140 Tprm Jobs - Page 6

Role & responsibilities ISMS or Third-Party Risk Assessments Ability to effectively liaise with clients and manage stakeholder expectations Work with client teams from various depts. Such as compliance teams, auditing and regulators to identify and document various requirements/obligations Conducting risk assessments and audits with respect to people, process and technology Identification of gaps/observations, risks, opportunities and improvement of policies, processes, procedures and standards Documenting information security risk, recommendation and compensating controls in the form of assessment/audit reports Desired qualifications Relevant 6+ years of experience in Third party risk management Highly preferred certifications - ISO27001, CISM , CRISK, CISA. Relevant years of experience in IT Audits, Cloud security Experience with ISO22301 implementation and audits Preferred certifications CBCI / CBCP / ISO22301 LI or LA Offensive Security Certified Professional, CISA to work in a cross-functional, cross-cultural matrix environment\ Understanding of Third party/vendor/supplier risk management considerations Knowledge of Data Protection & Privacy related risks associated with Third-Party and relevant control frameworks for Third party risk management Excellent written/verbal communication Excellent documentation and presentation skills Highly motivated and willing to work in local and global environments Security certifications like CISSP, CISA, CISM, CEH, ISO27001 Work experience in Infrastructure / Application Security Work experience in IT Audit Work experience in Information Risk Management

Join the Thomson Reuters enterprise Third-Party Risk Management function to help strengthening the control landscape and support the establishment of new, and delivery of existing core processes designed to evaluate and manage risks associated with external business relationships About the Role: Be a leader: Lead, mentor, and coach a small to medium-sized team of individuals sitting in different locations, fostering a culture of collaboration, professional growth, and excellence in service delivery. Be customer-focused: Ensure consistent and SLA-aligned delivery of high-quality, enterprise-wide services such as identity verification, supplier, partner and customer screening, engagement-level risk assessment, ongoing monitoring and more. Be capability-oriented: Support the development and implementation of data-driven routines to build an operational centre of excellence within the Risk & Compliance organizaation. Be a partner: Collaborate with stakeholders across Sales, Partnerships and Alliances, Global Procurement, General Counsel, Technology, Information Security, and other functions to align TPRM processes with business objectives. Be a change agent: Identify opportunities for process improvements and efficiency gains within the framework, leveraging emerging technologies such as automation and AI to enhance operational performance. About you: 12+ years of overall experience, with 8+ years of relevant experience in risk management, procurement, administrative management, or third-party risk management; and at least 3+ years of experience in a leadership or team management role. Demonstrated ability to build and lead a team, promoting diversity, inclusion, and a focus on continuous improvement. Strong interpersonal skills with the ability to work with diverse stakeholders at varying levels of seniority. Natural curiosity, adaptability to navigate uncertainty, and comfort with ambiguity in a fast-paced environment. Proven ability to support and enhance policies, procedures, and operational processes in collaboration with key business stakeholders and across various domains. Strong business acumen and commercial awareness, with the ability to think strategically and make sound business judgments.

Hiring for TPRM with BI in one of our prestigious banking company . Role : TPRM Exp : 5-9 years Notice Period : Immediate - 30 days Job Location : Chennai Work Mode: Hybrid **Interested candidates drop your resume to saarumathi.r@kiya.ai Job Summary: We are seeking a detail-oriented and proactive professional to support Third-Party Risk Management (TPRM) activities, committee meeting preparations, and regulatory compliance processes. The role will involve close collaboration with project managers, vendor management teams, and stakeholders across different geographies including Paris and central teams. The ideal candidate will have experience in KPI reporting using Power BI, strong coordination skills, and a solid understanding of IT and risk processes. Key Responsibilities: Primary Duties: Prepare meeting decks and facilitate committee meetings with internal and onshore stakeholders. Produce KPIs using Power BI and support the risk committee meetings by generating required reports and insights. Coordinate with Paris/Central project managers and ISPL TPRM/Central TPRM team to ensure the availability of accurate data for reporting. Assist in identifying, assessing, and mitigating risks associated with both internal and external suppliers. Coordinate and facilitate Vendor Management risk assessments, resolving associated issues. Ensure third-party risk assessments are completed in collaboration with TPRM stakeholders and central teams. Identify risks within Service Level Agreements (SLAs) and support mitigation strategies. Monitor and document risks using the R360 (Risk 360) tool. Follow up with stakeholders during the entire risk assessment process. Ensure third-party engagements are aligned with contractual obligations and TPRM requirements. Contributing Responsibilities: Provide support for the Digital Operational Resilience Act (DORA) European regulation by assisting Project Managers and stakeholders in monitoring third-party performance and resilience. Technical & Behavioral Competencies: Technical Competencies: Strong knowledge of IT processes. Proficiency in Microsoft Office tools, especially Excel and PowerPoint. Experience with Power BI for dashboarding and KPI reporting. Working knowledge of SharePoint for documentation and collaboration. Behavioral Competencies: Excellent communication skills for effective stakeholder management. Customer-focused mindset and ability to work collaboratively. Team-oriented with a proactive and initiative-driven attitude. Qualifications: Bachelors degree in Information Technology, Business, Risk Management, or a related field. Experience in third-party risk management, vendor assessments, or IT governance is a plus.

