Information Security Officer

Ready to help strengthen global third-party risk management and customer assurance across an expanding global business.

As an Information Security Officer – Third Party Risk Management, you’ll be part of a team dedicated to delivering Governance, Risk and Compliance services that help the business manage information and cyber security risks. Working closely with the Global GRC Information Security Manager, you’ll play a key role in improving how we assess, manage and communicate third-party and customer-related security risks across our global organisation.

You’ll bring broad experience in third-party risk, compliance and assurance, spanning technology, people, processes and suppliers in both retail and online environments. You’ll collaborate with colleagues across the business, offering clear, practical guidance and taking a hands‑on approach when needed. You’ll be part of a supportive global team while confidently taking ownership of your workload, setting priorities and keeping everything running smoothly.

You’ll deliver Third Party Risk Management and Customer Assurance services globally, managing supplier assessments, reporting risks and working with stakeholders to ensure issues are understood and acted on. You’ll help develop threat‑intelligence‑led and automated approaches to TPRM, maintain and enhance our assessment platform, and support wider cyber risk management activities. You’ll also contribute to policies, s...