Assistant Manager | Third Party Risk Management | Pune | Cyber Strategy & Transformation

·      Lead and execute in-depth third-party risk assessments, aligned with ISMS, NIST or similar information security principles, for clients, meticulously identifying potential vulnerabilities and threats within their vendor ecosystem.

·      Collaborate closely with clients and multidisciplinary teams, including compliance, auditing, and regulatory experts, while leveraging performance analytics and risk analytics, to design and implement tailored risk management programs that align with business objectives.

·      Conduct risk assessments and audits covering people, processes, and technology, identifying gaps, risks, opportunities, and areas for improvement within policies, procedures, and standards of the vendor ecosystem.

·      Develop and implement tailored risk mitigation strategies and action plans in collaboration with client teams, addressing specific control frameworks for third-party risk management.

·      Continuously monitor and evaluate third-party vendor performance against customized risk and compliance metrics, providing timely insights, recommendations, and documented observations.

·      Execute third-party compliance and assurance initiatives, including due diligence, on-site audits, and contractual compliance audits, following industry best practices.

·      Engage in advanced contract analytics to optimize contracts and streamline processes.

·      Document information security risks, recommendations, and compensating controls in comprehensive assessment and audit reports, focusing on risks associated with third-party relationships.

·      Deliver insightful risk assessment reports to clients' senior leadership, facilitating informed decision-making and proactive risk management.