5 Tprm Framework Jobs

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As part of our EY-NFS TPRM team, you will help clients enhance their business performance by translating their strategies into realities. Working with EY-high performing teams, you will help clients to grow, innovate, protect, and optimize their business performance. We're looking for Seniors with expertise in Third-Party Risk Management to join the leadership group of our TPRaaS team. It is a fantastic opportunity to be part of a leading firm while being instrumental in the growth of a new service offering. Your key responsibilities include: leading and working closely with the manager in the delivery of Third-Party Risk Management (TPRM) engagements, assisting/mentoring team members in vendor calls/client interactions by providing delivery updates, performing quality checks on work products before delivering them to the end clients, following policies and procedures that support the successful implementation of TPRM operating models, facilitating process walkthrough discussions to document end-to-end business processes and functional requirements, assessing the application of legal and regulatory requirements to clients" TPRM practices, leading/participating in technology enhancement requirements such as Automation, Data Analytics, AI to support TPRM processes, assisting in the selection and tailoring of approaches, methods, and tools to support service offerings or industry projects, building and nurturing positive working relationships with clients to achieve exceptional client service, contributing to identifying opportunities to improve engagement profitability, assisting leadership in driving business development initiatives and account management, and participating in building strong internal relationships within GMS Services and with other services across the organization. To qualify for the role, you must have 4 to 8 years of demonstrated experience with Risk Management across the Third-Party engagement lifecycle and an understanding of the associated organizational infrastructure. You should also have a strong understanding of the TPRM framework, Risk Management, Information Security practices, and demonstrate a good understanding of the Contract Risk Review management process. Additionally, hands-on exposure to TPRM tools and technology solutions, demonstrated knowledge of standards, privacy regulations, regulations, networking and security concepts, and experience in LAN/WAN architectures is required. It is also beneficial to have prior Big-4 experience and certifications such as CISSP, CISA, CISM, CTPRP, CIPP, ISO 27001 Lead Auditor, or Lead Implementer. Ideally, you'll also have project management skills and exposure to tools like ProcessUnity, ServiceNow, Archer. At EY, we're dedicated to helping our clients, from startups to Fortune 500 companies, and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects, receive support, coaching, and feedback from engaging colleagues, and have opportunities to develop new skills and progress your career. We offer the freedom and flexibility to handle your role in a way that's right for you. EY exists to build a better working world, helping create long-term value for clients, people, and society by providing trust through assurance and helping clients grow, transform, and operate.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As part of our TPRaaS team, you will help clients enhance their business performance by translating their strategies into realities. Working with EY-high performing teams, you will help clients to grow, innovate, protect, and optimize their business performance. The opportunity We're looking for Staff with expertise in Third Party Risk Management to join the leadership group of our TPRaaS team. This is a fantastic opportunity to be part of a leading firm while being instrumental in the growth of a new service offering. Your key responsibilities - Participate in the delivery of Third-Party Risk Management (TPRM) engagements covering walkthroughs, testing, documentation, and other engagement-related activities. - Participate in vendor calls/client interactions by providing delivery updates. - Follow policies and procedures that support the successful implementation of TPRM operating models. - Participate in process walkthrough discussions to assist in documenting end-to-end business processes and functional requirements. - Participate in assessing the application of legal and regulatory requirements to clients TPRM practices. - Participate in technology enhancement requirements such as Automation, Data Analytics, AI to support TPRM processes. - Understand the process gaps and propose preventive/corrective action where appropriate. - Demonstrate a keen interest in developing knowledge of market trends, competitor activities, EY products, and service lines. - Adhere strictly to fulfill project activities to achieve exceptional client service. - Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. - Conduct research and assist senior team members in preparing client presentations and information memorandums. - Continuously strive towards exceeding client & team expectations and work on increasingly complex assignments. - Support management in the preparation of proposals and business development materials. - Bring out-of-the-box thinking mindset and analytical thinking capability to enhance service delivery. Skills and attributes for success - Maintain an educational program to develop personal skills continually. - Constantly upskill as per market trends. - Understand and follow workplace policies and procedures. - Exhibit initiative and participate in corporate social and team events. To qualify for the role, you must have - B.Tech (IT/Computer Science), BSc.(IT), BE, MCA, from a tier1 or tier 2 college. - 1 to 4 years of demonstrated experience with Risk Management, preferably in the Third-Party engagement lifecycle (pre-contracting, contracting, and post-contracting). - Basic understanding of the TPRM framework, Risk Management, Information Security practices. - Good to have exposure in Contract Risk Reviews. - Good exposure to TPRM tools and technology solutions (e.g., GRC enablement solutions, such as Process Unity, Prevalent, Archer, ServiceNow, etc.). - Basic knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI DSS, HITRUST, etc. - Basic knowledge of privacy regulations such as GDPR, CCPA, etc. - Basic knowledge of regulations such as FISMA, HIPAA, Reg SCI, MAS, etc. - Basic knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts, Physical & Environmental Security, Asset Security, and Identity & Access Management. - Good to have certifications - CISSP, CISA, CISM, CTPRP, CIPP, ISO 27001 Lead Auditor or Lead Implementer. Ideally, you'll also have exposure to tools like ProcessUnity, ServiceNow, Archer. What we look for A team of people with enthusiasm to develop new skills and knowledge and experience to succeed and inquisitiveness to learn new things in this fast-moving environment. An opportunity to be a part of a market-leading, multi-disciplinary team of professionals, in the only integrated global transaction business worldwide. Opportunities to work with TPRaaS practices globally with leading businesses across a range of industries.,

