Third Party Risk Manager

Third Party Risk Manager - Cyber (Supplier Assurance | Technical Focus)Location Fully Remote (UK-based)Duration - 3 months but likely to run until October 2026About the RoleAt Tesco Insurance and Money Services, we''re looking for a technology focused Third Party Risk Manager to help us secure our third-party and supplier ecosystem.This is a hands-on cyber security assurance role, not focused on data protection or operational resilience. You''ll assess and challenge the technical security controls of around 80 suppliers, including cloud providers, SaaS platforms, and managed service partners.You''ll play a key role in ensuring suppliers meet our cyber security standards, ISO 27001 requirements, and broader technical security expectations.What You''ll Be DoingOwn and manage cyber security assurance across -80 third-party suppliersCarry out technical security assessments of cloud, SaaS, and infrastructure providersReview supplier controls including:Cloud securityIdentity andamp; access managementNetwork securityApplication securityAssess supplier evidence such as penetration tests, SOC reports, and ISO 27001 auditsLead ISO 27001-aligned supplier audits with a focus on technical control effectivenessIdentify, track, and drive closure of supplier security risksWork closely with Cyber Security Engineering and Technology teamsProvide clear, risk-based reporting on supplier security postureWhat We''re Looking ForEssential ExperienceStrong background in cyber security, ..... full job details .....