Third-Party Risk Management

3 weeks ago


Gurugram, India Rajesh Kumar ( Proprietor of Aayam Consultants) Full time

Job Description

Job Title: Third-Party Risk Management (TPRM) Analyst

Company : CyberAssure--https://cyberassure.one/

Years of Experience: 2-3 years+

Location: Sohna road , sector 49, Gurgaon

Package: 7-9 lacs

Summary:

The Third-Party Risk Management (TPRM) Analyst is responsible for assessing and managing the risks associated with third-party relationships to ensure the security, integrity, and compliance of the organisation's information and assets. The role involves evaluating third-party vendors, conducting risk assessments, implementing risk mitigation strategies, and maintaining ongoing monitoring processes.

Key Responsibilities:

1. Third-Party Risk Assessments:

-Conduct thorough assessments of potential and existing third-party vendors to evaluate their security controls, data protection practices, and overall risk posture.

-Collaborate with various stakeholders to gather relevant information and assess the impact of third-party relationships on the organisation.

2. Risk Identification and Analysis:

-Identify and analyse potential risks associated with third-party relationships, considering factors such as cybersecurity, data privacy, compliance, and business continuity.

-Evaluate the inherent and residual risks and communicate findings to relevant stakeholders.

3. Compliance Management:

-Ensure third-party vendors comply with industry regulations, legal requirements, and organisational policies.

-Stay updated on relevant regulatory changes and communicate the impact on third-party risk management processes.

4. Policy Development and Implementation:

-Contribute to the development and enhancement of third-party risk management policies and procedures.

-Implement and enforce risk management frameworks to ensure consistent and effective risk assessments.

5. Monitoring and Reporting:

-Establish and maintain ongoing monitoring mechanisms for third-party relationships.

-Generate and provide regular reports on the status of third-party risks, key performance indicators, and mitigation efforts.

6. Vendor Due Diligence:

-Conduct due diligence activities, including vendor background checks, financial assessments, and evaluation of their security and privacy practices.

-Collaborate with legal and procurement teams to ensure that contractual agreements include necessary security and compliance clauses.

7. Collaboration and Communication:

-Collaborate with internal stakeholders, including IT, legal, compliance, and procurement teams, to ensure a comprehensive approach to third-party risk management.

-Communicate effectively with third-party vendors to address and resolve identified risks.

Qualifications and Skills:

-Bachelor's degree in a related field (e.g., Information Security, Risk Management, Business Administration).

-Certification in relevant areas, such as ISO27001, will be preferred.

-Knowledge of third-party risk management frameworks, industry standards, and regulatory requirements.

-Strong analytical and problem-solving skills with attention to detail.

-Excellent communication and interpersonal skills.

-Experience with vendor risk management platforms is a plus.

-Ability to work independently and collaboratively in a team environment.

Experience:Relevant experience in risk management, information security, or vendor management, with a focus on third-party risk.

- Experience in TPRM- should be a minimum of 2 years
- Experience in Cybersecurity- minimum of 2 years
- Certification in the relevant area desired (Like ISO 27001 lead auditor, etc)

Share Ur latest CV with details like-

1. Ctc

2. Expectation

3. Notice period

Regards,

Rajesh Kumar

AAYAM CONSULTANTS

Cell: - 9311232179/ 7011595674

Email id: - [HIDDEN TEXT]


  • Senior Analyst

    3 weeks ago


    Gurugram, India Genpact Full time

    Ready to shape the future of work? At Genpact, we don’t just adapt to change—we drive it. AI and digital innovation are redefining industries, and we’re leading the charge. Genpact’s AI Gigafactory, our industry-first accelerator, is an example of how we’re scaling advanced technology solutions to help global enterprises work smarter, grow faster,...


  • Gurugram, Gurugram, India Genpact Full time

    Job Description Ready to shape the future of work At Genpact, we don't just adapt to change-we drive it. AI and digital innovation are redefining industries, and we're leading the charge. Genpact's AI Gigafactory, our industry-first accelerator, is an example of how we're scaling advanced technology solutions to help global enterprises work smarter, grow...


  • Gurugram, Gurugram, India Genpact Full time

    Job Description Ready to shape the future of work At Genpact, we don't just adapt to change-we drive it. AI and digital innovation are redefining industries, and we're leading the charge. Genpact's AI Gigafactory, our industry-first accelerator, is an example of how we're scaling advanced technology solutions to help global enterprises work smarter, grow...


  • Gurugram, Hyderabad, India S&P Global Market Intelligence Full time ₹ 10,00,000 - ₹ 25,00,000 per year

    About the Role:  Grade Level (for internal use):10 The Team The Customer Experience, a new shared capability within Market Intelligence, partners closely with the Sales organization to deliver a differentiated customer experience. This group enables our sales team and businesses by overseeing customer success, sales operations, and implementation of...


  • Gurugram, Haryana, India KPMG Full time

    **About KPMG in India** **_KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across...

  • Max Healthcare

    3 weeks ago


    Gurugram, India Max Healthcare Institute Ltd. Full time

    Job title : Deputy / Manager - Cybersecurity Governance, Risk & Compliance (GRC). Roles & Responsibilities:.- We are seeking a highly motivated and detail-oriented Cybersecurity GRC Manager to lead our information security governance and compliance initiatives.- The ideal candidate will have deep expertise in implementing and managing ISO 27001:2022, SOC 2,...

  • DigiHelic Solutions

    2 weeks ago


    Gurugram, India Digihelic Solutions Private Limited Full time

    Role Description : - Lead the end-to-end third-party risk assessment process including initial due diligence, onboarding, and periodic reviews.- Collaborate and lead discussions with various departments from clients team including Legal, IT Security, Procurement, and Business Units to ensure comprehensive risk coverage.- Lead engagement team in delivering...

  • Lead Analyst, Risk

    5 days ago


    Gurugram, Gurugram, India Cvent Full time

    Job Description Overview We are seeking a proactive, technically skilled Lead Analyst to join our Information Security Risk & Compliance team in Gurgaon. Ideal candidates have 6-8 years of experience in information security risk management and will primarily lead and mature Cvent's Third-Party Risk (TPRM) program end-to-end. You will also provide secondary...

  • Program Manager

    4 weeks ago


    Gurugram, India Infinium Associates Full time

    Job Description :- Proficient with Project Management principles and should have hands on knowledge of running projects with Agile, waterfall and hybrid models.- Should be experienced with various scrum ceremonies and executing the project in sprints.- Coordinate internal resources and third parties/vendors for the flawless execution of projects- Ensure that...


  • Gurugram, Haryana, India FNZ Full time

    Role Description The Global Risk and Compliance division (GR&C) exists to enable the FNZ Group to safely achieve its strategic objectives, protect value, and support the delivery of services and propositions to the quality our clients and regulators expect. The Chief Risk Officer of Technology & Security is responsible for leading the second-line oversight...