GRC professional with good understanding of industry frameworks and standards 2. In-depth experience on Third-Party Risk Management a. Evaluating third party's cybersecurity control and ensuring they are in compliance with organizations standards and industry best practices b. Track and monitor the status of each due diligence review and communicate the status with management and key stakeholders on a regular basis c. Articulate risks and potential options for remediation or compensating controls d. Understand inherent risk assessment e. Perform new and recurring third party security risk assessments, develop mitigation plans, and work with internal stakeholders to assign remediation tracking responsibility 3. Strong business and communication skills 4. Experience in driving meetings with stakeholders 5. Provide advisory and consulting to client on new trends and challenges in enterprise risk management area 6. Experience in design and development of information security policies, standards, and guidelines 7. Experience on SIG (shared assessments), ISO 27001, NIST framework, SOC 1, SOC2, ISO 27001 and HIPAA 8. Lead and drive meeting with top management 9. Design / modify Contract security language / security clauses 10. Co-ordinate and negotiate security clauses with Procurement team and Supplier 11. Experience on GRC platforms 12. Client interface for understanding the IT Governance, IT Risk & Compliance Management Controls as applicable to Infrastructure operations 13. Well versed and hands-on experience for establishing processes, controls and audits of compliances like HIPAA, CFR, PCI DSS & SOX ITGCs. 14. Documentation of as-is IT & Risk management Controls as they are currently being executed in client environment and ensuring that the same controls are followed and implemented in service delivery operations 15. Work with the client & technical teams for change request on any risk or control implementation as well as governance process 16. Participate in internal as well as external regulatory as well as IT security audits. Understand IT Risks and define audit & governance mechanisms for assets, processes & physical security

