Third Party Risk Management
6 hours ago
Job Title
Third Party Risk Management (TPRM) – Manager / Senior Manager
Location Bangalore
Experience
6+ years (Relevant experience in TPRM, ISMS, and Information Security)
Notice Period
Immediate joiners preferred
Role Overview
The TPRM Manager / Senior Manager will be responsible for leading and overseeing third-party risk assessments across information security, cybersecurity, privacy, and operational risk domains. The role requires strong expertise in ISMS, ISO 27001, and vendor risk governance, with the ability to engage senior stakeholders and drive risk mitigation initiatives across the organization.
Key Responsibilities
Third Party Risk Management
- Lead end-to-end Third Party Risk Management (TPRM) lifecycle including onboarding, periodic reviews, and offboarding assessments.
- Conduct vendor risk assessments covering information security, cyber risk, privacy, business continuity, and regulatory compliance.
- Review and evaluate third-party security controls, policies, and risk evidence.
- Identify, assess, and track third-party risks and remediation plans.
- Support risk-based decision-making for vendor onboarding and renewals.
ISMS & ISO 27001
- Drive implementation, monitoring, and continuous improvement of ISMS aligned with ISO 27001 standards.
- Perform ISO 27001 risk assessments, gap assessments, and internal audits.
- Support certification, surveillance audits, and management reviews.
- Align third-party controls with organizational ISMS requirements.
Governance, Risk & Compliance
- Develop and maintain TPRM policies, procedures, frameworks, and risk methodologies.
- Ensure compliance with applicable regulatory and industry standards (e.g., RBI, SEBI, GDPR, SOC, NIST, ISO).
- Provide risk reporting and dashboards to senior management and stakeholders.
- Support regulatory audits and external assessments related to vendor risk.
Stakeholder & Team Management
- Act as a key point of contact for business, procurement, legal, IT, and security teams.
- Review and approve risk assessment outputs prepared by junior team members.
- Mentor and guide team members to ensure quality and consistency of assessments.
- Engage with vendors to resolve security gaps and drive timely remediation.
Required Skills & Experience
- 6+ years of experience in Third Party Risk Management, Information Security, or GRC roles.
- Strong hands-on experience in TPRM frameworks, vendor risk assessments, and risk reporting.
- In-depth knowledge of ISMS and ISO 27001 implementation and audits.
- Experience with security questionnaires, evidence review, and control validation.
- Familiarity with regulatory and industry standards such as NIST, SOC 2, GDPR, RBI/SEBI guidelines.
- Strong communication skills with the ability to interact with senior stakeholders and vendors.
Certifications (Highly Preferred / Plus)
- ISO 27001 Lead Implementer / Lead Auditor
- CISA, CISM, CRISC
- CISSP
- Any relevant risk or information security certification
Education
- Bachelor’s degree in Engineering, Information Security, Computer Science, or related field.
- Master’s degree or MBA is an added advantage.
-
Third-Party Risk Management
2 weeks ago
Bengaluru, Karnataka, India Wisdom Square Technologies Full time US$ 6,00,000 - US$ 18,00,000 per yearThird-Party Risk Management (TPRM) Analyst / Senior Analyst- IMMEDIATE JOINERS ONLYExperience Level: 3–5 YearsLocation: Bengaluru, Hybrid, RemoteJob Type: Full-TimeJob SummaryWe are seeking a proactive and analytical Third-Party Risk Management (TPRM) Analyst to join our risk and compliance team. The ideal candidate will have 3-5 years of direct experience...
-
Manager – Third Party Risk Management
2 weeks ago
Bengaluru, Karnataka, India Cubical Operations LLP Full timeJob Title:Manager – Third Party Risk Management (TPRM)Location:BangaloreExperience:6+ YearsDepartment:Information Risk Management / Information SecurityAbout the Role:We are seeking an experiencedTPRM Managerto lead and enhance our Third-Party Risk Management framework. The ideal candidate will have a strong background inInformation Risk Management...
-
Third-Party Risk Management
3 days ago
Bengaluru, Karnataka, India Wisdom Square Technologies Full timeRole & ResponsibilitiesRisk Assessments & Due Diligence: Conduct end-to-end third-party risk assessments during onboarding and periodic reviews, including inherent risk scoring and detailed due diligence.Compliance & Frameworks: Evaluate vendor compliance with internal policies and industry standards including regulatory frameworks such as ISO 27001, NIST,...
-
Analyst Third Party Risk
1 week ago
Bengaluru, Karnataka, India Empower Full timeOur vision for the future is based on the idea that transforming financial lives starts by giving our people the freedom to transform their own. We have a flexible work environment, and fluid career paths. We not only encourage but celebrate internal mobility. We also recognize the importance of purpose, well-being, and work-life balance. Within Empower and...
-
Third Party Risk – Senior Manager
5 days ago
Bengaluru, Karnataka, India Live Connections Full timeJob DescriptionPosition:Infosec Third Party Risk – Senior ManagerDesignation:Senior ManagerExperience:15–20 YearsLocation:Remote (India)Role OverviewWe are seeking a highly experiencedInformation Security – Third Party Risk Senior Managerto lead and oversee third-party risk management (TPRM) and supply chain security initiatives.The ideal candidate...
-
Third-Party Risk Management
2 weeks ago
Bengaluru, Karnataka, India, Karnataka Wisdom Square Technologies Full timeThird-Party Risk Management (TPRM) Analyst / Senior Analyst- IMMEDIATE JOINERS ONLYExperience Level: 3–5 YearsLocation: Bengaluru, Hybrid, RemoteJob Type: Full-TimeJob SummaryWe are seeking a proactive and analytical Third-Party Risk Management (TPRM) Analyst to join our risk and compliance team. The ideal candidate will have 3-5 years of direct experience...
-
Third Party Risk Management Analyst
3 days ago
Bengaluru, Karnataka, India Finastra Full timeWho are we?At Finastra, we are a dynamic global provider of open finance software solutions, dedicated to expanding access to financial services. Our innovative applications span Lending, Payments, Treasury and Capital Markets, and Universal Banking. Proudly serving over 8,000 customers, including 45 of the world's top 50 banks, we aim to boost financial...
-
Third-Party Cyber Risk Analyst
5 days ago
Bengaluru, Karnataka, India ETT CareerMove Full timeOur client a UK based MNC is seeking Third-Party Cyber Risk Analyst for their office in Bengaluru.Experience:5–10 yearsLocation:Bengaluru (Hybrid – 3 days WFO)Qualification:Any full-time graduationRole SummaryResponsible for operating the Third-Party Cyber Risk Management (TPCRM) framework to identify, assess, monitor, and mitigate cybersecurity risks...
-
GRC Specialist – Third-Party Risk Management
2 weeks ago
Bengaluru, Karnataka, India LogicHive® Full time US$ 6,00,000 - US$ 12,00,000 per yearRole OverviewWe are seeking an experienced GRC Specialist to drive governance, risk, compliance, and third-party risk management initiatives in our organization. The ideal candidate will possess deep expertise in regulatory compliance (ISO 27001, GDPR, Indian privacy laws), risk assessment frameworks, and hands-on experience in managing third-party/vendor...
-
Sr Mgr Third Party Risk Management
1 week ago
Bengaluru, Karnataka, India Regeneron Full timeRegeneron is founded on the belief that the right idea, combined with the right team, can lead to significant transformations. Our growing global network is dedicated to inventing, developing, and commercializing medicines that change lives for those with serious diseases. In doing so, we are pioneering innovative approaches to science, manufacturing, and...
