Third Part Risk Management Specialist - Cyber Security

Job Description : Third-Party Risk Management (TPRM) SpecialistLocation : Bangalore, Mumbai, PuneExperience : 3+ yearsIndustry : Cybersecurity, Risk ManagementPosition Type : Full-Time, Immediate Joiner PreferredJob Summary :We are seeking a highly skilled and experienced Third-Party Risk Management (TPRM) Specialist to join our team in Bangalore. The ideal candidate will have a strong background in cybersecurity, specifically in PCI DSS compliance and third-party risk assessments. As a TPRM Specialist, you will be responsible for evaluating and managing risks associated with third-party vendors to ensure compliance with our security policies and regulatory requirements.Key Responsibilities :- Third-Party Risk Assessments : Conduct comprehensive risk assessments of third-party vendors to ensure compliance with PCI DSS and other relevant cybersecurity standards.- Vendor Management : Maintain and update the third-party vendor inventory, ensuring all vendors are assessed regularly and risks are managed effectively.- Compliance and Regulatory Requirements : Ensure third-party vendors comply with relevant cybersecurity regulations and standards, including PCI DSS.- Risk Mitigation : Develop and implement risk mitigation strategies and action plans for identified third-party risks.- Cybersecurity Assessments : Conduct detailed cybersecurity assessments of third-party vendors, including reviewing security policies, procedures, and technical controls.- Reporting : Prepare and present detailed risk assessment reports, highlighting key risks and recommending mitigation measures to senior management.- Collaboration : Work closely with internal stakeholders, including IT, legal, procurement, and business units, to ensure effective third-party risk management.- Continuous Improvement : Stay updated with the latest cybersecurity trends, regulations, and best practices to continually improve the TPRM program.Qualifications and Skills :- Experience : Minimum of 3 years of experience in third-party risk management, cybersecurity assessments, and PCI DSS compliance.- Education : Bachelor's degree in Information Technology, Cybersecurity, Risk Management, or a related field. Relevant certifications such as CISA, CISSP, or PCI DSS QSA are highly desirable.- Knowledge : Strong understanding of third-party risk management frameworks, PCI DSS standards, and cybersecurity best practices.- Analytical Skills : Excellent analytical and problem-solving skills with the ability to identify and mitigate risks effectively.- Communication : Strong written and verbal communication skills, with the ability to present complex information clearly and concisely.- Attention to Detail : High level of attention to detail and accuracy in work.- Immediate Availability : Preference for candidates who can join immediately or within a short notice period. (ref:hirist.tech)