Enable job alerts via email!
TPRM Analyst
Matchtech
Greater London
Hybrid
GBP 55,000 - 70,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading organisation in London seeks a TPRM Analyst to strengthen their third-party risk management program. The successful candidate will assess and monitor vendors' security posture, ensuring compliance with regulatory requirements. Responsibilities include conducting risk assessments, reviewing vendor documentation, and supporting onboarding of third-party vendors. Ideal candidates have experience in Third-Party Risk Management, familiarity with frameworks like NIST and ISO, and strong analytical skills.
Qualifications
- Experience in Third-Party Risk Management or Vendor Risk Assessment.
- Familiarity with frameworks such as NIST, ISO 27001, or SIG questionnaires.
- Strong analytical and problem-solving skills with attention to detail.
Responsibilities
- Conduct third-party risk assessments focusing on cybersecurity and compliance requirements.
- Review vendor security documentation and identify gaps.
- Collaborate with internal stakeholders to ensure risk mitigation plans are implemented.
Skills
Tools
Title: TPRM Analyst
Salary: £55,000 - £70,000 + Bonus
Location: London (3 days a week onsite, 2 days remote)
Unfortunately no sponsorship is available with this role.
I'm working on behalf of a leading organisation to recruit a TPRM Analyst who will play a key role in strengthening their third‑party risk management program. In this position, you'll assess and monitor the security posture of vendors and partners, ensuring compliance with the company's risk framework and regulatory requirements. You'll collaborate with Procurement, Legal, and InfoSec teams to identify, evaluate, and mitigate risks associated with third‑party relationships.
- Conduct third‑party risk assessments, focusing on cybersecurity and compliance requirements.
- Review vendor security documentation (e.g., SOC reports, ISO certifications) and identify gaps.
- Support onboarding and continuous monitoring of third‑party vendors.
- Maintain accurate risk records and provide reporting for governance forums.
- Collaborate with internal stakeholders to ensure risk mitigation plans are implemented.
- Experience in Third‑Party Risk Management or Vendor Risk Assessment.
- Familiarity with frameworks such as NIST, ISO 27001, or SIG questionnaires.
- Strong analytical and problem‑solving skills with attention to detail.
- Excellent communication skills to engage with technical and non‑technical stakeholders.
- Ability to manage multiple assessments and meet deadlines.
- Knowledge of regulatory requirements (GDPR, PCI DSS).
- Experience with TPRM tools or GRC platforms (e.g., Archer, ServiceNow, JIRA).
- Relevant certifications (e.g., CTPRP, CRISC, CISSP).
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
