Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Manage cyber security assurance for 80+ suppliers and assess their technical security controls.
- Company: Join Tesco Insurance and Money Services, a leader in the industry.
- Benefits: Fully remote role with competitive pay and potential for long-term engagement.
- Other info: Opportunity to work with cutting-edge technology and grow your career.
- Why this job: Make a real impact on cyber security in a dynamic and tech-focused environment.
- Qualifications: Experience in cyber security and knowledge of ISO 27001 standards required.
The predicted salary is between 60000 - 80000 £ per year.
Location: Fully Remote (UK-based)
Duration: 3 Months but likely to run until October 2026
About the Role
At Tesco Insurance and Money Services, we're looking for a technology focused Third Party Risk Manager to help us secure our third-party and supplier ecosystem. This is a hands-on cyber security assurance role, not focused on data protection or operational resilience. You'll assess and challenge the technical security controls of around 80 suppliers, including cloud providers, SaaS platforms, and managed service partners. You'll play a key role in ensuring suppliers meet our cyber security standards, ISO 27001 requirements, and broader technical security expectations.
What You'll Be Doing
- Own and manage cyber security assurance across ~80 third-party suppliers
- Carry out technical security assessments of cloud, SaaS, and infrastructure providers
- Review supplier controls including:
- Cloud security
- Identity & access management
- Network security
- Application security
Third Party Risk Manager in Bonnyrigg employer: Pontoon
Contact Detail:
Pontoon Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Third Party Risk Manager in Bonnyrigg
✨Tip Number 1
Network like a pro! Reach out to professionals in the cyber security field, especially those who work with third-party risk management. Use platforms like LinkedIn to connect and engage with them. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Prepare for interviews by brushing up on your technical knowledge. Since this role focuses on assessing security controls, make sure you can discuss cloud security, identity management, and application security confidently. We recommend doing mock interviews with friends or using online resources to practice.
✨Tip Number 3
Showcase your skills through real-world examples. When discussing your experience, highlight specific projects where you assessed supplier security or led audits. This will demonstrate your hands-on expertise and make you stand out to potential employers.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities that might just be perfect for you. Plus, applying directly shows your enthusiasm and commitment to joining our team at Tesco Insurance and Money Services.
We think you need these skills to ace Third Party Risk Manager in Bonnyrigg
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Third Party Risk Manager role. Highlight your experience with cyber security assurance and any relevant technical skills that align with the job description. We want to see how you can bring value to our team!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your background makes you a perfect fit for this role. Don’t forget to mention your experience with ISO 27001 and supplier assessments.
Showcase Relevant Experience: When filling out your application, be sure to showcase any hands-on experience you've had with assessing third-party suppliers or managing cyber security risks. We love seeing real-world examples of how you've tackled similar challenges!
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to keep track of your application status. Plus, we love seeing candidates who take the initiative to connect with us directly!
How to prepare for a job interview at Pontoon
✨Know Your Cyber Security Basics
Make sure you brush up on your knowledge of cyber security principles, especially those related to third-party risk management. Be prepared to discuss technical controls like cloud security and identity management, as these will likely come up during the interview.
✨Familiarise Yourself with ISO 27001
Since this role involves leading ISO 27001-aligned audits, it’s crucial to understand the standard inside out. Review its requirements and think about how you can apply them in assessing supplier security. This will show that you’re not just familiar with the framework but can also implement it effectively.
✨Prepare Real-World Examples
Think of specific instances where you've assessed or managed third-party risks. Be ready to share stories about how you identified security risks, conducted assessments, or worked with suppliers to improve their security posture. Concrete examples will help demonstrate your hands-on experience.
✨Ask Insightful Questions
Interviews are a two-way street, so prepare some thoughtful questions about the company's approach to third-party risk management. Inquire about their current challenges or how they measure the effectiveness of their security controls. This shows your genuine interest in the role and helps you gauge if it's the right fit for you.