3rd Party Risk Analyst

This role is based in the London office.The 3rd Party Risk Analyst role is part of Group Information Security team within the Informa Global Support division of Informa Plc.The 3rd Party Risk Analyst role will be responsible for performing Information Security (InfoSec) vendor assessments across the Group and monitoring internal control effectiveness.This important role will be supporting with process maintenance and continuous improvement managing 3rd Party Risk liaising with vendors and business stakeholders to ensure vendor security risk management is done so effectively.Key Areas of Responsibility/AccountabilityMaintain and measure the information security posture of 3rd Party vendors to reduce risk to Informa and ensure our organisation remains compliant with relevant legislation and security policy.Perform vendor security assessments in line with security best practice and the Informa InfoSec Management framework and policies.Liaise with business stakeholders to advise them on the status of vendor security risk.Report on the status and risk profile of assessed and unassessed vendors to the InfoSec team and the risk committee as needed.Work with Legal and Procurement to ensure 3rd party risks are managed end to end.Support the current 3rd Party Risk Analyst with their 3rd party security risk assessmentsSuggest and drive improvements to the effectiveness and efficiency of the 3rd party security risk processContribute to the overall Information Security programme of improvements across the Group.Qualifications :  Experience in managing 3rd Party vendors security assessments.Excellent stakeholder management and engagement skills; experience of negotiating and managing internal and external stakeholders and third parties.The ability to translate technical security issues to business riskAble to suggest pragmatic technical and organisational controls to manage identified risks Comfortable explaining complex problems in a simple clear and concise manner to the various parts of the group.Excellent written and verbal communication and presentation skills.Effective and creative problem-solving skills.Proven track record of operating in time critical diverse creative and corporate Environments.Experience of working with multiple stakeholders and able to adjust approach where necessaryUnderstanding of (InfoSec) risk management conceptsUnderstanding of the guiding principles behind ISO27001 and related standards.Ability and confidence to prioritise and balance conflicting and diverse demands from technical and business perspectives.Experience in working with Governance Risk Compliance (GRC) tools especially tools used for 3rd party risk assessments / managementCISA/CRISC desired but not essential.Additional Information : We believe that great things happen when people connect face-to-face. Thats why we work in-person with each other or with customers and partners three days a week or more. When youre not spending time together in one of our offices or other workplaces like at an Informa event you get the flexibility and support to work from home or remotely.We work hard to make sure Life at Informa is rewarding supportive and enjoyable for everyone. Heres some of what you can expect when you join us. But dont just take our word for it see what our colleagues have to say at Our benefits include:Great community: a welcoming culture with in-person and online social events our fantastic Walk the World charity day and active diversity and inclusion networksBroader impact: take up to four days per year to volunteer with charity match funding available tooCareer opportunity: the opportunity to develop your career with bespoke training and learning mentoring platforms and on-demand access to thousands of courses on LinkedIn Learning. When its time for the next step we encourage and support internal job movesTime out: 25 days annual leave rising to 27 days after two years plus a birthday leave day and the chance to work from (almost) anywhere for up to four weeks a yearA flexible range of personal benefits to choose from plus company funded private medical coverA ShareMatch scheme that allows you to become an Informa shareholder with free matching sharesStrong wellbeing support through EAP assistance mental health first aiders a healthy living subsidy access to health apps and moreRecognition for great work with global awards and kudos programmesAs an international company the chance to collaborate with teams around the world Were not solely focused on a checklist of skills. We champion energy and ambition and look for colleagues who will roll their sleeves up join in and help make things happen. If it sounds like a match and you have most although not all of the skills and experience listed we welcome your application.If you would like to request reasonable adjustments or accommodations to assist your participation in the hiring process and or in the advertised position please inform the appropriate Talent Acquisition Partner for the role once they have been in touch. Your request will be reviewed and considered in confidence. At Informa youll find inclusive experiences and environments where all perspectives and backgrounds are welcomed. As part of this approach and our diversity and inclusion commitments we are also formally an Equal Opportunities Employer. This means we base decisions on relevant qualifications and merit and do not discriminate on the basis of key characteristics and statuses including all of those protected by law. Ask us or see our website for full information.See how Informa handles your personal data when you apply for a job here.Remote Work : NoEmployment Type : Full-time Key Skills ISO 27001,Microsoft Access,Risk Management,Financial Services,PCI,Risk Analysis,Analysis Skills,COBIT,NIST Standards,SOX,Information Security,Data Analysis Skills Experience: years Vacancy: 1