Position: Business Analyst - Third Party Cyber SecurityLocation: London or Reading 2 days p/week; 3 days remoteType: Contract, Inside IR35, 6 MonthsRate: 540 p/day (umbrella rate) We are seeking a Business Analyst to support a major third-party cyber security transformation programme. This role focuses on improving how the organisation manages supplier and vendor cyber security risk, helping to deliver a consistent, organisation-wide approach across all business units.You will work with Procurement, Legal, Cyber Security, and Risk teams to define critical suppliers, design frameworks for assessing risk, and improve contractual and regulatory controls. Your work will contribute to stronger governance, better audit outcomes, and a sustainable, data-driven approach to third-party cyber risk.Key Responsibilities:Develop and implement frameworks to identify, classify, and assess critical suppliersSupport business units in applying the framework and consolidating outputs into a group-wide viewAnalyse contract language and support creation of standardised, risk-aligned clausesProvide business analysis expertise across additional third-party cyber initiativesSkills and Experience:Proven ability to gather and translate requirements into structured outputsExperience in risk, cyber, or procurement domains and designing frameworks/modelsStrong analytical mindset with excellent stakeholder engagement skillsFamiliarity with cyber security regulations (GDPR, NIS2, DORA) and third-party ..... full job details .....