Information Security 3rd Party Risk Manager (FTC)

• Play a key role in managing supplier security risks with national regulations.
• Hybrid role (1 - 3 days onsite) with competitive salary and benefits

About Our Client

A major UK-based technology and infrastructure provider offering connectivity, cloud, and security services. The organisation operates across several UK and international sites.

Job Description

• Conduct and maintain supplier security risk assessments and due diligence activities.
• Review and report on supplier security declarations in line with national telecom regulations.
• Provide strategic advice on managing supplier related risks and compliance gaps.
• Govern relationships with critical suppliers to ensure alignment with security expectations.
• Support internal and external audits (e.g. ISO27001, TSA, financial audits).
• Communicate risks clearly to non-technical stakeholders to support informed decision-making.
• Monitor and interpret emerging compliance standards and apply them to supplier oversight.

The Successful Applicant

• Extensive experience in security risk management, particularly in third party and supplier contexts.
• Strong understanding of frameworks such as ISO27001, ISO27005, SOC2, and NIST.
• Holds certifications such as CISSP, CISM, or CRISC.
• Telecoms sector experience is a plus.
• Skilled in stakeholder engagement and translating technical risks into business language.

What's on Offer

• Discretionary bonus
• Private Medical Insurance
• Max. 6% pension contributed from employer
• 25 days AL plus birthday leave
• Hybrid working - 1 - 3 days in Manchester office