Senior Manager, Third Party Assurance (Security) - Law Firm

Skills

Job Specifications

Job Responsibilities

This role sits in the Information Security leadership team and reports to the CISO. The role is critical for maintaining its ISO27001 certification by embedding the Supplier Assurance Security Model and providing reassurance and excellent service to our clients in due diligence processes. The role will also manage a small team, and will be expected to build a best-in-class team with strong capability.
Producing, embedding and championing the Supplier Assurance Security Model.
Producing management information for the CISO, including trends, process gaps, and recommendations for improvement.
Managing client requests in a timely and professional manner.
Leading Supplier Assurance governance forums.
Tailoring and managing the Third-Party Security Schedule (including supplier negotiations).
Negotiating security clauses in contracts for robustness.
Providing evidence for audits and ISO 27001 certification from a Supplier Assurance perspective.

Skills Required

Solid experience a leader in Information Security Supplier Assurance.
Previous experience from medium to large legal or financial services organisations.
Proven understanding of all information security domains.
Cyber security certifications such as CISSP, CISM or ISO 27001 are desirable
Strong people leadership skills, including the ability to coach, motivate and drive a high-performance culture.

This role offers hybrid working - 2 days onsite weekly.

About the Company

Totum is unparalleled at matching the best business services talent with professional services firms. B Corp Certified - we achieve our goals in a responsible way, sourcing and placing diverse talent, championing the development of those from disadvantaged socio-economic backgrounds, and contributing to our collective future by reducing our business's carbon footprint. Together with our partners and candidates we are defining the future of law and professional services firms. We are passionate about talent in business servi... Know more

Related Jobs

Company Name

Lorien

Job Title

Information Security Manager

London, United kingdom

Hybrid

Freelance

03-12-2025

Company Name

Lorien

Job Title

Senior Infosec Manager - Perm - 3rd party Assurance

London, United kingdom

On site

Full Time

03-12-2025

Company Name

Walkers

Job Title

Manager - Third Party Assurance - 12 month FTC

London, United kingdom

Hybrid

Freelance

01-12-2025

Company Name

Hamilton Barnes

Job Title

Third Party Risk Manager - Belfast (Hybrid, Outside IR35) - PS500 per day - 3 Months

Belfast, United kingdom

On site

Freelance

13-10-2025