Third-Party Risk Management
3 weeks ago
Job Description
Job Title: Third-Party Risk Management (TPRM) Analyst
Company : CyberAssure--https://cyberassure.one/
Years of Experience: 2-3 years+
Location: Sohna road , sector 49, Gurgaon
Package: 7-9 lacs
Summary:
The Third-Party Risk Management (TPRM) Analyst is responsible for assessing and managing the risks associated with third-party relationships to ensure the security, integrity, and compliance of the organisation's information and assets. The role involves evaluating third-party vendors, conducting risk assessments, implementing risk mitigation strategies, and maintaining ongoing monitoring processes.
Key Responsibilities:
1. Third-Party Risk Assessments:
-Conduct thorough assessments of potential and existing third-party vendors to evaluate their security controls, data protection practices, and overall risk posture.
-Collaborate with various stakeholders to gather relevant information and assess the impact of third-party relationships on the organisation.
2. Risk Identification and Analysis:
-Identify and analyse potential risks associated with third-party relationships, considering factors such as cybersecurity, data privacy, compliance, and business continuity.
-Evaluate the inherent and residual risks and communicate findings to relevant stakeholders.
3. Compliance Management:
-Ensure third-party vendors comply with industry regulations, legal requirements, and organisational policies.
-Stay updated on relevant regulatory changes and communicate the impact on third-party risk management processes.
4. Policy Development and Implementation:
-Contribute to the development and enhancement of third-party risk management policies and procedures.
-Implement and enforce risk management frameworks to ensure consistent and effective risk assessments.
5. Monitoring and Reporting:
-Establish and maintain ongoing monitoring mechanisms for third-party relationships.
-Generate and provide regular reports on the status of third-party risks, key performance indicators, and mitigation efforts.
6. Vendor Due Diligence:
-Conduct due diligence activities, including vendor background checks, financial assessments, and evaluation of their security and privacy practices.
-Collaborate with legal and procurement teams to ensure that contractual agreements include necessary security and compliance clauses.
7. Collaboration and Communication:
-Collaborate with internal stakeholders, including IT, legal, compliance, and procurement teams, to ensure a comprehensive approach to third-party risk management.
-Communicate effectively with third-party vendors to address and resolve identified risks.
Qualifications and Skills:
-Bachelor's degree in a related field (e.g., Information Security, Risk Management, Business Administration).
-Certification in relevant areas, such as ISO27001, will be preferred.
-Knowledge of third-party risk management frameworks, industry standards, and regulatory requirements.
-Strong analytical and problem-solving skills with attention to detail.
-Excellent communication and interpersonal skills.
-Experience with vendor risk management platforms is a plus.
-Ability to work independently and collaboratively in a team environment.
Experience:Relevant experience in risk management, information security, or vendor management, with a focus on third-party risk.
- Experience in TPRM- should be a minimum of 2 years
- Experience in Cybersecurity- minimum of 2 years
- Certification in the relevant area desired (Like ISO 27001 lead auditor, etc)
Share Ur latest CV with details like-
1. Ctc
2. Expectation
3. Notice period
Regards,
Rajesh Kumar
AAYAM CONSULTANTS
Cell: - 9311232179/ 7011595674
Email id: - [HIDDEN TEXT]
-
Senior Analyst
3 weeks ago
Gurugram, India Genpact Full timeReady to shape the future of work? At Genpact, we don’t just adapt to change—we drive it. AI and digital innovation are redefining industries, and we’re leading the charge. Genpact’s AI Gigafactory, our industry-first accelerator, is an example of how we’re scaling advanced technology solutions to help global enterprises work smarter, grow faster,...
-
Analyst - Third Party Risk Management?
4 weeks ago
Gurugram, Gurugram, India Genpact Full timeJob Description Ready to shape the future of work At Genpact, we don't just adapt to change-we drive it. AI and digital innovation are redefining industries, and we're leading the charge. Genpact's AI Gigafactory, our industry-first accelerator, is an example of how we're scaling advanced technology solutions to help global enterprises work smarter, grow...
-
[Only 24h Left] Consultant
3 weeks ago
Gurugram, Gurugram, India Genpact Full timeJob Description Ready to shape the future of work At Genpact, we don't just adapt to change-we drive it. AI and digital innovation are redefining industries, and we're leading the charge. Genpact's AI Gigafactory, our industry-first accelerator, is an example of how we're scaling advanced technology solutions to help global enterprises work smarter, grow...
-
Third Party Risk Management
5 days ago
Gurugram, Hyderabad, India S&P Global Market Intelligence Full time ₹ 10,00,000 - ₹ 25,00,000 per yearAbout the Role: Grade Level (for internal use):10 The Team The Customer Experience, a new shared capability within Market Intelligence, partners closely with the Sales organization to deliver a differentiated customer experience. This group enables our sales team and businesses by overseeing customer success, sales operations, and implementation of...
-
Risk Advisory Third Party Due Diligence
1 week ago
Gurugram, Haryana, India KPMG Full time**About KPMG in India** **_KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across...
-
Max Healthcare
3 weeks ago
Gurugram, India Max Healthcare Institute Ltd. Full timeJob title : Deputy / Manager - Cybersecurity Governance, Risk & Compliance (GRC). Roles & Responsibilities:.- We are seeking a highly motivated and detail-oriented Cybersecurity GRC Manager to lead our information security governance and compliance initiatives.- The ideal candidate will have deep expertise in implementing and managing ISO 27001:2022, SOC 2,...
-
DigiHelic Solutions
2 weeks ago
Gurugram, India Digihelic Solutions Private Limited Full timeRole Description : - Lead the end-to-end third-party risk assessment process including initial due diligence, onboarding, and periodic reviews.- Collaborate and lead discussions with various departments from clients team including Legal, IT Security, Procurement, and Business Units to ensure comprehensive risk coverage.- Lead engagement team in delivering...
-
Lead Analyst, Risk
5 days ago
Gurugram, Gurugram, India Cvent Full timeJob Description Overview We are seeking a proactive, technically skilled Lead Analyst to join our Information Security Risk & Compliance team in Gurgaon. Ideal candidates have 6-8 years of experience in information security risk management and will primarily lead and mature Cvent's Third-Party Risk (TPRM) program end-to-end. You will also provide secondary...
-
Program Manager
4 weeks ago
Gurugram, India Infinium Associates Full timeJob Description :- Proficient with Project Management principles and should have hands on knowledge of running projects with Agile, waterfall and hybrid models.- Should be experienced with various scrum ceremonies and executing the project in sprints.- Coordinate internal resources and third parties/vendors for the flawless execution of projects- Ensure that...
-
Chief Risk Officer, Technology
1 week ago
Gurugram, Haryana, India FNZ Full timeRole Description The Global Risk and Compliance division (GR&C) exists to enable the FNZ Group to safely achieve its strategic objectives, protect value, and support the delivery of services and propositions to the quality our clients and regulators expect. The Chief Risk Officer of Technology & Security is responsible for leading the second-line oversight...