Skip to main content
Job ID Location Work Location
2103AQ Reading Dual Location - Home & Reading Office
Job Type Contract Type Hours Per Week
Professional Full-time
Shift Pattern Closing Date
Standard working week. N/A



  • Provide support in proactive and effective oversight (and where appropriate challenge) of the information security risk management frameworks, methodologies, processes, assurance, remediation and reporting activities across the company.
  • Management and working ownership of the Cyber Risk Register.
  • Work with security, technology and business stakeholders to help identify, define and prioritise pragmatic and efficient remediation activities in relation to risk and control issues identified. Where Residual Risk is above appetite, facilitate the Risk acceptance process.
  • Manage and continually improve Three’s risk profile
  • Provide Information Security and 3r Party Supplier Risk subject matter expertise to business and communicate the risk environment to management through dashboard and KPIs.
  • Work effectively with Enterprise risk and compliance function to escalate any enterprise level Technology and Security risks.
  • Provide Information Security and 3rd Party Supplier Risk SME support / inputs where required to group change projects / programmes, audits and controls validation.
  • Support ongoing education and awareness activities around agreed Risk management frameworks and governance across the company.
  • Support BCP/DR lead in completing BIAs and writing BCP and DR plans.

  • Previous experience in similar role. Ability to work in dynamic and changing environment.
  • Excellent team player who can help and support others.
  • Experience of best practice frameworks (ITIL/COBIT) with Industry or academic credentials in risk

TTC Logo

Three are a proud signatory of the Tech Talent Charter (TTC), working across industries to drive greater inclusion and diversity in technology roles.

Can’t find the job you’re looking for?