TPRM Associate

Job Description

Job Title: TPRM (Third Party Risk Management) Level: Associate Level of experience: 2-4 yrs About the Job: Introduction to PwC Service Delivery Center PricewaterhouseCoopers Service Delivery Centre (Kolkata) Private Limited is a joint venture in India among members of the PricewaterhouseCoopers Network that will leverage the scale and capabilities of its network. It is a member firm of PricewaterhouseCoopers International Limited and has its registered office in Kolkata, India The Delivery Center will provide a professional an opportunity to work in a dynamic environment where you will have the ability to develop process and quality-based skills Job Description: Activity Cybersecurity & Data Privacy Main purpose of the job and key background information Team members will assist territory engagement teams in performing vendor assessment and managed services in accordance with territorial reporting guidelines. Team members would be expected to perform activities that will include: - Preparation of vendor assessment reports which will include an analysis of the business profiling questionnaire and due diligence questionnaire of the vendor, review supporting documentation, performing research on the operations and other relevant information about the vendor/supplier. - Assessment of compliance of vendors against set standards/controls, SOC and PCI reports etc. - Communicate with the clients and vendors and get clarification - Assist in the administrative requirements of the team Team members would be required to apply learning from trainings and on the job experience to work requests and support continuous process improvement. Team members would be required to handle multiple tasks at the same time. Detailed focus when performing work and good project management skills when managing workload and maintaining timelines will be necessary. Key personal attributes Consulting experience Minimum Degree(s): Bachelors/masters in information security Certifications (ISO 27001/ ISO 31000/ CISA/ CISSP/ CSX Other relevant qualification/certification Knowledge Required: Strong knowledge of information security concepts, risk and controls concepts Sound knowledge on IT controls (especially IT risks) Sound knowledge of Internal Controls and Compliance Good knowledge on Privacy, Governance and reporting Skills Required: Experience with the Microsoft Office suite of products (i.e. Word, Excel, PowerPoint, Visio, etc.), Candidates should have strong verbal and written communication skills Knowledge / experience in fields of Vendor Risk Assessments, Internal Audit, External Audit / Statutory Audit projects Candidates should exhibit good client service skill collaterals with a strong focus on building relationships. Education/qualifications Any Graduation