About The Role : Job Title Vendor Risk Manager AVP LocationPune, India Role Description Vendor Management is responsible for the service relationship with a vendor on a transactional level and for transactional vendor related support tasks. Work includes Managing or performing strategic sourcing work to manage risk and optimize the value/resilience of materials/services sourcing including Establishing supplier relationship management processes and continuous improvement goals/programs Negotiating contracts and coordinating supplier integration plans with internal clients Monitoring market dynamics that impact materials/services availability and/or pricing Partnering with internal clients to identify sourcing needs, develop buyer/market profiles, identify marketplace trends, and define acceptable service levels What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Y our key responsibilities Vendor Risk Management (VRM) is the framework/process for identifying and managing the risks arising from working with third-party vendors (internal and external). All vendor relationships and transactions are assessed and those carrying higher inherent risks are subject to a more granular assessment. SO (Service Owner) role is responsible for owning the service and providing comprehensive details, responding to tasks in the VRM process when necessary. Your role Taking end-to-end ownership of each assigned Vendor Risk Management (VRM) Engagement Requests for an engagement as SO. Follow-up with Vendors point(s) of contact for responding to all Control questions raised during VRM process for an engagement. Escalations to be triggered as required. Attending all trainings and workshops defined as mandatory by internal Third-Party Risk Management (TPRM) teams. Keeping yourself familiarized and updated on all latest Policies and Procedures published by the various Risk Management Functions within Deutsche Bank. Keeping yourself familiarized and updated on control requirements of the latest Security Control for Third Parties (SCTP 4.0) and explain the same to vendors to ensure that appropriate evidence is shared by the vendors, which satisfy the Control requirement. Ensuring appropriate due diligence before Third Party Management (TPM) review initiation and familiarity with Risk Type Controller (RTC) requirements in advance Providing comprehensive and transparent details about the owned Engagement Request in the TPM platform in a timely manner Ensuring that the data provided about the owned Engagement Request are kept up-to date, in line with the TPM Key Operating Documents Performing VRM Process tasks when prompted by TPM and/or RTCs Notifying the relevant RTCs whenever gaps are closed, deadlines cannot be met or full mitigation is not possible, Remediating gaps identified for the Engagement Request and implementing mitigation plans, Reporting gaps by raising Self-Identified Issues (SII) in an engagement and follow-up for closure/mitigation on a timely basis, in line with the remediation plans shared, Addressing unmitigated risks/gaps in accordance with the Operational Risk Management Policy, TPRM Policy, TPRM Procedure and TPM Key Operating Documents, Ensuring the service does not commence before the VRM review is completed, Ensuring that no contract is signed, or service is delivered to any Deutsche Bank Legal Entity for which Compliance deemed the service prohibited, Ensuring adherence to contractual obligations by Vendor Ensuring compliance to Regulatory guidelines Timely submission of accurate data to Regulators. Liaising with Divisional Vendor Management Office (DVMO) resources for closing any open points related to the engagement requests, Ensuring all strategies and plans eg. Termination Exit Plans, Termination Exit Strategies, etc. related to an engagement are documented, agreed between the relevant stakeholders, and reviewed / updated on defined intervals. Ensuring that Monthly, Quarterly Governance meetings with appropriate stakeholders are conducted and the details documented in line with the SDM requirements, Ensuring monthly feedback / review is completed for all engagements in scope and the details are documented in the designated portals in line with relevant policies. Ensuring annual audits are budgeted, planned, and conducted for the identified vendors and follow-up to ensure all open findings are remediated by vendor. Your skills and experience Excellent skills and experience / technical knowledge in handling data/information security audits in Banking / Financial environments Minimum 10 years Knowledge and experience with handling / responding to controls around IT Security audits, Financial Audits eg. SOX IT (SOC) audits, ISO 27001:2022, PCI-DSS, etc. Working with multiple teams to remediate open findings identified during internal / external audits including regulatory audits, IT Security audits, etc. Familiar with security requirements for Banking applications and environments, A great team player who is comfortable in working and coordinating with diverse people from both internal as well as vendor teams, Excellent communication and mentoring skills, Experience with distributed, multi-locations teams, Able to inspire and motivate people and multi-disciplinary, self-organized teams, Any Certifications in areas of Information Security or Vendor Management is a plus, Professional level of English is mandatory. How we'll support you Training and development to help you excel in your career. Coaching and support from experts in your team A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs. About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

Role & responsibilities We are seeking enthusiastic & technically savvy professionals to support the current team with the execution and management of engagements in our current and future Client portfolio. Information Security Governance, Privacy and Compliance and Security Assessment experience with a focus on IT and IS Risk Assessments and program reviews / establishment. Understanding on ISO 27001/ NIST 800-53/ PCI-DSS Interacting with onshore engagements and clients directly performing Vendor or Third-party security assessments Business Continuity planning and Disaster Recovery implementation and review experience. Perform remote assessments independently. Independently write reports of the assessments based on the discussions during remote reviews. Perform second level quality review of the reports written by peers/junior resources.

