Security Analyst

London, United KingdomPosted Jul 17, 2026

The team you'll be working with:

Position Title: Senior Security Analyst - Third-Party Security Assurance (TPSA) – P2/3

Location: United Kingdom/Remote

Employment Type: Full-Time, Permanent

Reporting To: Head of Information Security

We are seeking an experienced security and risk professional to join the Third-Party Security Assurance team. The successful candidate will be responsible for evaluating, monitoring, and managing security, privacy, operational, and compliance risks associated with third parties, suppliers, strategic partners, and acquired entities.

The role operates within a complex, multi-entity environment comprising Business Units, third-party suppliers, and M&A integrations, with responsibility for conducting security due diligence, reviewing assessments, evaluating supplier controls, and ensuring effective risk management across the third-party lifecycle.

It also serves as a key liaison across TPSA, Legal, Privacy, Compliance, Enterprise Risk, Internal Audit, and business stakeholders, driving consistent risk governance and regulatory compliance.

What you'll be doing:

 

* Collaborate with cross-functional teams including Legal, Procurement, Privacy, and Compliance

* Provide clear, risk-based insights to stakeholders and support decision-making

* Support audit, regulatory, and customer assurance requirements

* Leverage GRC platforms (e.g., OneTrust, BitSight, and internal SaaS solutions) to   manage TPSA activities

* Support month-end SLA reporting and develop dashboards using Power BI and SharePoint

* Contribute to governance forums and risk review meetings

* Ensure adherence to TPSA tiering models, standards, and processes

 

Continuous Monitoring & Risk Governance

* Maintain oversight of third-party risks throughout the vendor lifecycle.

* Perform periodic reassessments and continuous monitoring activities.

* Track remediation activities and risk treatment plans through closure.

* Maintain third-party risk registers, dashboards, and management reporting.

* Escalate material risks and control deficiencies to appropriate governance forums.

Stakeholder Management

* Partner with Procurement, Legal, Compliance, Privacy, Enterprise Risk, Internal Audit, and Technology teams.

* Provide risk-based recommendations to business stakeholders and decision-makers.

* Support customer assurance requests and regulatory inquiries where required.

* Participate in governance committees and risk review meetings.

Tools, Automation & Process Improvement

* Use Governance, Risk & Compliance (GRC) platforms and applications (for example OneTrust, Drata and Swiss GRC

* Support development of assessment methodologies, risk scoring models, and reporting frameworks.

What experience you'll bring:

* Minimum 3 years' experience  in Information Security, Cyber Risk Management, Third-Party Risk Management, Supplier Assurance, or GRC functions.

* Demonstrable experience working on third-party security risk programmes within medium to large enterprises.

* Experience supporting organisations operating across multiple jurisdictions, including the UK and European Union.

* Experience reviewing supplier security assessments, due diligence questionnaires, audit reports, and compliance evidence.

* Experience supporting security and risk activities related to mergers and acquisitions.

Key Competencies

- Solid hands-on experience in TPRM, security risk, or GRC

- Proven ability to independently deliver third-party assessments end-to-end

- Strong understanding of regulatory frameworks (GDPR, ISO 27001, IS0 42001 etc.)

- Regular interaction with stakeholders (but limited strategiec ownership)

Who we are:

At NTT DATA, you have endless opportunities to think big, act bold and take ownership. As a $30+ billion business and technology services, AI and digital infrastructure leader, we co-innovate solutions with clients and partners globally for business and societal impact. Serving 75% of the Fortune Global 100, with experts in over 70 countries, we encourage experimentation and recognize great work. Proudly a Global Top Employer, NTT DATA is part of NTT Group, which invests over $3 billion annually in R&D. Make this the place where you belong, learn, and build your network. Make this the place where you grow.

what we'll offer you:

We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.

You can find more information about NTT DATA UK & Ireland here: https://uk.nttdata.com/

We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.

Back to search Email to a friend Apply now

Want jobs like this matched to you?

Swoopd scores fresh postings against your résumé so you only see the matches that matter.

Get started free