
Senior Cybersecurity – Third Party Risk Management
18 hours ago
Job Description:
Role: Senior – Third Party Risk Management (TPRM)
About the Company:
Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won't just imagine the future-you'll create it.
About the Job:
The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working closely with internal teams including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Below are the key responsibilities:
Conduct Cybersecurity Assessments:
Perform comprehensive security assessments of third-party vendors, including evaluating their security policies, controls, and practices.
Identify potential risks and vulnerabilities in vendor environments and provide recommendations for remediation.
Risk Analysis and Reporting:
Analyze assessment results to determine the level of risk associated with each third-party relationship.
Prepare detailed assessment reports and risk summaries for internal stakeholders, including senior management and the TPRM team.
Vendor Onboarding and Monitoring:
Assist in the onboarding process for new vendors by conducting initial security assessments and ensuring compliance with Supplier Information Security Requirements (SISR).
Monitor and re-assess existing vendors periodically to ensure ongoing compliance and address any emerging risks.
Collaboration and Communication:
Work closely with internal teams, including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management.
Communicate assessment findings and risk mitigation strategies to third-party vendors in a clear and constructive manner.
Policy and Procedure Development:
Contribute to the development and enhancement of TPRM policies, procedures, and guidelines.
Stay up-to-date with industry best practices, regulatory requirements, and emerging threats to continuously improve the TPRM program.
Training and Awareness:
Provide training and awareness sessions to internal teams and third-party vendors on cybersecurity best practices and TPRM requirements.
Experience Level:
12+ years.
Location:
Hyderabad / Bengaluru
Required skills:
- 10 years minimum experience in third-party risk management / risk consulting / cyber security assessments.
- Demonstrated experience in third-party risk management and vendor security assessments.
- Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls).
- Good understanding of various third-party risk management frameworks and standards.
- Proficiency in using security assessment tools and methodologies.
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills, with the ability to convey complex security concepts to both technical and non-technical audiences.
- Detail-oriented with strong organizational and project management skills.
Desirable skills:
- Knowledge of data protection regulations (e.g., GDPR, CCPA) and their impact on third-party risk management.
- Prior experience with Telecom sector.
- Relevant certifications such as CISSP, CISM, CRISC, or CISA
Additional information (if any):
Need to be flexible to provide coverage in US morning hours.
Weekly Hours:
40
Time Type:
Regular
Location:
IND:KA:Bengaluru / Innovator Building, Itpb, Whitefield Rd - Adm: Intl Tech Park, Innovator Bldg
It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.
-
Third Party Risk Management
3 weeks ago
Bengaluru, Karnataka, India State Street Full timeThird-Party Risk Management Due Diligence - Tech Lead Role Summary State Street uses third parties to support internal processes and in the delivery of certain products and services to clients These third parties are evaluated and risk assessed through our Third-Party Risk Management TPRM Program The Due Diligence Onboarding Senior Associate is...
-
Third Party Risk Management, Director
1 week ago
Bengaluru, Karnataka, India Morgan Stanley Asia Full time ₹ 12,00,000 - ₹ 36,00,000 per yearWe are seeking an experienced Director to support our Third-Party Due Diligence Assessment program in Bangalore. This individual will be responsible for leading and managing the delivery of Cybersecurity and Information Security Third Party Risk Assessments. In the Corporate Services division, we empower our businesses by creating collaborative...
-
Third Party Risk Management
2 days ago
Bengaluru, Karnataka, India Kiya Full time ₹ 9,00,000 - ₹ 12,00,000 per yearposition: Contract to Hire(C2H)Skill: Third-Party Risk ManagementExperience: 3+Location: BangNotice Period: Immediate to 15 DaysJob Descrption :General Risk management and Controls management awareness.Internal Controls Testing/ Internal Audit.Understanding of Third-Party Risk Management including Inherent and Residual Risks.Familiarity with the banking...
-
Third Party Risk Management, Director
1 week ago
Bengaluru, Karnataka, India Morgan Stanley Full time ₹ 12,00,000 - ₹ 36,00,000 per yearWe are seeking an experienced Director to support our Third-Party Due Diligence Assessment program in Bangalore. This individual will be responsible for leading and managing the delivery of Cybersecurity and Information Security Third Party Risk Assessments.In the Corporate Services division, we empower our businesses by creating collaborative workplace...
-
Infosecurity Third Party Risk Senior Manager
2 days ago
Bengaluru, Karnataka, India Talentgigs Full time ₹ 12,00,000 - ₹ 25,00,000 per yearInfosec Third Party Risk Senior ManagerDesignation: Senior ManagerExperience: 15 to 20 years (Relevant)Mandatory Skills: TPRM, Supply Chain Risk Assessments, Risk Assessment, ISO 27001, NIST CSFGood to Have: GRC, CISSP, ISOQualificationsBachelor's degree in Computer Science, Engineering or related field or equivalent work experienceCISA, CRISC, CISM, or...
-
Gainsight - Third Party Risk Analyst
3 weeks ago
Bengaluru, Karnataka, India Gainsight Software Private Limited Full timeAbout Stripe: - Stripe is a financial infrastructure platform for businesses.- Millions of companies-from the world's largest enterprises to the most ambitious startups-use Stripe to accept payments, grow their revenue, and accelerate new business opportunities.- Our mission is to increase the GDP of the internet, and we have a staggering amount of work...
-
Third Party Security Risk Analyst
2 weeks ago
Bengaluru, Karnataka, India Broadridge Full timeJob DescriptionKey Responsibilities:- Vendor Security Documentation Review- Evaluate third-party security artifacts including SOC 2 Type II reports, ISO/IEC 27001 certificates (with Statement of Applicability), vulnerability assessments and penetration testing (VAPT) results, and security policy documentation. Identify gaps or weaknesses in vendor controls...
-
Manager - Third Party Risk Management
6 days ago
Bengaluru, Karnataka, India BNP Paribas Full time ₹ 15,00,000 - ₹ 25,00,000 per yearResponsibilitiesDirect Responsibilities The CIB ITO TPRM Governance is focused on development and deployment of robust control framework for all internal and external third-party services globally. CIB ITO Offshore TPRM business manager responsibilities includes but not limited to.Working with owners of various businesses and processes across regions to map...
-
Manager - Third Party Risk Management
4 weeks ago
Bengaluru, Karnataka, India BNP Paribas Full timeAbout BNP Paribas India Solutions:Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union's leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and...
-
Manager - Third Party Risk Management
3 weeks ago
Bengaluru, Karnataka, India BNP Paribas Full timeAbout BNP Paribas India Solutions:Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union's leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and...