TPRM Consultant - Cyber

Job Description

Job Title: Consultant / Senior Consultant – Third-Party Risk Management (TPRM) Location: Remote – India Experience: 3+ years Shift Timing: Evening Shift (Start time: 5–6 PM IST, aligned with US hours) Industry: Cybersecurity, Risk Management Employment Type: Full-Time Job Summary: We are hiring a Consultant / Senior Consultant with 3+ years of experience in Third-Party Risk Management (TPRM) to work remotely with our global clients , primarily in the US region . This role requires solid knowledge of cybersecurity standards such as PCI DSS, ISO 27001, SOC 2, and NIST , as well as hands-on experience in conducting vendor risk assessments and ensuring compliance. Key Responsibilities: Perform third-party/vendor security risk assessments , evaluating information security practices of external vendors. Assess vendor compliance with PCI DSS, ISO 27001, SOC 2, NIST, and other regulatory frameworks . Review vendor documentation, including policies, audit reports, penetration test results, and risk assessments. Identify cybersecurity risks and assist in drafting risk reports and remediation plans . Liaise with internal stakeholders and vendor contacts to ensure timely risk issue resolution and follow-up . Support ongoing monitoring of vendors through risk ratings, reassessments, and tracking regulatory obligations. Maintain accurate records and dashboards related to TPRM activities. Participate in process improvement initiatives to enhance the effectiveness of the TPRM program. Collaborate with global teams, particularly in the US time zone . Qualifications and Skills: Minimum 3+ years of experience in TPRM, cyber risk assessments, compliance audits, or related cybersecurity domains. Strong understanding of regulatory and industry frameworks like PCI DSS, ISO 27001, NIST, SOC 2 , etc. Familiarity with tools used for TPRM, compliance tracking, and risk assessments. Bachelor’s degree in Information Security, Computer Science, Risk Management , or related field. Relevant certifications such as CISA, ISO 27001 LA, or CISSP (preferred but not mandatory). Excellent communication skills, with the ability to present risk findings and collaborate with international stakeholders. Must be comfortable working in evening shifts starting around 5–6 PM IST . Why Join Us? Opportunity to work with global clients and gain exposure to world-class cybersecurity standards. 100% remote role with flexibility in working from anywhere in India. Attractive compensation and career growth potential . Inclusive and collaborative team culture with a focus on learning and development . Show more Show less