Title: Third-Party Risk Analyst
Location: UK
Type: Full-time/ perm
*applicants must be able to obtain SC (minimum requirement is 5 years living in the UK)
Our client is one of the leading players in the energy industry, priding themselves on their commitment to innovation, sustainability, and safety.
We are currently recruiting for a Third-Party Risk Analyst who has extensive experience implementing end-to-end supply chain risk management frameworks, policies and processes.
Job Summary:
* Implement an end-to-end supply chain/ third-party risk management framework, policies, and processes.
* Cultivate and maintain supplier relationships, understanding their importance within various organisational functions.
* Navigate interdependencies between supply chain security, legal, compliance, risk, procurement, and finance teams.
* Demonstrate proficiency in supply chain security regulations and legislation, especially within the energy/utilities sector.
* Utilise the Prevalent Platform for supply chain tooling.
* Conduct thorough security assessments to identify threats, vulnerabilities, and gaps in supplier ecosystems.
* Manage incident response plans and actively participate in incident resolution processes.
* Ensure suppliers adhere to security requirements and industry regulations through continuous monitoring.
* Develop and deliver training programs to enhance supply chain security awareness for both internal stakeholders and suppliers.
* Generate comprehensive reports on supply chain risk assessments and maintain accurate documentation.
* Proactively identify opportunities for process and policy enhancements in supply chain security management.
Qualifications/ Experience:
* At least 4 years' experience in SCRM.
* In-depth knowledge of Cybersecurity, security frameworks, Risk Management, and relevant regulations, with a minimum of 4 years' experience in supply chain security.
* Ability to translate complex supply chain challenges into practical business solutions.
* Proficiency in cybersecurity frameworks such as NIST, CAF, ISO27001.
* CISSP certification or equivalent combination of education, training, and experience.
* Exposure to cross-industry sectors and importing best practices.
* Experience with Prevalent Platform & BitSight preferred.
This role seeks a seasoned professional adept at effectively managing supply chain security risks, ideally within a CNI or OT environment. If you have the above experience and are interested in finding out more, please apply today.