3rd Party Risk Analyst

This role is based in the London office.

The 3rd Party Risk Analyst role is part of Group Information Security team within the Informa Global Support division of Informa Plc.

The 3rd Party Risk Analyst role will be responsible for performing Information Security (InfoSec) vendor assessments across the Group and monitoring internal control effectiveness.

This important role will be supporting with process maintenance and continuous improvement, managing 3rd Party Risk, liaising with vendors and business stakeholders to ensure vendor security risk management is done so effectively.

• Maintain and measure the information security posture of 3rd Party vendors to reduce risk to Informa and ensure our organisation remains compliant with relevant legislation and security policy.
• Perform vendor security assessments in line with security best practice and the Informa InfoSec Management framework and policies.
• Liaise with business stakeholders to advise them on the status of vendor security risk.
• Report on the status and risk profile of assessed and unassessed vendors to the InfoSec team and the risk committee as needed.
• Work with Legal and Procurement to ensure 3rd party risks are managed end to end.
• Support the current 3rd Party Risk Analyst with their 3rd party security risk assessments
• Suggest and drive improvements to the effectiveness and efficiency of the 3rd party security risk process
• Contribute to the overall Information Security programme of improvements across the Group.

• Experience in managing 3rd Party vendors security assessments.
• Excellent stakeholder management and engagement skills; experience of negotiating and managing internal and external stakeholders and third parties.
• The ability to 'translate' technical security issues to business risk
• Able to suggest pragmatic technical and organisational controls to manage identified risks
• Comfortable explaining complex problems in a simple, clear and concise manner to the various parts of the group.
• Excellent written and verbal communication and presentation skills.
• Effective and creative problem-solving skills.
• Proven track record of operating in time critical, diverse, creative and corporate Environments.
• Experience of working with multiple stakeholders and able to adjust approach where necessary
• Understanding of (InfoSec) risk management concepts
• Understanding of the guiding principles behind ISO27001 and related standards.
• Ability and confidence to prioritise and balance conflicting and diverse demands from technical and business perspectives.
• Experience in working with Governance Risk Compliance (GRC) tools, especially tools used for 3rd party risk assessments / management
• CISA/CRISC desired but not essential.

We believe that great things happen when people connect face-to-face. That's why we work in-person with each other, or with customers and partners, three days a week or more. When you're not spending time together in one of our offices or other workplaces - like at an Informa event - you get the flexibility and support to work from home or remotely.

We work hard to make sure Life at Informa is rewarding, supportive and enjoyable for everyone. Here's some of what you can expect when you join us. But don't just take our word for it - see what our colleagues have to say at LifeAt.Informa.com

Our benefits include:

• Great community: a welcoming culture with in-person and online social events, our fantastic Walk the World charity day and active diversity and inclusion networks
• Broader impact: take up to four days per year to volunteer, with charity match funding available too
• Career opportunity: the opportunity to develop your career with bespoke training and learning, mentoring platforms and on-demand access to thousands of courses on LinkedIn Learning. When it's time for the next step, we encourage and support internal job moves
• Time out: 25 days annual leave, rising to 27 days after two years, plus a birthday leave day and the chance to work from (almost!) anywhere for up to four weeks a year
• A flexible range of personal benefits to choose from, plus company funded private medical cover
• A ShareMatch scheme that allows you to become an Informa shareholder with free matching shares
• Strong wellbeing support through EAP assistance, mental health first aiders, a healthy living subsidy, access to health apps and more
• Recognition for great work, with global awards and kudos programmes
• As an international company, the chance to collaborate with teams around the world

We're not solely focused on a checklist of skills. We champion energy and ambition and look for colleagues who will roll their sleeves up, join in and help make things happen. If it sounds like a match and you have most - although not all - of the skills and experience listed, we welcome your application.

If you would like to request reasonable adjustments or accommodations to assist your participation in the hiring process and, or in the advertised position, please inform the appropriate Talent Acquisition Partner for the role once they have been in touch. Your request will be reviewed and considered in confidence. At Informa, you'll find inclusive experiences and environments where all perspectives and backgrounds are welcomed. As part of this approach and our diversity and inclusion commitments, we are also formally an Equal Opportunities Employer. This means we base decisions on relevant qualifications and merit and do not discriminate on the basis of key characteristics and statuses, including all of those protected by law. Ask us or see our website for full information.

See how Informa handles your personal data when you apply for a job here.