National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Senior Lead, Cybersecurity Supply Chain Risk

Kyndryl
Greater London
3 weeks ago
Create job alert

Who We Are

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.


The Role

We’re seeking a detail-oriented and strategicCybersecurity Supply Chain Risk Analystto join our Information Security team. This role is critical in identifying, assessing, and mitigating cyber risks associated with third-party vendors, suppliers, and partners. You’ll work cross-functionally to ensure our supply chain is secure, resilient, and compliant with relevant standards and regulations.

Key Responsibilities

Risk Assessment: Conduct thorough risk assessments of the supply chain to identify vulnerabilities and potential threats.

Mitigation Strategies: Develop and implement effective risk mitigation strategies to protect against cyber threats.

Stakeholder Management: Collaborate with procurement, legal, and compliance teams to ensure vendor risk controls are embedded in contracts and procurement processes

Incident Response: Lead incident response efforts for supply chain-related cybersecurity incidents.

Compliance: Ensure compliance with frameworks such as ISO 27002, NIST SP 800 series, and CISv8

Training: Provide training and awareness programs for staff and suppliers on supply chain cybersecurity best practices.

Reporting: Prepare detailed reports on risk assessments, mitigation strategies, and incident responses for senior management.


Who You Are

Required Qualifications:

5 years plus proven experience in cybersecurity and supply chain risk management.

Strong understanding of cybersecurity principles and practices.

Excellent analytical and problem-solving skills.

Ability to communicate complex technical information to non-technical stakeholders.

Experience with vendor management and third-party risk assessments.

Relevant certifications (e.g., CISSP, CISM, CRISC, CTPRP) are a plus.

Familiarity with tools such as OneTrust, ServiceNow or similar

Understanding of geopolitical risks and global supply chain dependencies

Skills:

Leadership and team management

Strong organizational skills

Creative problem-solving abilities

Ability to multitask and manage multiple projects simultaneously


Being You

Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.


What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.

Related Jobs

View all jobs

OT Cyber Security Analyst

OT Cyber Security Analyst

OT Cyber Security Analyst

OT Cyber Security Analyst

Head of IT

SOC Threat Detection Analyst

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

10 Cyber Security Recruitment Agencies in the UK You Should Know (2025 Job‑Seeker Guide)

UK cyber security hiring remains resilient in 2025, driven by nation-state threats, cloud security investments, and NCSC regulatory pressures. Lightcast reports +42 % YoY growth in UK roles mentioning “SOC”, “cyber risk”, “offensive security” or “GRC”. Yet despite 30,000 active cyber professionals, monthly live vacancies remain in the 2,500–2,900 range. The result: strong demand across public and private sector. We reviewed 50 + consultancies and included only those that: Are registered in the UK (Companies House) Operate a dedicated Cyber Security / InfoSec / Risk & Compliance desk Posted at least 5 UK cyber security roles between March and June 2025 This guide includes 2025 salary ranges, key skills, interview prep tips, and a verified recruiter directory.

Cyber Security Jobs Skills Radar 2026: Emerging Frameworks, Tools & Certifications to Learn Now

Cyber threats are evolving—and so must the people defending against them. As ransomware, AI-enhanced phishing, and supply chain attacks grow more advanced, UK employers are urgently hiring cyber security professionals with the right mix of strategic and hands-on skills. Welcome to the Cyber Security Jobs Skills Radar 2026, your go-to guide for the most in-demand tools, frameworks, certifications, and technologies shaping the UK's cyber workforce. Whether you're a SOC analyst, penetration tester, or cloud security architect, this annual radar is designed to help you stay ahead of the market.

How to Find Hidden Cyber Security Jobs in the UK Using Professional Bodies like BCS, CIISec & More

The demand for skilled cyber security professionals in the UK has never been higher. With threats increasing in sophistication and frequency, organisations are urgently hiring ethical hackers, threat analysts, GRC specialists, and security architects. But many of the most valuable roles—particularly in government, defence, and critical infrastructure—are never publicly advertised. Instead, these jobs are shared behind the scenes through trusted networks, private communities, and professional bodies. In this article, we explore how to uncover hidden cyber security jobs in the UK using organisations like the BCS (The Chartered Institute for IT), CIISec (The Chartered Institute of Information Security), ISACA, and ISC² UK Chapter. We’ll show you how to use membership directories, special interest groups, CPD events and informal networks to gain early access to roles most people never see.