Third-Party Cyber Risk Manager (Contract)

Hybrid

6 months Minimum

Start date April

We are supporting a large UK enterprise organisation seeking a Third-Party Cyber Risk Manager to lead cyber assurance activities for suppliers and vendors.

This role focuses on assessing cyber risk during supplier onboarding and contract renewals, ensuring appropriate security controls are in place before access to systems or data is granted.

Key Responsibilities.

• Conduct cyber risk assessments for new and existing third-party suppliers
• Perform initial risk tiering based on services, data access, and system access
• Review supplier security documentation (e.g., ISO 27001, SOC reports)
• Liaise with suppliers and internal stakeholders to gather assurance evidence
• Provide risk recommendations and track remediation actions
• Ensure security requirements are embedded within supplier contracts
• Work closely with procurement, privacy, legal, and business teams

Requirements.

• Experience in third-party cyber risk management or supplier assurance
• Strong understanding of cyber risk principles and security controls
• Experience working in large or complex organisations
• Strong stakeholder engagement skills
• Ability to work independently in a hybrid environment

If you''re looking to add a highly regarded company to your CV, whilst working on a new project - get in touch or APPLY NOW!