Enable job alerts via email!
TPRM Analyst
Trades Workforce Solutions
Greater London
Hybrid
GBP 55,000 - 70,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading organisation in London is seeking a TPRM Analyst to strengthen their third-party risk management program. This role involves assessing and monitoring the security posture of vendors, ensuring compliance with risk frameworks. Responsibilities include conducting risk assessments, reviewing vendor security documentation, and collaborating with various teams for effective risk mitigation. Ideal candidates should have experience in third-party risk management and excellent communication skills. The position offers a hybrid work model with 3 days onsite and 2 days remote.
Qualifications
- Experience in Third‑Party Risk Management or Vendor Risk Assessment.
- Familiarity with NIST, ISO 27001, or SIG questionnaires.
- Strong analytical and problem‑solving skills with attention to detail.
Responsibilities
- Conduct third-party risk assessments focusing on cybersecurity and compliance requirements.
- Review vendor security documentation and identify gaps.
- Support onboarding and continuous monitoring of third‑party vendors.
- Maintain accurate risk records and provide reporting for governance forums.
Skills
Tools
Title: TPRM Analyst
Salary: £55,000 - £70,000 + Bonus
Location: London (3 days a week onsite, 2 days remote)
Unfortunately no sponsorship is available with this role.
I’m working on behalf of a leading organisation to recruit a TPRM Analyst who will play a key role in strengthening their third‑party risk management program. In this position, you’ll assess and monitor the security posture of vendors and partners, ensuring compliance with the company’s risk framework and regulatory requirements. You’ll collaborate with Procurement, Legal, and InfoSec teams to identify, evaluate, and mitigate risks associated with third‑party relationships.
- Conduct third-party risk assessments, focusing on cybersecurity and compliance requirements.
- Review vendor security documentation (e.g., SOC reports, ISO certifications) and identify gaps.
- Support onboarding and continuous monitoring of third‑party vendors.
- Maintain accurate risk records and provide reporting for governance forums.
- Collaborate with internal stakeholders to ensure risk mitigation plans are implemented.
- Experience in Third‑Party Risk Management or Vendor Risk Assessment.
- Familiarity with frameworks such as NIST, ISO 27001, or SIG questionnaires.
- Strong analytical and problem‑solving skills with attention to detail.
- Excellent communication skills to engage with technical and non‑technical stakeholders.
- Ability to manage multiple assessments and meet deadlines.
- Knowledge of regulatory requirements (GDPR, PCI DSS).
- Experience with TPRM tools or GRC platforms (e.g., Archer, ServiceNow, JIRA).
- Relevant certifications (e.g., CTPRP, CRISC, CISSP).
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