Title: Lead - Information Security GRC (PCI DSS) Location: Gurgaon, India Type: Hybrid (work from office) Job Description Company Overview Fareportal is a travel technology company powering a next-generation travel concierge service. Utilizing its innovative technology and company owned and operated global contact centers, Fareportal has built strong industry partnerships providing customers access to over 600 airlines, a million lodgings, and hundreds of car rental companies around the globe. With a portfolio of consumer travel brands including CheapOair and OneTravel, Fareportal enables consumers to book-online, on mobile apps for iOS and Android, by phone, or live chat. Fareportal provides its airline partners with access to a broad customer base that books high-yielding international travel and add-on ancillaries. Fareportal is one of the leading sellers of airline tickets in the United States. We are a progressive company that leverages technology and expertise to deliver optimal solutions for our suppliers, customers, and partners. FAREPORTAL HIGHLIGHTS: Fareportal is the number 1 privately held online travel company in flight volume. Fareportal partners with over 600 airlines, 1 million lodgings, and hundreds of car rental companies worldwide. 2019 annual sales exceeded $5 billion. Fareportal sees over 150 million unique visitors annually to our desktop and mobile sites. Fareportal, with its global workforce of over 2,600 employees, is strategically positioned with 9 offices in 6 countries and headquartered in New York City. Job Description and Responsibilities: Conduct PCI DSS gap assessments and audits to identify non-compliance areas. Develop, review, and update PCI DSS compliance policies and procedures. Perform risk assessments related to PCI DSS and other frameworks such as ISO 27001, NIST CSF, and CIS CSC. Collaborate with internal teams and external vendors to implement security controls and remediate compliance gaps. Conduct IT and application risk assessments to identify and mitigate vulnerabilities. Perform IT control reviews and provide recommendations to strengthen security practices. Assist in creating comprehensive compliance reports and documentation for stakeholders. Assist in the development of security training and awareness programs. Stay updated on PCI DSS requirements and other industry regulations, ensuring the organization is aligned with current standards. Provide guidance on cloud security assessments and data protection best practices Required Skills & Qualifications: 3+ years of experience in conducting PCI DSS assessments, compliance, or IT audits. BS/MS/BE/BTech/MBA in technology-related or information security curriculum Prior experience in cyber security programs, audits, assessments, risk, remediation, or cyber security compliance management Required 4+ years of relevant experience in information security domain Knowledge on PCI DSS, ISO 27001, NIST CSF, and other security standards. Experience with IT security programs, IT control reviews, and application risk assessments. Familiarity with cybersecurity regulations and frameworks Detail-oriented, ability to consistently provide high-quality products that are concise, thorough and accurate; Strong attention to detail with an analytical mind and outstanding problem-solving skills. Professional certifications like PCI DSS QSA, ISO 27001 LA or LI preferred. Good communication and persuasive skills Work independently Disclaimer This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. Fareportal reserves the right to change the job duties, responsibilities, expectations or requirements posted here at any time at the Companys sole discretion, with or without notice.

Job Purpose The objective of the Third-Party Risk Management (TPRM) team is to promote, facilitate and support consistent and effective vendor risk management across the enterprise. The Analyst, TPRM role supports activities associated with managing vendors and third-party relationships. This team member will work with all levels of staff including senior management to mitigate vendor risks in alignment with company risk tolerances. This team member will manage on-boarding activities, support periodic vendor reviews, continuous monitoring, vendor decommissioning and assist with vendor risk reporting to ensure Intercontinental Exchange (ICE) maintains healthy vendor relationships.? Duties and Responsibilities Manage a portfolio of vendors across several business lines, across several risk domains Assess vendor risk, perform appropriate due diligence, and ensure completeness of vendor documentation Serve as a liaison between the vendor, business and supporting teams (i.e., IT, legal, procurement, accounting, and operations) Collaborate with business partners to maintain a clear documentation trail of vendors passing through the VM (Vendor Management) Lifecycle Responsible to produce internal vendor management status reports and metrics Facilitate resolution of escalated vendor-related issues related to on-boarding, decommissioning or risk assessing, monitoring and performance Maintain a thorough understanding of relevant internal policies and external regulatory requirements applicable to ICE vendor risk management Knowledge and Experience Minimum 6+ years of experience in Third Party Risk Management, compliance, security audit management, supply chain management, or other directly related experience. Direct experience in TPRM or compliance highly desirable Experience working for banking, insurance, or information technology company a plus CRVPM or CTPRP highly desirable Demonstrated leadership in vendor management and can be viewed as VM expert Demonstrated competency working well within a team and across departments Strong interpersonal and communication skills, both verbal and written Proven record of accomplishment in taking ownership, driving results in a fast-paced environment Self-starter with high degree of initiative and the ability to manage deadlines Strong organizational skills with the ability to multitask and prioritize while maintaining close attention to detail. Basic knowledge of and experience with legal contracts, contract negotiations and service agreements Good working knowledge of Microsoft Office products, particularly Excel, Power Point and Visio

Job Description Candidate should have key understanding on technology, IT and governance aspects from Cyber Security perspective Candidate should have understanding on performing gap assessment on organizations Cyber security landscape primarily to prevent them from cyber security threats Candidate should have exposure to design, development, implementation and maintenance information security framework aligned to framework like ISO 27001:2013 Relevant Experience in Information security, vendor/ supplier/ third party risk assessment, Technical Skills Expertise in cyber security including standards such as ISO27001,PCI-DSS, ISO22301, data privacy etc. Knowledge of concepts such as vendor risk profiling, country risk assessment, outsourcing/ technology regulations some exposure Strong Auditing skills is desired Strong problem solving and logical approach skills Excellent written and verbal communication skills Consistent display of technical proficiency Ability to work well in teams Ability to work under pressure stringent deadlines and tough client conditions which may demand extended working hours Willingness to travel within India or abroad for project/assignments. Demonstrate integrity, values, principles, and work ethic and lead by example

