221 Tprm Jobs - Page 8

Job Role & responsibilities:- Develop and maintain Security Controls relating to 3rd Party suppliers. Carry out reviews/audits/risk assessments to ensure Third Parties are compliant to inhouse Security standards. Align 3rd Party security assurance to the group standards. Ensure Contracts include security schedules. Own relationships with third party suppliers and follow up on unresolved issues. Support, review and quality assure assurance Reporting and Dashboard Assess and develop a supplier information risk tiering to rate suppliers based on criticality of services to be delivered Engage with wider stakeholders to understand and gather supplier strategy and risk management requirements. As...

Role & responsibilities Required Qualifications: • Bachelors/Master’s degree in Information Security, Business Administration, or related field. • 7+ years of experience in Third-Party Risk Management, with at least 2–3 years in a functional implementation role. • Proven experience implementing TPRM solutions using ServiceNow (or similar GRC platforms like One Trust, Process Unity, Archer). • Strong knowledge of third-party risk lifecycle stages and regulatory frameworks relevant to TPRM. • Experience creating and configuring risk assessments, scoring models, workflows, and reporting tools. • Ability to communicate effectively with both technical and non-technical stakeholders. • Excellent a...

Position Purpose The candidate for the Third Party Risk Management role within the BNPParibas Operational risk team is responsible for providing independent oversight and strategic 2LOD guidance on the Third Party Risk Management domains across both direct and indirect areas of responsibility for the CIB APAC operating entities. Responsibilities Direct Responsibilities Be responsible for supporting the development and implementation of a CIB wide Third Party risk management program including ICT and non-ICT third parties. Successful candidate will have exposure to developing and implementing risk management programs in global organizations, with robust knowledge of technology, risks, archite...

Role & responsibilities Professional responsibilities for this manager position include but are not limited to: Applying internal control principles and technical knowledge, including Application Controls and IT General Controls; Developing and/or supervising the execution of detailed audit work plans for the IT audit component of the IA team through resource allocation, stakeholder coordination and quality review; Managing the identification of key risks and controls, including evaluation of control design; Evaluation of operational effectiveness of IT System Controls, utilizing appropriate testing techniques and professional skepticism; Providing regular status reports to IA management and...

This role will be part of TPRM process which would be part of Billing and Invoicing. Expectation from this role is to have an end to end understanding of TPRM. The role includes a considerable share of project work with interfaces to all involved departments. What well offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Your key responsibilities Implement and perform daily BAU of Third-Party Risk Management (TPRM) Gateway Control and Oversight processes Support Global Invoice Verification process centralization in cooperation with GF&B and SAP transformation project Check TPRM documentation Ensure correctness of invoice details and ensure compliance ...

About the Role: We are seeking a highly experienced and strategic Security Architect with a strong focus on Governance, Risk, and Compliance (GRC) and Third-Party Risk Management (TPRM). This role is critical in enhancing our security posture, particularly within cloud and SaaS environments, and ensuring robust vendor and supplier security. The ideal candidate will possess deep security architecture expertise, strong analytical capabilities, and a proven ability to influence stakeholders across all levels of the organization, especially within the banking/finance sector. Key Responsibilities: Security Architecture & Strategy: Influence domain architecture and collaborate with business/techno...

Job description KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. Role detail 4 to 8 years of experience in assurance, information security, vendor/ supplier/ third party risk assessment Expertise in cyber security including standards such as ISO27001, PCI-DSS, ISO22301, privacy etc. Knowledge of technical domains such as network security, cloud security, application security, con...

Proficient in Risk assessment and analysis methodologies Risk management software and tools proficiency Knowledge of regulatory (GDPR,PCI-DSS, Anti-Money Laundering (AML)) requirements and compliance standards. Understanding of insurance principles and coverage. Industry-specific certifications (CRISC, CISM, ISO 27001:LA) Project management expertise. A thorough understanding of: ISO 27001 (Information Security Management) NIST Cybersecurity Framework SOC 1 and SOC 2 Standards

Job description The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working closely with internal teams including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Below are the key responsibilities: Conduct Cybersecurity Assessments: Perform comprehensive security assessments of third-party vendors, including evaluating their security policies, controls, and practices. Identify potential risks and vulnerabilities in vendor environments and provide recommendations for remediation. Risk Analysis and Reporting : Analyze assessment results to determine the level of risk associated w...

