Cyber Third Party Risk Management (TPRM) Senior Practitioner

Apply now »

Posting Start Date: 25 Nov 2025

Location: Flexible, GB

Company: Serco Plc

Cyber Third Party Risk Management (TPRM) Senior Practitioner
Hybrid – Flexible Base Location with UK Travel

Full Time, Permanent   
Band 4 / Up to £70,000 (dependent on experience)  

 

Join Serco’s Growing Cyber Security Function

The cyber threat landscape is evolving at pace - and Serco is investing heavily to stay ahead. With increasing reliance on diverse and fast-moving supply chains, our exposure to cyber risk is elevated. As we partner rapidly with a broad range of suppliers, the need for robust, intelligent Third Party Cyber Risk Management has never been greater.

 

To meet this challenge, we are establishing two Cyber TPRM Senior Practitioner roles - brand-new positions that will play a vital part in strengthening Serco’s cyber assurance capability. These hires signal our commitment to protecting our customers, our data, and our reputation in a time of heightened threat.

 

If you’re a seasoned cyber assurance professional looking to make an impact in an organisation where cyber is a genuine strategic priority, this is the right move.

 

The Purpose of the Role

Effective cyber security is critical to Serco’s continued success. A significant breach could lead to contractual penalties, financial loss and reputational damage - yet strong, risk-based controls can also create competitive advantage.

 

Much of Serco’s cyber risk lives within our supply chain. As more services are outsourced and cloud-sourced, the need for strong, scalable cyber assurance grows. These roles sit at the heart of our Cyber Third Party Risk Management (TPRM) service, ensuring Serco applies a risk-based approach to both initial and ongoing assurance of suppliers.

 

You will help us quickly build confidence in new partners, ask the right questions, translate technical evidence into business-focused advice, and protect the organisation from cyber threat.

 

As part of this you’ll:

  • Take an active role in developing and continuously improving the Cyber TPRM function
  • Lead cyber inherent risk triage discussions with business and technical stakeholders
  • Review and assess supplier cyber assurance responses and evidence
  • Conduct on-site supplier cyber compliance and physical security reviews
  • Advise on cyber requirements and contract terms
  • Provide risk-informed, business-focused advice to internal stakeholders
  • Liaise with suppliers to agree and prioritise remedial action
  • Produce succinct, accurate assessment reports, risk summaries and documentation
  • Track and report on Cyber Critical Supplier risk status
  • Contribute to the maintenance and development of supplier-facing Cyber policies
  • Represent the TPRM function internally and externally
  • Build strong working relationships across Serco’s functional teams

 

What you’ll need to do the role:

  • 10+ years of experience in Cyber Security / Information Security / Information Assurance, including at least 3 years at senior practitioner level
  • Demonstrated experience conducting supplier assurance and cyber risk management
  • One or more professional security qualifications such as: CISSP / CISM, Cloud Security Practitioner or ISO 27001 Lead Implementer / Auditor
  • Strong working knowledge of DPA/GDPR and common frameworks (ISO 27001, Cyber Essentials, CIS Critical Controls, NIST CSF, SOC 2)
  • Excellent interpersonal and communication skills, with the ability to engage confidently with both technical and non-technical stakeholders at all levels
  • Experience conducting on-site cyber and physical security assessments (highly advantageous)
  • Ability to achieve BPSS clearance

 

Why Serco:

Meaningful and vital work: In this position, your work is vital to the business, in terms of decisions and growth. You will gain a world of opportunity working for a globally operating business delivering essential services across 5 vital sectors, personal growth, achievement and development won’t be hard to find. You'll also work with great people. You’ll find yourself working in a highly motivated, supportive environment where no two days are the same, with experienced colleagues who strive for excellence.

 

What we offer:

  • 25 days annual leave plus bank holidays
  • Annual leave purchase scheme
  • Up to 6% contributory pension scheme
  • Flexible working options
  • Serco discounts which include cinema, merlin entertainment and online shopping discounts, and discounts on mobile phone plans and leisure centre memberships
  • A range of benefits to support the health and wellbeing of you and your family such as Employee Assistance Programme, Simply Health Cash Plans, and more
  • A wealth of career development training to suit your future aspirations. These range from role specific training, leadership coaching, formal study and much more to support you to build your career with Serco
  • A safe and supportive culture
  • A company passionate about diversity and inclusion

 

About Serco
At Serco, not only is the nature of the work we do important, everyone has an important role to play, from caring for vulnerable people to managing complex public services.  We are a team of 50,000 people responsible for delivering essential public services around the world in areas including defence, transport, justice, immigration, healthcare and citizen services. We are innovators, committed to redesigning and improving public services for the benefit of everyone.


By joining Serco you will have unlimited access to our Global Employee Networks – SercoInspire (Gender), SercoEmbrace (Multicultural), SercoUnlimited (Disability) and In@Serco (LGBT & Networks). Serco Employee Networks, led by colleagues who are passionate about diversity, inclusion and belonging. 


Apply
Please click on the apply button to complete your application. Occasionally we receive a large volume of applications for our roles and when that happens we sometimes bring the closing date forward, so please apply promptly to avoid disappointment. 


At Serco, we see people first and foremost for their performance and potential. We are committed to building a diverse and inclusive organisation that supports the needs of all. As such we will make reasonable adjustments at interview through to employment for our candidates and strongly encourage applications from a diverse candidate pool. We are open to discussions around flexibility and flexible working. We operate a hybrid work structure in many of our business areas. We are proudly Disability Confident Leader employers and holder of the Gold Inclusive Employer Standard. Disabled applicants who meet the minimum criteria for the job will be given the opportunity to demonstrate their abilities at an interview.  For help with your application please contact 0345 010 4000.
 

At Serco we support fair access to employment for those with unspent criminal convictions through the ‘Ban the Box’ pledge (some may be exempt due to the nature of the role and the security clearance required). Please contact our recruitment team directly on 0345 010 4000 to discuss.