×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Third Party Cyber Risk Lead

Job in Greater London, London, Greater London, W1B, England, UK
Listing for: Tokio Marine HCC
Full Time position
Listed on 2026-06-25
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Salary/Wage Range or Industry Benchmark: 70000 - 90000 GBP Yearly GBP 70000.00 90000.00 YEAR
Job Description & How to Apply Below
Location: Greater London

## Third Party Cyber Risk Lead Apply locations:
UK - London ( St Botolph )time type:
Full time posted on:
Posted Todayjob requisition :

*
* Job Title:

** Third Party Cyber Risk Lead
** Reporting to:
** Cyber Governance Manager
** Direct Reports:
** None
* * Position Type:
** Permanent
* * Why*
* ** Tokio Marine HCC?
** Standing still is not an option in the current world of Insurance. TMHCC is one of the world’s leading Specialty Insurers. With deep expertise in our chosen lines of business, our unparalleled track record and a solid balance sheet, TMHCC evaluates and manages risk like no one else in the industry. Looking beyond profit, empowering our people and delivering on our commitments are at the core of our customer values, along with a desire to grow and provide creative and innovative solutions to our clients.
** About Operations
** Operations sits at the heart of TMHCC, we ensure the smooth running of all business processes — from policy administration and claims handling to data, technology, and delivery. We focus on driving efficiency which enables our teams across the business to deliver exceptional results every day. Our value statement:
Ops makes it happen.
** Operations is made up of 7 functions, this role sits within: IT
** We are the foundation for TMHCC’s success - enabling the business to grow, compete, and innovate through technology, security, and solution design. From shaping strategy to delivering resilient operations, we ensure every capability is aligned to business value. Our inclusive and collaborative culture empowers everyone to explore ideas, solve meaningful challenges, and build fulfilling careers that make a real impact.
*
* Job Purpose:

** Reporting to the Cyber Governance Manager in the Business Information Security Office you will own and mature TMHCC International’s third-party cyber risk management processes, streamlining processes as the vendor landscape grows. You will partner with internal teams such as Procurement and Legal to prioritise risk, remediate issues and deliver clear management information on cyber risk across the third-party portfolio.
*
* Key Responsibilities:

*** Own, manage, and evolve the third-party security due diligence process for TMHCC International vendors, including onboarding and continuous monitoring.
* Establish and maintain a vendor criticality assessment process;
Ensure the appropriate vendor due diligence and monitoring activities take place in accordance with vendor criticality.
* Own and maintain ongoing due diligence requirements for critical and high-risk suppliers in line with regulatory expectations, including DORA, NIS2, PRA and FCA requirements etc.
* Build MI and dashboards to showcase security due diligence and third-party risk management efforts for senior IT stakeholders and executives.
* Collaborate with IT, Procurement, and Legal teams to embed third party security risk management controls into the overall vendor risk management process.
* Ensure compliance with relevant industry regulations and standards (e.g., DORA, NIS2, CIS Controls, NIST, GDPR).
* Provide security guidance on third party due diligence, contract reviews, and other ad-hoc vendor security risk management queries.
* Create and maintain vendor security risk management documentation (including process documentation) and training materials.
* Stay current on emerging vendor security trends, tools, and technologies.
* Support the Cyber Governance Manager by providing metrics to the Divisional IT Risk Reporting and Dashboards.
* Escalate significant cyber risks and issues as they emerge to the Cyber Governance Manager and BISO for action or information.
** Performance Objectives:
*** Develop a strong understanding on TMHCC’s third party landscape and current organisational controls used within the vendor risk management process and take on responsibility for cyber third-party risk management.
* Identify gaps and improvement areas within the cyber third-party risk processes, develop plans to further mature cyber security controls within this area, and own the implementation of these plans going forward.
** Skills and Experience Specification:
**** Essential:
*** Experience in…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search