The TPRM office is looking to hire a candidate with 1 year of relevant experience (Max. 2 Yrs). Below is a summary of the key responsibilities and qualifications for the role. Role: TPRM/Vendor Risk Assessments Work Location: Hyderabad Walk-In Location: Hyderabad Experience Required: 1 to 3 years Date: Wednesday, 13th August 2025 Interview Mode: Face-to-Face (In Person) Important: To participate, filling out the application form is mandatory. Interested? Register here https://lnkd.in/gncvPr49 Key Responsibilities : Conduct initial and ongoing risk assessments of third-party vendors. Collaborate with internal stakeholders (Legal, Procurement, IT Security) to ensure vendor compliance. Maintain accurate records of assessments and risk ratings in the TPRM platform. Review vendor documentation including SOC reports, security questionnaires, and compliance certifications (Preferrable). Requirements : Minimum 1 to 3 years of experience in TPRM, IT risk, compliance, or vendor management. Strong analytical and very good communication. Proficiency in Microsoft Office; experience with GRC or TPRM tools is a plus.

About the job At Sanofi we chase the miracles of science to improve peoples lives. We are dedicated to making a positive impact on the lives of the patients and families we serve, and we accomplish our goals through world-class research and with the compassion and commitment of our employees. As we continue to transform the practice of medicine, the next chapter of Sanofis Play to Win strategy will require a focus on delivering transformation and simplification of our core processes, optimizing resource allocation and deployment to fuel business growth and investment in science. To facilitate this transformation, a new Business Operations Business Unit is being established, bringing together existing business service activities, and driving further expansion of centralized services at scale into a global unit, with a focus on driving simplification, efficiency, and productivity. This new Business Unit will enable the delivery of best-in-class business support capabilities across the organization, incorporating and engaging disparate teams from across areas such as R&D, M&S, the Corporate Functions and GBUs into new global Service Delivery Towers with initial services spanning Commercial, Finance, Procurement and People & Culture. Reporting to the Head of Procurement Risk Assurance, the Risk Assurance Analyst plays a critical role in assessing and managing risks. The incumbent supports the development and execution of strategies to ensure sustainable supplier relationships align with Sanofi's business objectives. Responsibilities: Risk Assessment : Conduct vendor risk assessments, ensuring third-party services and products align with internal risk and security policies. Regularly review vendor performance and risk exposure, working with procurement and legal teams as necessary. Compliance : Collaborating with procurement teams to drive adherence and enhance controls across the E2E Procurement lifecycle. Ensure compliance with relevant industry standards and regulatory requirements. Reporting and Data Visualization: Generate regular reports and dashboards for TPRM process and Supplier risk factors, compliance metrics, and key performance indicators for stakeholders and leadership. (Power BI, COUPA Analytics preferred) Collaboration: Work closely with Procurement, GBUs and Risk Domain Experts to integrate risk management practices into the supplier relationship lifecycle. Continuous Improvement: Identify opportunities for enhancing risk management processes, implementing best practices to drive positive outcomes. About you: Experience: 3 - 5 years of experience in Third Party Risk management, conducting due diligence, Hands-on experience with risk management tools (e.g., CRA, Ariba, OneTrust) and frameworks (e.g., ISO 27001, GDPR) Experience in healthcare and/or life-science industry. Familiarity with procurement processes and category management principles. Global or international experience and ability to work with a diverse team. Soft skills & Technical skills: Strong analytical and problem-solving skills, with attention to detail. Excellent Data Visualization and Dashboarding Skills. Effective communication skills to convey complex risk insights. Collaborative mindset with the ability to work effectively in a team environment. Ability to communicate complex risk concepts to non-technical stakeholders. Ability to assess and interpret security-related clauses in third-party contracts. Education: Bachelors degree in Information technology, Business, Cybersecurity, Risk Management, or a related field. Languages: Fluent in English (spoken and written) Company : sanofi Location : Hyderabad Contract for 1 year share resumes to nedunuri.saikumar@manpower.co.in

