GRC Analyst - Third Party Risk ManagementFixed Term Contract, 12 months - 45k - 50k Location: Hybrid - BirminghamYour new company:I am looking to recruit a GRC Analyst, focusing on Third Party Risk Management, to join a leader in the hospitality space, with the role focusing on GRC activities, with a strong focus on information security, privacy, and regulatory assurance across the organisation.The role responsibilities:This role focusses on supplier assurance and third-party risk management, ensuring that vendors handling company data or connecting to company systems operate in line with security, privacy, and compliance expectations. Key parts of the role:Conducting and coordinating security and privacy risk assessments for new and existing third-party suppliers.Evaluating supplier controls relating to data protection, information security, data hosting, subcontractor usage, and system access.Cataloguing and maintaining records of data shared with third parties, including purpose of use, information security classification, data sensitivity, and processing location.Ensuring third party data handling arrangements clearly define data retention, archiving, and deletion requirements in line with policies and regulatory obligations.Maintaining third party risk documentation and tracking remediation actions with suppliers and internal teams.Working closely with Vendor Management, Procurement, Legal, Information Security, and IT to ensure supplier risks are identified early and ..... full job details .....