TPRM Manager

Job Description: TPRM Manager / Senior Manager

Location: Bangalore

Experience: 6+ Years

Position Level: Manager / Senior Manager

Employment Type: Full-Time

Preferred Joining: Immediate / Early Joiners

About the Role

We are seeking a highly skilled professional with expertise in Third-Party Risk Management (TPRM) , Governance, Risk & Compliance (GRC) , and IT Risk & Audit to join our team as a Manager or Senior Manager . The ideal candidate will be responsible for leading and delivering TPRM engagements, assessing vendor risks, driving compliance, and working closely with stakeholders to strengthen the organization’s third-party risk framework.

Key Responsibilities

For Both Manager & Senior Manager:

• Lead and manage Third-Party Risk Management (TPRM) engagements, including onboarding, due diligence, monitoring, and periodic risk assessments of vendors.
• Conduct risk-based audits of third-party vendors to evaluate security controls, regulatory compliance, and data protection measures.
• Develop and maintain frameworks for vendor risk assessment, scoring, and reporting aligned with organizational GRC requirements.
• Collaborate with internal stakeholders, including procurement, legal, risk, and compliance teams , to ensure consistent risk evaluation practices.
• Implement and manage GRC tools and platforms to streamline TPRM workflows and automate reporting.
• Prepare detailed reports, dashboards, and executive summaries for senior leadership and audit committees.
• Track regulatory updates and industry best practices to enhance TPRM policies and frameworks.
• Act as a point of escalation for complex third-party risks and provide strategic guidance for remediation plans.

Additional Responsibilities for Senior Manager:

• Lead a team of risk consultants and provide technical mentorship, training, and quality reviews.
• Manage large-scale TPRM transformation programs , including implementation of GRC solutions.
• Act as a trusted advisor for senior stakeholders and CXOs, ensuring alignment between business objectives and risk mitigation strategies.
• Drive continuous improvement by introducing innovative risk assessment methodologies and automation initiatives.

Required Skills & Qualifications

• Experience: 6+ years for Manager; 9+ years for Senior Manager.
• Strong expertise in TPRM, GRC, IT Risk Management, and Vendor Governance frameworks .
• Hands-on experience in risk assessments, audit reviews, and regulatory compliance .
• Working knowledge of industry standards and frameworks such as ISO 27001, SOC 2, NIST, GDPR, RBI Guidelines , etc.
• Proficiency in GRC tools like Archer, ServiceNow, MetricStream, or similar platforms.
• Strong analytical, problem-solving, and stakeholder management skills.
• Excellent verbal and written communication skills.

Certifications (Preferred but Not Mandatory)

• CISA, CISM, CISSP, CRISC, or ISO 27001 LA certifications will be an added advantage.

Key Details

• Job Type: Full-time, Permanent
• Work Mode: Onsite (Bangalore)
• Position Level: Manager / Senior Manager
• Preferred Joining: Immediate or within 30 days
• Compensation: Competitive, based on experience and certifications