Tech Our Way

Primark Technology is about to embark on a transformation journey to support business strategy which includes modernising our operating model as well as technology architecture. This role is key in building and improving Primark’s Cyber Security Posture.

Duties & Responsibilities

Act as the subject matter expert for supplier on-boarding activities and security assurance reviews of third parties and suppliers to manage the associated security risks.

Build and maintain relationships with stakeholders such as Legal, Procurement and suppliers to ensure that they are assessed, on-boarded, monitored and off-boarded in line with policy

Increase the maturity of Primark’s third-party supplier governance process leveraging GRC platform to automate key processes and speed up decision making.

Implement a standardised approach to measuring compliance against Security Policies and Standards, Financial control framework and Industry Standards

Support ISO in embedding Policies and Standards with vendors and internal teams.

Support the Risk Management process by ensuring all gaps in Policy and Security capability are fully documented in line with the risk acceptance process

Work on addressing Policy gaps by advising the business of the appropriate technologies and supporting processes required.

Monitor ongoing compliance of third parties and suppliers in line with policy and risk profile.

Lead the oversight of all supporting activities, including reporting, flagging risks and issue remediation.

Skills & Experience

8+ years experience of providing third party security assurance within a global organisation and detailed knowledge of Information Security Risk Management best practice and controls

An appropriate degree, equivalent qualification or experience

A recognised security certification is desirable e.g. CISM, CISA, CISSP or CRISC

Successful candidates will:

Be a passionate professional able to inspire others to challenge and disrupt the current reality to co-create a compelling technology/cyber security orientated future business by embracing new ways of working and successfully executing new opportunities

An understanding and background partnering closely with stakeholders such as Legal, Procurement, Security compliance and privacy teams

Significant experience of providing security supplier assurance in a complex global organisation

Excellent stakeholder management, communication and influencing skills.

Thorough understanding of supplier governance, understanding of security management processes, practices and technical countermeasures.

Ability to analyse complex information and identify key and relevant points, including communicating in a relevant and easy to understand manner.

Why work with us?

At Primark, we know how hard everyone works to achieve our business goals. Having a competitive salary and annual bonus scheme is our way of acknowledging this. We'll also provide you with a progressive career path, because clear advancement is what we’re all about at Primark

Our flexible working benefit, Your Day Your Way, means you get to choose when to start and finish your workday. Choose to work remotely if you like, in a way that suits you but also helps us get the most out of your talents.

There’s a lively culture here, and it’s easy to get to know each other in a truly warm atmosphere.