantastic range of wellbeing support for all colleagues including access to our 24/7 Virtual GP and PAM Assist to support you and your family.
- A charity volunteer day to support a charity or cause you're passionate about through a dedicated day away from work.
Everyone's welcome:
We're ambitious about the future of retail. We're innovating, disrupting, and leading the way into a more inspiring, digital era. It's an exciting time to be part of M&S. To support us on our journey, we're building inclusive, diverse teams where everyone can be themselves, do their best work, and make change happen. We support each other and succeed together. Don't worry if you don't meet every single requirement of the job description. It's more of a guide to what's possible within the role. If you're passionate, ready to work hard, and think the role feels right for you, we'd love to hear from you.
Tprm Analyst employer: MARKS&SPENCER
Contact Detail:
MARKS&SPENCER Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Tprm Analyst
✨Tip Number 1
Network like a pro! Reach out to people in the industry, attend events, and connect on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by researching M&S and understanding their values. Tailor your answers to show how your experience aligns with their mission. We want to see your passion for the role!
✨Tip Number 3
Practice makes perfect! Do mock interviews with friends or use online resources to get comfortable with common questions. The more you practice, the more confident you'll feel when it’s time to shine.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who take that extra step to engage with us directly.
We think you need these skills to ace Tprm Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experience mentioned in the job description. Highlight your knowledge of Third-Party Security and any relevant experience you have in delivering security risk assessments.
Craft a Compelling Cover Letter: Use your cover letter to tell us why you're passionate about this role. Share specific examples of how you've managed third-party security risks in the past and how you can contribute to M&S's goals.
Showcase Your Analytical Skills: Since the role requires strong analytical abilities, include examples of how you've successfully identified and mitigated security risks in previous positions. This will help us see your problem-solving skills in action.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at MARKS&SPENCER
✨Know Your Stuff
Make sure you brush up on your knowledge of Third-Party Security and cybersecurity governance. Familiarise yourself with M&S standards and contractual terms, as you'll need to demonstrate your understanding during the interview.
✨Showcase Your Experience
Prepare specific examples from your past roles where you've delivered or analysed third-party security risk assessments. Highlight how you managed security obligations and any challenges you overcame in different sectors like Retail or Financial Services.
✨Be Ready to Problem-Solve
Expect scenario-based questions that test your analytical and problem-solving skills. Think about potential security risks and how you would assess or mitigate them, showing your proactive approach to third-party interactions.
✨Engage with the Team Spirit
M&S values collaboration, so be prepared to discuss how you've worked with various stakeholders in the past. Emphasise your time management and organisational skills, and how you can contribute to building inclusive and diverse teams.