In Scope of Position based Promotions (INTERNAL only) Job Title: TPM External Engagement Manager Role Description Third Party Management (TPM), part of Deutsche Banks Global Procurement function, is responsible for the processes that manage risks related to the engagement of third party vendors and outsourcing. TPM has been through a large-scale transformation program to change the approach, process and technology used for the vendor risk management process. In parallel, there has been a significant increase from regulators and auditors on vendor risk and the way in which it is managed within DB. Your key responsibilities Given the increased focus on vendor risk and the establishment of a Regulatory Engagement team within TPM, additional support is required to drive and co-ordinate a range of activities, falling into three main areas, Regulatory Analysis, Operational Management, and Content Production: Regulatory Analysis Advisory Build and drive: Create and maintain and up to date analysis of DBs compliance against Third Party Regulations Run the Regulatory Governance Forum, a governance meeting across first and second lines of defence (Global Procurement, TPRM, Legal, Compliance), which includes the below activities: Track the progress of new regulations against the banks Regulatory Compliance Management processes including: Understanding the key owners for each stage of in flight regulations Track and report the progress Escalate report risks and issues via the Regulatory Governance Forum Create Points of View papers for internal audiences for new and emerging regulations and consultation papers Operational Management: Be the primary contact for TPM issues for Asia Pacific region (and other regions as necessary), including all regulatory requests, Outsourcing governance forums and BAU questions. Relay feedback from APAC region into relevant global governance forums, to drive improved outcomes for DBs third party risk management approach Track and report on progress of Management of a communications plan to implement External Engagement activities Contributing to the development of processes to deliver effective management of Regulatory requests from regional, business and Regulatory Management Group Office stakeholders. Development and production of a reporting framework for Regulatory engagement. Creation and management of a repository of Regulatory engagement, peer benchmarking and external communication activity. Development and maintenance of a KOD to document External Engagement procedures. Developing strong relationships with key internal regulatory external audit facing functions Content Production: Responding to business and RTC requests for information to support regulatory audit responses regarding TPM VRM processes, providing high quality content to protect and enhance the reputation of the Banks third party risk management activities. Sourcing and developing credible content to support regulatory engagements, senior management communications and ongoing business and regulatory requests. Work closely with the External Engagement Lead and other stakeholders to agree and implement regular MI to support the TPM story to regulators. Develop deep functional understand of the Third Party Risk Management process and associated platform Functionality This role reports directly to the Lead, TPM External Engagement. Your skills and experience Deep understanding of key global third party regulations (MaRisk, EBA Outsourcing Guidelines, Interagency Guidance, PRA SS1/21, PRA SS2/21, DORA, MAS, HKMA, etc) Ability to influence and build collaborative relationships with a broad range of stakeholders Understanding of the third party risk management process Strong project management and organisational skills Ability to develop and deliver credible content Strong communication skills Self-starter, with the ability to work autonomously and drive engagement Strong attention to detail Ability to challenge the current operating environment Ability to identifying innovative value added solutions

Process Unity Application expert for the design and development within Process Unity and its integration with different applications supporting software to meet TPRM business requirements. Your key responsibilities Must have good knowledge of TPRM process i.e., process from sourcing/screening till the Exit plan. ProcessUnity Application functional expert should coordinate the design and development with in ProcessUnity and its integration with different applications supporting software to meet business requirement. SQL & Configuration expert having knowledge to write query for Changes build in TPRM application Support Operational Readiness Records for maintaining the regulatory compliance & Audit Requirements Assessments and Control function for Third party risk management process containing standard/high risk to low-risk process. Proven experience in overseeing Change Management processes with planning, testing, implementing changes ensuring seamless transitions. Develop and maintain comprehensive documentation on Change Management/Incident Management/Audit Requirements/Process Frameworks/ RCA etc. with clear framework reducing ambiguity and enhance team efficiency. Handle system administrator role, working on Service Requests and Jira changes. Utilize incident data to root causes and pattern, driving continuous improvement in process and application stability. Integration between different applications and maintenance of architecture layouts. Strong Stakeholder relationship as acting a layer between core IT integration and business to meet expected requirements. Maintain transparent and open lines of communication with stakeholders keeping informed about project progress, changes, and potential risk. Support the collection, analysis and production metrics on process data for KPIs to find out improvements. Your skills and experience Overall, 6-9 years of experience 3+ years experience on ProcesUnity Development

