Job Description & How to Apply Below
- Manage end-to-end Third-Party Risk Management (TPRM) lifecycle including onboarding, due diligence, periodic reviews, and risk assessments.
- Conduct vendor risk evaluations aligned with frameworks like ISO 27001, NIST, SOC 2, and GDPR.
- Utilize TPRM platforms such as Archer, Process Unity, and Metric Stream for assessments and reporting.
- Collaborate with internal teams and vendors to ensure compliance with enterprise risk frameworks.
- Lead vendor risk monitoring efforts through periodic reviews, risk scoring updates, and detection of emerging risks.
- Analyze financial, operational, and reputational risks associated with third-party engagements.
- Prepare risk reports, dashboards, and presentations for stakeholders.
- Support audit readiness activities and respond to internal and external audit queries related to third-party risk.
- Support client-facing engagements and ensure timely completion of risk reviews.
- Maintain trackers and documentation for all TPRM activities.
Qualifications:
- Bachelor’s degree in business, Information Technology, Risk Management, Finance, or related field is mandatory;
Master’s degree or relevant certifications are strongly preferred
- 8+ years of experience in TPRM, vendor risk management, or related domains
- Strong understanding of third-party risk lifecycle management, enterprise risk management (ERM) concepts, risk frameworks and regulatory standards
- Hands-on knowledge of TPRM frameworks, risk assessment methodologies, and associated regulatory requirements (e.g., ISO 27001, SOC 2, NIST, GDPR, RBI Guidelines)
- Proven ability to conduct detailed vendor risk assessments, due diligence, and process improvement
- Experience with third-party risk management platforms (e.g., Aravo, RSA Archer, Metric Stream) and proficiency in MS Office (Excel, PowerPoint, Word)
- Ability to manage multiple concurrent projects and work independently or as part of a team
- Provide strategic advice on TPRM program design and governance to senior leadership
- Experience in client-facing environments
- Certifications such as CTPRP, CISA, CRISC, or CISSP are preferred
Work Window: 12 noon – 12 midnight
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×