Job description The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working closely with internal teams including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Below are the key responsibilities: Conduct Cybersecurity Assessments: Perform comprehensive security assessments of third-party vendors, including evaluating their security policies, controls, and practices. Identify potential risks and vulnerabilities in vendor environments and provide recommendations for remediation. Risk Analysis and Reporting : Analyze assessment results to determine the level of risk associated w...

Job description The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working closely with internal teams including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Below are the key responsibilities: Conduct Cybersecurity Assessments: Perform comprehensive security assessments of third-party vendors, including evaluating their security policies, controls, and practices. Identify potential risks and vulnerabilities in vendor environments and provide recommendations for remediation. Risk Analysis and Reporting : Analyze assessment results to determine the level of risk associated w...

Role: Senior Associate Third Party Risk Management (TPRM) About the Company: Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won t just imagine the future-you ll create it. About the Job: The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working clos...

Role: Senior Associate Third Party Risk Management (TPRM) About the Company: Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won t just imagine the future-you ll create it. About the Job: The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working clos...

Functional Responsibilities: Collaborate with business stakeholders to gather and document detailed requirements across risk domains (ABAC, Cybersecurity, Privacy, R&D, EHS, etc.) Translate business needs into functional specifications and user stories Design and validate workflows for risk assessments, approvals, and escalations Support the configuration of front-end questionnaires and logic-based risk triggers Assist in defining KPIs, reporting needs, and audit trail requirements Technical Responsibilities: Implement and configure the ServiceNow Risk Management module Lead or support API integrations with tools such as: OneTrust, Archer, CyberGRX, Security Scorecard Veeva Vault, Rapid Rati...

The GRC (Governance, Risk, and Compliance) Cyber Security Consultant is responsible for providing expert guidance and support in the areas of cyber security risk management, compliance, and governance. This role involves working closely with clients to assess their current cyber security posture, identify vulnerabilities and risks, and develop strategies to mitigate those risks. Responsibilities: 1. Assess clients' cyber security framework and identify gaps in compliance 2. Develop and implement comprehensive cyber security policies and procedures 3. Conduct risk assessments to identify potential threats and vulnerabilities 4. Create risk mitigation plans and provide recommendations for impr...

Conduct third party risk assessments in alignment with company security policies and industry standards Perform on site assessments of vendors to identify opportunities for improvement Provide input and aid in the development of policies focused on the security of third party business processes Foster relationships and influence the behavior internal teams and external parties Develop and maintain supplier risk and control monitoring plans, performing monitor activities and analysis of evidence to determine controls are operating effectively Complete monitor and control tasks triggered by supplier Tier and Third Party Interaction Model Collaborate with the line of business stakeholders to de...

Designation: Information Security Consultant Job Code: JD2208396 Location: Bangalore Number of Vacancies: 1 Total Experience: minimum 1 year Shift: General Reports to: CTO Qualification: BE/B.tech/Bsc/BCA/M.Tech/ME Certification: ISO 27001:2013 Lead Implementer (preferable) Job Description: IT Security Consultant , with overall 3+ years of professional experience with areas of expertise in Governance Risk & Compliance (GRC), Third Party Risk Management (TPRM), Information Systems Audits including ISO 27001, Data privacy, GDPR, ITGC Assessments, Control testing, Information Security, ISO 27001 Implementation, SOX and SOC 2, IT Risk assessments on application and infrastructure. Information Te...

