Deputy Manager

Job Title:

Location:

Experience Required:

Employment Type:

Role Overview

As a Deputy Manager in our Cyber CST Team, you will play a key role in leading third-party risk management (TPRM) engagements, working closely with clients and internal teams to ensure compliance, risk mitigation, and security excellence. You will manage end-to-end risk assessments, collaborate with stakeholders across business units, and provide subject matter expertise on regulatory and compliance frameworks.

Key Responsibilities

• Lead end-to-end third-party risk assessment processes including due diligence, onboarding, and periodic reviews.
• Collaborate with client stakeholders (Legal, IT Security, Procurement, Business Units) to ensure comprehensive risk coverage.
• Manage engagement teams, review deliverables, and support quality assurance.
• Develop and maintain TPRM frameworks, policies, and procedures aligned with regulatory expectations.
• Prepare and present risk reports, dashboards, and metrics to senior management.
• Act as SME in frameworks such as ISO 27001, SOC 2, NIST, GDPR, RBI Guidelines, PCI DSS.
• Support managers/leadership in audit execution, RFP responses, and business development.
• Drive continuous improvements, including automation in third-party assessment processes.
• Conduct independent risk assessments and audits of people, processes, and technology.

Desired Qualifications

• 6+ years of relevant experience in Third-Party Risk Management.
• Hands-on experience in IT Audits, Cloud Security Assessments, and ISO implementations (22301, 27001).
• Preferred certifications: CBCI, CBCP, ISO22301 LI/LA, OSCP, CISA, CISSP, CISM, CEH, ISO27001.
• Strong understanding of vendor/supplier risk management, data protection & privacy risks.
• Excellent communication, documentation, and presentation skills.
• Experience in Infrastructure/Application Security, Information Risk Management, and IT Audit.
• Ability to work in cross-functional and global environments.