Employer Active
Job Alert
You will be updated with latest job alerts via emailJob Alert
You will be updated with latest job alerts via email5years
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job opportunity in one of the Big 6 consulting firms:
Position tile: Assistant Manager & Manager
Department: Generic TPRM
Location: Bangalore/Chennai
Experience: 5 to 8 years
CTC: 20 to 25 LPA
Job Description:
We are seeking a skilled Third Party Risk Management (TPRM) Specialist to support our clients by assessing thirdparty risks and ensuring compliance with information security standards. This role involves IT audits risk assessments and working closely with internal and external stakeholders to safeguard data and processes.Key Responsibilities:
Conduct IT internal audits with a focus on thirdparty risk management.
Perform cybersecurity and IT SOX assessments ensuring thirdparty compliance with industry standards (SOC1 SOC2).
Execute control testing risk assessments and network security evaluations for third parties.
Assess compliance with regulations like GDPR PCI DSS and ISO standards.
Utilise frameworks such as CSA STAR NIST and ISO to conduct audits and provide recommendations.
Collaborate with crossfunctional teams and external partners to manage thirdparty risks effectively.
Continuously improve risk management processes and update policies according to evolving industry standards.
Technical Skill Requirements:
IT Auditing: Expertise in conducting IT internal audits with a focus on thirdparty risk management.
Risk Reporting: Experience in thirdparty risk assessment reporting such as SOC1 SOC2 and IT SOX compliance.
Information Security: Strong knowledge of information security and cybersecurity including control testing network security and infrastructure assessments.
Compliance & Standards: Indepth familiarity with CSA STAR ISO controls NIST frameworks PCI DSS and GDPR requirements.
Cloud & Application Security: Experience in assessing cloud security and application security for thirdparty vendors.
Certifications: Relevant certifications such as CISA CISSP CEH ISO PCI DSS or NIST (at least one required).
Qualifications:
Minimum 15 years of education.
Minimum 5 years of experience in IT audits risk management or cybersecurity.
Proven track record in conducting thirdparty risk assessments and ensuring compliance.
Excellent problemsolving and analytical skills with the ability to translate complex technical risks into actionable recommendations.
Strong communication skills for presenting findings to stakeholders and clients.
Preferred:
Experience with cloudbased systems and thirdparty cloud security assessments.
Background in consulting or clientfacing risk advisory roles.
Education
CA
Full Time
Advertising Services / Business Consulting and Services / Air /