Manager/Assistant Manager - Third Party Risk Management

Manager/ Assistant Manager -TPRM

Location- Bengaluru

Experience-5 to 9 years

Must Have-

- Experience with TPRM Lifecycle

- Experience in network and application vulnerability assessment

- Experience in risk assessment practices

Responsibilities:

- Clear understanding of TPRM lifecycle

- Possess advanced knowledge of network and application vulnerability assessment, IT practices, risk assessment practices, change control, data privacy, and business continuity.

- Strong attention to detail with an analytical mind and outstanding problem-solving skills.

- Interpret the details from the SOC, ISO reports.

- Application security reviews

Roles:

- The Third Party Risk Professional will perform third party risk assessments on new and existing third parties on an enterprise-wide basis

- Preparation of detailed and summary reports of assessment, including customized reports, as needed.

- Work directly with internal business partners to assist them in effectively managing their operational risks related to identification of potential risks in business processes, applications, systems, associated with third party engagements.

- Work with IT, Sourcing, and Law to ensure compliance and integration of third party risk management lifecycle elements.

- Ability to perform contract reviews of redlines and approve/reject changes.

- Identify and measure the risks faced a business area, process, or workflow based on facts, business environment, and practicality and perform appropriate due diligence to ensure identification and management of risks.

- Counsel and guide business partners in identifying risks and potential risk mitigation alternatives commensurate with the risk identified and consistent with risk appetite and tolerance.

- Work directly with new and existing third party vendors to assess risk controls to ensure data is adequately safeguarded

- Promote awareness and enhance our internal service model that informs the business of key risks in a timely manner so as to limit unnecessary impediments and avoid bureaucracy.

- Contribute to building of training program for internal business partners on due diligence process as well as their obligation in ongoing monitoring.