#Greetings from IDESABS!! Overall Budget Tracking and Reporting - Publish Budget report (Budget utilization tracking (month-on-month)) (Project budget accountability with Project Manager) - Expense tracking, Expense gaps management, Expense adjustments - Expense validation (planned vs. actual vs. adjusted) - Highlighting discrepancies / over-spends - Risk management (raise, maintain, monitor, and mitigate) for budget Vendor/Supplier Management - Support internal contract management (eg: TPRM) & Legal Clearance process (with PM) - Support for Vendor/Supplier Contracting and e-Memo process - Support for Vendor/Supplier Invoice management (leaves in timesheet, invoices). (PM to review the times...

Dear Applicants, Greetings from Teamware Solutions! Position: Third Party Risk Management Experience: 4-6 Years Location: Mumbai (Apply if you are in western line) Notice Period: Immediate Joiners Interested candidates can apply to the given Email ID: greeshma.t@twsol.com Job Description:- Develop a strong understanding of outsourcing regulatory requirements as they relate to outsourcing and how the Firm must meet those requirements Shepherd Intake Forms through the multiple project phases and ensuring the agreed Service Level Agreements (SLAs) and go live deadlines are met Provide project management support for the entire lifecycle of an engagement, to ensure that all project related delive...

Role & responsibilities Skillset : SDLC , TPRM Assessments & Cybersecurity (Major requirements or primary skillset) Strong knowledge of best practice processes and technologies across security domains especially related to identity and access management, network security, logging and monitoring. Knowledge of at least one cloud services platform (Amazon Web Services, Microsoft Azure, Google). Job Description: Security, Risk and Technology Strong knowledge of financial services and insurance industry regulations around security and privacy including the Gramm-Leach-Bliley Act, State Privacy Laws, Health Insurance Portability and Accountability Act (HIPAA), Fair Credit Reporting Act, SEC Rules ...

The Senior Resilience Analyst Third-Party is a versatile and innovative risk professional who can support all aspects of Resilience, including Business Continuity, Disaster Recovery and Corporate Crisis Management. You will be responsible for supporting the implementation of a global, enterprise level and sustainable resilience framework in conjunction with a wide range of business stakeholders. About the Role: As the Senior Resilience Analyst, you will: Define the standard of adequate contingency plans for critical third- parties Wholistically pull the together the internal and external plans in case of third-party disruption Work with critical TR stakeholders to inform them of the Resilien...

Understanding the requirement to conduct comprehensive information security risk assessment of 3rd party service provider (TPRM) who will provide new services/applications Plan and conduct periodic assessment of existing vendors as per organizations

Experience: Minimum of 2-4 years of experience in third-party risk management, information security, or audit programs. Experience with Venminder and other TPRM platforms. Preferred certifications include CISSP, CRISC, CISM, CISA, CTPRP, ISO, SSAE Degree in Management, Finance, Business, Computer Science, Information Systems, or a related field. Skills: Knowledge of industry regulations and compliance standards. Ability to conduct thorough risk assessments and develop mitigation strategies. Strong attention to detail and organizational skills. Strong data entry skills. Excellent communication, customer service and interpersonal abilities. Will be interacting with many areas of the business a...

Role & responsibilities About the job At Sanofi we chase the miracles of science to improve peoples lives. We are dedicated to making a positive impact on the lives of the patients and families we serve, and we accomplish our goals through world-class research and with the compassion and commitment of our employees. As we continue to transform the practice of medicine, the next chapter of Sanofis Play to Win strategy will require a focus on delivering transformation and simplification of our core processes, optimizing resource allocation and deployment to fuel business growth and investment in science. To facilitate this transformation, a new Business Operations Business Unit is being establ...

Step into a leadership role as a Controls Assurance Manager , driving risk and compliance strategies across the business. You will conduct control testing, oversee issue assurance, and collaborate with senior stakeholders to enhance governance and security frameworks. Location : Mumbai/Pune Your Future Employer: Join a global leader in enterprise security and technology, providing robust governance, risk, and compliance (GRC) solutions. Be part of a dynamic team that ensures regulatory excellence and operational resilience. Responsibilities: Performing control testing across Third Party Risk Management, Operational Resilience, Data & Privacy. Overseeing and supporting the Technology controls...