Senior Third-Party Security Risk Analyst
Bangalore, India
Fluence
Fluence is a global market leader in energy storage products and services, and cloud-based software for renewables and storage assets.
Job Summary:
We value the diversity in thought and experience of our coworkers and customers. Through honest, forthcoming, and respectful communications we work to ensure that Fluence is an inclusive and welcoming environment for all.
The Senior Third Party Security Risk Analyst will be responsible for managing and mitigating security risks associated with third-party vendors. This role involves conducting thorough risk assessments, ensuring compliance with security standards, and collaborating with various departments such as Global Procurement, Legal, Internal Audit to enhance our third-party risk management framework.
We value the diversity in thought and experience of our coworkers and customers. Through honest, forthcoming, and respectful communications we work to ensure that Fluence is an inclusive and welcoming environment for all.
The Senior Third Party Security Risk Analyst will be responsible for managing and mitigating security risks associated with third-party vendors. This role involves conducting thorough risk assessments, ensuring compliance with security standards, and collaborating with various departments such as Global Procurement, Legal, Internal Audit to enhance our third-party risk management framework.
Key Responsibilities:
- Conduct comprehensive security risk assessments for third-party vendors (Direct, Indirect, Logistics and other types of suppliers/vendors.
- Develop and implement third-party risk management policies and procedures.
- Monitor and report on third-party compliance with security requirements.
- Collaborate with internal teams to address and mitigate identified risks.
- Review and negotiate security-related clauses in vendor contracts.
- Prepare and present reports to senior management on third-party risk activities and findings.
- Stay updated on industry trends and regulatory changes affecting third-party risk.
- Develop automation and dashboard to report on third-party risk activities and identified risks.
- Bachelor’s degree in Information Security, Risk Management, or a related field.
- Minimum of 5 years of experience in security risk management, with a focus on third-party risk.
- Strong understanding of regulatory requirements and industry standards (e.g., NIST, ISO 27001, IEC 62443 is plus
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- Relevant certifications such as CRISC, CISSP, or CISM are preferred.
- Familiar with Third Party Risk Management tools such as UpGuard, Service Now, Aravo, Archer
Qualifications:
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
1
1
0
Categories:
Analyst Jobs
Compliance Jobs
Tags: Automation CISM CISSP Compliance CRISC IEC 62443 ISO 27001 NIST Risk assessment Risk management RMF
Region:
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Systems Security Officer jobsInformation System Security Officer jobsSenior Cloud Security Engineer jobsInformation Security Manager jobsSenior Network Security Engineer jobsSenior Cybersecurity Engineer jobsInformation Security Specialist jobsSecurity Consultant jobsSenior Information Security Analyst jobsSenior Penetration Tester jobsSecurity Specialist jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsIT Security Analyst jobsPrincipal Security Engineer jobsInformation System Security Officer (ISSO) jobsStaff Security Engineer jobsCloud Security Architect jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Information Security Engineer jobsSystems Administrator jobsThreat Intelligence Analyst jobs
GDPR jobsSaaS jobsForensics jobsEncryption jobsMalware jobsTop Secret jobsEDR jobsSDLC jobsSplunk jobsRMF jobsSQL jobsIDS jobsIPS jobsBash jobsCompTIA jobsIntrusion detection jobsDoDD 8570 jobsDocker jobsThreat detection jobsFinance jobsITIL jobsOWASP jobsTCP/IP jobsTerraform jobsActive Directory jobs
VPN jobsCRISC jobsGIAC jobsUNIX jobsClearance Required jobsIT infrastructure jobsBanking jobsSANS jobsJavaScript jobsPolygraph jobsAnsible jobsHIPAA jobsJira jobsDNS jobsMITRE ATT&CK jobsSOX jobsOSCP jobsCCSP jobsData Analytics jobsMachine Learning jobsSOC 2 jobsSecurity strategy jobsSOAR jobsGCIH jobsCISO jobs