Third Party Risk Manager – Internal role
Location – London – Hybrid
Salary - £55k - £70k
A leading professional services firm is seeking a
Third Party Risk Manager
to help shape and manage the way supplier and supply chain risks are identified, assessed, and mitigated across its operations.
This is a hands-on role with real influence — perfect for someone who wants to work across major engagements, collaborate with senior stakeholders, and help develop and enhance a robust third-party risk management framework.
Why join this team?
* Lead critical efforts in
third-party and supply chain cyber risk management
* Work in an environment where you have the
backing of the business
* Enjoy clear opportunities for
career growth and professional development
* Collaborate with legal, procurement, and leadership on
high-impact projects
* Gain exposure to
top-tier clients and complex business environments
Key Responsibilities:
* Lead and improve the
information security third-party risk framework
* Conduct risk assessments, gap analysis, and due diligence across the full supplier lifecycle – client and supplier.
* Collaborate with key stakeholders to ensure
security is embedded
in procurement, contracting, and offboarding processes
* Assess vendor compliance with standards like
ISO 27001, SOC 2, CE+, CIS, OWASP
* Classify and rank vendor risks; support
remediation planning
and tracking
* Maintain and report on
key risk metrics and assurance activities
* Support the continuous improvement of
vendor due diligence procedures
Ideal Candidate Profile:
* Strong experience in
third-party risk management
and
supplier due diligence
* Knowledge of
information security risk controls
across procurement and contract management
* Familiar with
security standards
such as ISO 27001, SOC 2, OWASP, CE+
* Skilled in
contract review
for security-specific requirements
* Confident communicator with
excellent stakeholder engagement
skills
* Holds or is working towards
certifications
like CISSP, CISM, or CRISC
If this is your next role, apply now, and we can schedule a call.