1. Play a key role in managing supplier security risks with national regulations.
2. Hybrid role (1 - 3 days onsite) with competitive salary and benefits
About Our Client
A major UK-based technology and infrastructure provider offering connectivity, cloud, and security services. The organisation operates across several UK and international sites.
Job Description
3. Conduct and maintain supplier security risk assessments and due diligence activities.
4. Review and report on supplier security declarations in line with national telecom regulations.
5. Provide strategic advice on managing supplier-related risks and compliance gaps.
6. Govern relationships with critical suppliers to ensure alignment with security expectations.
7. Support internal and external audits (e.g. ISO27001, TSA, financial audits).
8. Communicate risks clearly to non-technical stakeholders to support informed decision-making.
9. Monitor and interpret emerging compliance standards and apply them to supplier oversight.
The Successful Applicant
10. Extensive experience in security risk management, particularly in third-party and supplier contexts.
11. Strong understanding of frameworks such as ISO27001, ISO27005, SOC2, and NIST.
12. Holds certifications such as CISSP, CISM, or CRISC.
13. Telecoms sector experience is a plus.
14. Skilled in stakeholder engagement and translating technical risks into business language.
What's on Offer
15. Discretionary bonus
16. Private Medical Insurance
17. Max. 6% pension contributed from employer
18. 25 days AL plus birthday leave
19. Hybrid working - 1 - 3 days in Manchester office