Information Security Analyst - Third-Party Risk Management

Role Description:

The Information Security Analyst – TPRM (1LoD) supports the business in identifying, assessing, and mitigating third-party risks, specifically related to information security and operational resilience. The role operates within the first line of defense, ensuring vendor risks are assessed early in the engagement process, particularly during the Service Impact Appraisal (SIA) and due diligence stages. This role partners with 2LoD, InfoSec, Legal, and Procurement teams to drive compliance and risk-informed decisions.

Key Responsibilities:

• Complete Service Impact Appraisals (SIAs) to assess vendor service scope and criticality.
• Assist in risk tiering based on inherent risk factors such as data access and service dependency.
• Review and interpret third-party documentation (e.g., ISO certifications, SOC reports).
• Support the validation of security and privacy controls with relevant SMEs
• Document and monitor remediation plans and track risk exceptions.
• Maintain accurate TPRM records and contribute to continuous improvement of onboarding workflows.
• Raise material risks to appropriate business units or escalate to 2LoD.
• Support periodic reviews of critical and high-risk third-party services.

Required Skills & Experience:

• 2+ years’ experience in information security, risk, or third-party governance
• Understanding of information security frameworks (e.g., ISO 27001, NIST, SOC 2).
• Ability to review technical documentation and identify potential control gaps
• Strong analytical and communication skills with attention to detail.
• Ability to work with cross-functional teams (Legal, InfoSec, Procurement)
• Familiarity with third-party risk management platforms (e.g., OneTrust, Audit board) advantageous.

Key Interfaces:

·       Vendor requesters

·       Group TPRM (2LoD)

·       Information Security and Privacy SMEs

·       Legal and Procurement teams

·       Risk and Compliance functions

About FNZ Culture

Our culture is what drives us. It's at the heart of who we are and everything we do. It's what inspires, excites and moves us forward. Our ambition is to create a culture for growth, one that opens up limitless opportunities for our employees, customers and the wider world. At FNZ we know that great impact is only possible with great teamwork.

That’s why we value the strength and diversity of thought in our global team.

The FNZ Way is the cornerstone of what we do. It is comprised of four values that set the standard for how everyone at FNZ interacts with each other, with our customers, and with all our diverse stakeholders around the world.

• Customer obsessed for the long-term

• Think big and make an impact.

• Act now and own it all the way.

• Challenge, commit and win together.

Read more about The FNZ Way and our values: www.fnz.com/culture

Opportunities

• Right from day one, you will work alongside exceptional, multicultural teams - experts in their respective fields - who will inspire and challenge you to make your greatest impact.

• Be part of a highly successful, rapidly growing, global business that is leading the delivery of financial services via cloud computing and partners with some of the world’s largest companies;

• Working in a flexible and agile way that meets the needs of the business and personal circumstances;

• Remuneration, significant financial rewards and career advancement is based on individual contribution and business impact rather than tenure or seniority;

• We provide global career opportunities for our best employees at any of our offices in the UK, EU, US, Canada, South Africa and APAC.

About FNZ

FNZ is committed to opening up wealth so that everyone, everywhere can invest in their future on their terms. We know the foundation to do that already exists in the wealth management industry, but complexity holds firms back. 

We created wealth’s growth platform to help. We provide a global, end-to-end wealth management platform that integrates modern technology with business and investment operations. All in a regulated financial institution. 

We partner with over 650 financial institutions and 12,000 wealth managers, with US$1.7 trillion in assets under administration (AUA).

Together with our customers, we help over 26 million people from all wealth segments to invest in their future.