×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Third Party Cyber Risk Specialist

Job in Leeds, West Yorkshire, ME17, England, UK
Listing for: Jet2.com Limited
Full Time position
Listed on 2026-03-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 GBP Yearly GBP 60000.00 80000.00 YEAR
Job Description & How to Apply Below
  • To safeguard critical business processes, including revenue and flight ops, from cyber-attack disruption.
  • To safeguard customer and colleague data from unauthorised access or disclosure.
  • To be the subject matter expert of Jet2’s third party ecosystem and manage the cyber risk accordingly.
  • To support the wider business as ‘One Team’ allowing business goals to be achieved.
  • To support and deputise for wider team as required.
  • To support cyber security incident management, particularly where third parties involved.
  • To provide other support expected of a senior security professional.
Key Responsibilities Third Party Cyber Risk
  • Provide a resilient third party risk management capability in accordance with best practices.
  • Be the point of contact for third party risk including supplier onboarding and renewals.
  • Support the supplier incident plan to increase visibility and knowledge to reduce possible impact.
  • Develop and coordinate the third party risk management framework, policies and processes.
  • Coordinate the identification and ranking of third party cyber security risks.
  • Develop, monitor and execute third party remediation actions, mitigation and contingency.
  • Track identified third party risks from identification to satisfactory attestation.
  • Provide and maintain third party registers, contract requirements, due diligence reviews, evidence and document libraries, and other artifacts expected.
  • Conduct regular audits and reviews of third parties and identify any gaps for improvement.
  • Support assurance that all third parties meet regulatory compliance.
  • Coordinate the gathering of third party risk assessment data using tooling.
  • Monitor, evaluate and continuously improve the third party cyber risk management capability.
  • Delegate work to IT Security Analysts or wider team as required.
  • Support the Head of Cyber Security on governance including strategy, policy, operating model, dashboards, KPIs, audits, maturity and continuous improvement.
General IT Security
  • Provide support to the wider IT Security Team, including in areas outside of core capabilities.
  • Provide other ‘helpdesk’ business support on third parties, as required by internal stakeholders.
  • Provide specialised third party focussed security guidance and influence stakeholders.
Person specification Experience and Education
  • Degree level or equivalent desirable, ideally in an analytical or IT field.
  • Experience of third party cyber security risk management.
  • Industry IT and business qualifications, including ITIL, risk management, ISOs, GDPR etc desirable.
  • Industry security qualifications, including CISSP, CISM, CISA, ISOs, PCI DSS etc desirable.
  • Knowledge of compliance and frameworks including Cyber Essentials, SOC2, NIS2 etc.
  • Business or leadership studies qualifications desirable but not essential.
Skills and Behaviours
  • Display the Jet2 ‘Take Me There’ values.
  • Present themselves as a brand ambassador, both for the business and for the IT Security Team.
  • Display excellent verbal and written communication skills.
  • Able to use soft skills for successful influence and collaboration, able to be assertive when required.
  • Able to provide a ‘path to yes’, using data for transparent third party risk management decisions.
  • Demonstrates a strong understanding of complex third party cyber risk-related issues.
  • Demonstrates ability to manage and influence both internal and external third party stakeholders.
  • Able and willing to develop own skills in IT, security, business acumen or leadership.
  • Able to stay current with latest regulatory, IT, security and third party developments.
  • Is a change agent, able to leverage tooling, able to work in new efficient ways and continuously improve.
  • Able to work in a fast-paced complex environment, working to deadlines while under pressure.
Other supporting information Job Context
  • Airlines are required to operate with many third parties creating a complex supply chain.
  • Third parties also include business 2 business organisations and partners with API or system access.
  • The holder of this role is to build up considerable knowledge of Jet2, its critical suppliers and other third parties.
#J-18808-Ljbffr
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search