Third-Party Cyber Risk Manager (Contract)
Hybrid
6 months Minimum
Start date April
We are supporting a large UK enterprise organisation seeking a Third-Party Cyber Risk Manager to lead cyber assurance activities for suppliers and vendors.
This role focuses on assessing cyber risk during supplier onboarding and contract renewals, ensuring appropriate security controls are in place before access to systems or data is granted.
Key Responsibilities.
Conduct cyber risk assessments for new and existing third-party suppliers
Perform initial risk tiering based on services, data access, and system access
Review supplier security documentation (e.g., ISO 27001, SOC reports)
Liaise with suppliers and internal stakeholders to gather assurance evidence
Provide risk recommendations and track remediation actions
Ensure security requirements are embedded within supplier contracts
Work closely with procurement, privacy, legal, and business teams
Requirements.
Experience in third-party cyber risk management or supplier assurance
Strong understanding of cyber risk principles and security controls
Experience working in large or complex organisations
Strong stakeholder engagement skills
Ability to work independently in a hybrid environment
If you're looking to add a highly regarded company to your CV, whilst working on a new project - get in touch or APPLY NOW