Third

Third-Party Risk Management (TPRM) Analyst at CyberAssure in Gurugram

CyberAssure, a leader in cybersecurity solutions, is seeking a motivated Third-Party Risk Management (TPRM) Analyst with 2-3 years of experience. This role is crucial for safeguarding our organization's information and assets by assessing and managing risks associated with our third-party relationships. Join our team in Gurugram to contribute to robust security, integrity, and compliance.

Key Responsibilities:

• Third-Party Risk Assessments: Conduct comprehensive evaluations of current and potential third-party vendors, focusing on their security controls, data protection, and overall risk posture. Collaborate with internal teams to understand the impact of these relationships.
• Risk Identification and Analysis: Proactively identify and analyze risks stemming from third-party engagements, covering areas like cybersecurity, data privacy, regulatory compliance, and business continuity. Assess inherent and residual risks and report findings.
• Compliance Management: Ensure all third-party vendors adhere to relevant industry regulations, legal mandates, and internal policies. Stay informed about regulatory changes impacting third-party risk management.
• Policy Development and Implementation: Contribute to the refinement and creation of TPRM policies and procedures. Implement and enforce established risk management frameworks for consistent and effective assessments.
• Monitoring and Reporting: Develop and maintain continuous monitoring processes for third-party relationships. Generate regular reports on risk status, key performance indicators (KPIs), and mitigation progress.
• Vendor Due Diligence: Perform thorough due diligence, including background checks, financial assessments, and reviews of security and privacy practices. Work with legal and procurement to embed necessary security and compliance clauses in contracts.
• Collaboration and Communication: Partner closely with internal departments such as IT, Legal, Compliance, and Procurement to ensure a holistic approach to TPRM. Engage effectively with third-party vendors to address and resolve identified risks.

Qualifications and Skills:

• Bachelor's degree in Information Security, Risk Management, Business Administration, or a related field.
• Certifications such as ISO 27001 are highly preferred.
• Proficiency in third-party risk management frameworks, industry standards, and regulatory requirements.
• Strong analytical and problem-solving abilities with meticulous attention to detail.
• Excellent communication and interpersonal skills for effective collaboration.
• Experience with vendor risk management platforms is a significant advantage.
• Ability to work effectively both independently and as part of a team.

Experience:

• Minimum of 2 years of experience in risk management, information security, or vendor management, with a specific focus on Third-Party Risk Management (TPRM).
• Minimum of 2 years of experience in Cybersecurity.

To Apply: Please submit your latest CV detailing your current CTC, salary expectations, and notice period to Rajesh Kumar at Aayam Consultants.