Summary The Governance and Compliance Cybersecurity Analyst will perform a critical role in providing information security governance and compliance, including assessments and compliance program management and assurance. The Governance and Compliance Cybersecurity Analyst will work closely with both IT and Business teams to assess and implement the controls necessary to ensure the protection of information systems. Primary Job Functions: Participates in technical design. Will assist with the development of specifications, under limited guidance. Troubleshoot applications problems and address the issues with appropriate teams with limited support. Effectively identifies and escalates issues as appropriate. Collaborate with team on definition of test criteria, building of test scripts/automation and execution of the same. Responsible for performing control development and design with assistance from senior team members Responsible for performing control analysis with limited assistance from senior team members Develops assessment deliverables and actively participates in all assessment activities including assessment analysis Assists in providing guidance/consultancy with assistance of more senior team members. Tests own work, and contributes readily to the development of test plans. Responsible for managing the data within tool and performing complex analysis within technologies and communicating results to internal team management Research and understand current and future technology trends in their preferred domain. Work with business to understand desired business outcomes and how technical solutions contribute to those solutions. Support and ensure company security policies and procedures are administered and followed throughout the Company. Assist in the development and review of security compliance training. Demonstrate the Companys Core and Growth Values in the performance of all job functions. Education: Bachelor's Degree in Information Security, Computer Science or Information Technology or related field of discipline or equivalent work experience, Required. Experience: Minimum of 5 years of experience. TPRM is required. Licenses or Certifications: CISSP, CISA, CIPP, CCSP, or SANS preferred. Knowledge, Skills and Abilities: Demonstrate solid working knowledge and understanding of compliance/cybersecurity control domains Working knowledge of multiple compliance obligations Understanding of technical architecture, application landscape, and IT environment Possesses basic understanding of the retail or manufacturing industry Knowledge and understanding of control frameworks and information systems auditing Strong attention to detail Excellent verbal and written communication skills Excellent interpersonal skills Effective time management and organizational skills Work independently as well as in a team environment Document management system Analytical and problem solving skills Maintain confidentiality Handle multiple projects simultaneously within established time constraints Proficient computer skills, including experience with Microsoft Office Suite, internet Perform under strong demands in a fast-paced environment Work professionally with customers and co-workers to efficiently serve our customers, treating both with enthusiasm and respect Display empathy, understanding and patience with employees Respond professionally in situations with difficult employee issues or inquiries If you feel you have the necessary skill sets and are passionate about the job, please send your profile to vthulasiram@ashleyfurnitureindia.com

Job Purpose The objective of the Third-Party Risk Management (TPRM) team is to promote, facilitate and support consistent and effective vendor risk management across the enterprise. The Analyst, TPRM role supports activities associated with managing vendors and third-party relationships. This team member will work with all levels of staff including senior management to mitigate vendor risks in alignment with company risk tolerances. This team member will manage on-boarding activities, support periodic vendor reviews, continuous monitoring, vendor decommissioning and assist with vendor risk reporting to ensure Intercontinental Exchange (ICE) maintains healthy vendor relationships.? Duties and Responsibilities Manage a portfolio of vendors across several business lines, across several risk domains Assess vendor risk, perform appropriate due diligence, and ensure completeness of vendor documentation Serve as a liaison between the vendor, business and supporting teams (i.e., IT, legal, procurement, accounting, and operations) Collaborate with business partners to maintain a clear documentation trail of vendors passing through the VM (Vendor Management) Lifecycle Responsible to produce internal vendor management status reports and metrics Facilitate resolution of escalated vendor-related issues related to on-boarding, decommissioning or risk assessing, monitoring and performance Maintain a thorough understanding of relevant internal policies and external regulatory requirements applicable to ICE vendor risk management Knowledge and Experience Minimum 6+ years of experience in Third Party Risk Management, compliance, security audit management, supply chain management, or other directly related experience. Direct experience in TPRM or compliance highly desirable Experience working for banking, insurance, or information technology company a plus CRVPM or CTPRP highly desirable Demonstrated leadership in vendor management and can be viewed as VM expert Demonstrated competency working well within a team and across departments Strong interpersonal and communication skills, both verbal and written Proven record of accomplishment in taking ownership, driving results in a fast-paced environment Self-starter with high degree of initiative and the ability to manage deadlines Strong organizational skills with the ability to multitask and prioritize while maintaining close attention to detail. Basic knowledge of and experience with legal contracts, contract negotiations and service agreements Good working knowledge of Microsoft Office products, particularly Excel, Power Point and Visio .