You will be responsible for conducting ISMS or Third-Party Risk Assessments. Your role will involve effectively liaising with clients and managing stakeholder expectations. Additionally, you will work closely with client teams from various departments, such as compliance teams, auditing, and regulators, to identify and document various requirements and obligations. Your duties will include conducting risk assessments and audits related to people, processes, and technology. You will be tasked with identifying gaps, observations, risks, opportunities, and areas for improvement in policies, processes, procedures, and standards. You will also document information security risks, recommendations, and compensating controls in assessment and audit reports. Collaboration with other members of the engagement team will be essential to plan and develop relevant work papers and deliverables for vendor information security reviews. You will define the approach for vendor assessments and develop a vendor evaluation model. Furthermore, you will be responsible for handling key activities throughout the assessment and audit life cycle, including planning, execution, reporting, quality review, and tracking within the Third-Party Risk Management (TPRM) framework. As part of your role, you will provide guidance, share knowledge with team members, and participate in performing procedures, focusing on complex, judgmental, and specialized issues. You will also prepare detailed risk assessment reports that include findings and actionable recommendations for stakeholders and senior management.,

Understanding the requirement to conduct comprehensive information security risk assessment of 3rd party service provider (TPRM) who will provide new services/applications Plan and conduct periodic assessment of existing vendors as per organizations

Asst. Manager - Supplier Relationship Management Center of Excellence (SRM COE) Level Grade 4 We have been helping our clients to build better financial futures for over 50 years. How have we achieved this? By working together - and supporting each other - all over the world. So, join our Global Procurement team and feel like youre part of something bigger. About your role The Assistant Manager - Supplier Relationship Management Center of Excellence will work with identified supplier relationship managers (SRMs) for key Business Functions in managing suppliers in line with risk appetite, optimising post-contract value, and developing a transparently sustainable supply base The role holder will run routines for a defined element of the supplier portfolio, and will ensure that the requirements, contractual obligations, Procurement policy, and business unit objectives are met and evidenced in regular routines. The role holder will collaborate closely with senior stakeholders from across FIL to establish broad internal stakeholder relationships, drive value from, and manage supplier risk. These stakeholders include but are not limited to onshore Procurement SRM Lead, Supplier Relationship Managers (SRMs) across FIL; Supplier Risk Oversight (Procurement 2LoD function); Senior Procurement Category leaders; and risk partners across FIL Be able to analyse and document contractual deliverables, business objectives and translate them to practical guidelines in line with TPRM framework. Monitor and lead the performance delivery of the suppliers against agreed benchmarks. Develop an understanding of key contractual clauses and ensure compliance. Measure and reaslise contractual credits arising out of rebates, penalties etc. Help business in creating supplier business continuity and exit plans. Create and run a mechanism for consistent and reliable handling of business queries towards SRM tasks, including ticket resolution, process trainings and process walk throughs. Liaise with Stakeholders on multiple forums and deal with any ad-hoc queries from stakeholders. Attend SRM process development sessions (Collaborate with SRM groups, TPRM and 2nd LOD) to develop processes and routines. Become a TPRM tool Champion for FIL and promote uptake of the tool across business units and geographies and track adoption across each 1LOD. Contribute to design and evolution of TPRM tool routines and operationally manage TPRM tool administration tasks. Remain fully aware of key risk, compliance and regulatory impacts of the Supplier Risk Management Lifecycle, and their impacts to FIL across all regulatory jurisdictions. Perform periodic supplier spend reconciliations for suppliers, tying back actual spend with contractual price. Deliver best in class supplier management function for the groups strategic and / or operational 3rd party suppliers and proven experience of delivering savings (avoiding contract leakage). Analyse and understand supplier contract pricing and incoming invoice to arrive at the best method for spend reconciliation / leakage monitoring. Provide business with data analytics and contractual review expertise required for SRM deliverables. Be an expert with strong individual contributor streaks, while being part of and managing small but high performing pods. Analyse and document variations to services, ensuring necessary discipline / agreed change acceptance methodologies and that all activities meet the desired cost, risk & service parameters Understand key policy requirements around different types of supplier risk, their identification and mitigation processes. Provide support to business users in performing risk identification and mitigation routines. Manage relationships with different risk SMEs. Ensure operational excellence through adherence to designed processes & process audits About You 6+ years of work experience in financial services (desirable) Experience in supplier due diligence and onboarding would be an added asset. Experience in a TPRM tool is required. Working experience under Supplier Relationship Management function entailing Structured governance for continuous review and monitoring of key relationships Measurement and reporting of supplier performance metrices and SLAs Tracking and reporting of contractual delivery as well as financial commitments Enthusiastic, self-driven and with a high level of self-motivation to overcome obstacles and a strong desire to make things happen. Ability to be flexible and responsive to a constantly changing environment. Strong analytical skills, attention to details with an appetite to dive into issues in depth as needed Strong personal presence, excellent interpersonal and communication skills, ability to establish a successful rapport, communicate and influence at all levels. Ability to complete multiple tasks against tight deadlines, able to prioritise and organise effectively.