Job Description

Consultant, Cybersecurity - Third Party Risk Management, Chennai/Pune India
About this Opportunity
We are seeking a Third-Party Risk Management (TPRM) Consultant to join our Regional Information Security Office (RISO) team. This role offers an exciting opportunity to enhance third-party cybersecurity risk practices within a global organization
As a TPRM Consultant, you will play a critical role in assessing vendor risks, ensuring compliance with security standards, and driving initiatives that strengthen our third-party ecosystem globally.
Your Responsibilities

• Perform and execute third-party cybersecurity risk assessments for new and existing vendors.
• Manage assessment intake via the internal service desk, ensure assessments meet SLA targets, and perform regular follow-ups to drive timely closure.
• Validate vendor responses on security questionnaires, including AI-related capabilities and compliance with NIQ's AI governance process.
• Assess vendor data handling practices, regulatory compliance (GDPR, CCPA, PCI, HIPAA), and network access requirements.
• Classify vendors based on criticality, data sensitivity, and service impact; maintain accurate vendor tiering and scoring.
• Review and validate vendor security documentation, certifications, and compliance evidence (e.g., SOC 2, ISO 27001).
• Maintain and update vendor risk inventory, Risk Tracker, ensuring accurate classification and risk tracking.
• Support alignment with PDLC Intake and SAM processes for AI or non-standard vendor requests.
• Monitor and report on third-party risk metrics, trends, and remediation progress through dashboards and executive summaries.
• Drive continuous improvement initiatives for TPRM processes, tools, and automation. Support contract reviews for security clauses and compliance requirements. Work on PI tasks and agile methodology to improve efficiency.
• Evaluate vendors from a security and risk perspective; make informed decisions based on criticality and impact. Respond quickly to vendor-related security incidents; coordinate with internal security teams to contain and remediate risks.
• Engage in team meetings, share insights, and collaborate effectively with stakeholders. Communicate complex security concepts clearly to technical and non-technical audiences

Qualifications

• Bachelor's degree in Cybersecurity, Information Technology, Risk Management, or related field.
• 3-5 years of experience in Third-Party Risk Management, Vendor Risk Assessment, or Cybersecurity Governance.
• Strong understanding of security frameworks and standards (ISO 27001, NIST CSF, SOC 2, GDPR).
• Critical thinker with excellent analytical and problem-solving skills.
• Ability to work in agile environments and manage multiple priorities.
• Strong communication and stakeholder management skills.
• Proactive mindset with strong organizational skills and attention to detail.

Additional Information

• Enjoy a flexible and rewarding work environment with peer-to-peer recognition platforms.
• Recharge and revitalize with help of wellness plans made for you and your family.
• Plan your future with financial wellness tools.
• Stay relevant and upskill yourself with career development opportunities

NIQ may utilize artificial intelligence (AI) tools at various stages of the recruitment process, including resume screening, candidate assessments, interview scheduling, job matching, communication support, and certain administrative tasks that help streamline workflows. These tools are intended to improve efficiency and support fair and consistent evaluation based on job-related criteria. All use of AI is governed by NIQ's principles of fairness, transparency, human oversight, and inclusion. Final hiring decisions are made exclusively by humans. NIQ regularly reviews its AI tools to help mitigate bias and ensure compliance with applicable laws and regulations. If you have questions, require accommodations, or wish to request human review were permitted by law, please contact your local HR representative. For more information, please visit NIQ's AI Safety Policies and Guiding Principles: https://www.nielseniq.com/global/en/ai-safety-policies.
Our Benefits

• Flexible working environment
• Volunteer time off
• LinkedIn Learning
• Employee-Assistance-Program (EAP)

About NIQ
NIQ is the world's leading consumer intelligence company, delivering the most complete understanding of consumer buying behavior and revealing new pathways to growth. In 2023, NIQ combined with GfK, bringing together the two industry leaders with unparalleled global reach. With a holistic retail read and the most comprehensive consumer insights-delivered with advanced analytics through state-of-the-art platforms-NIQ delivers the Full View(TM). NIQ is an Advent International portfolio company with operations in 100+ markets, covering more than 90% of the world's population.
For more information, visit NIQ.com
Want to keep up with our latest updates?
Follow us on: | | |
Our commitment to Diversity, Equity, and Inclusion
At NIQ, we are steadfast in our commitment to fostering an inclusive workplace that mirrors the rich diversity of the communities and markets we serve. We believe that embracing a wide range of perspectives drives innovation and excellence. All employment decisions at NIQ are made without regard to race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, disability, genetic information, marital status, veteran status, or any other characteristic protected by applicable laws. We invite individuals who share our dedication to inclusivity and equity to join us in making a meaningful impact. To learn more about our ongoing efforts in diversity and inclusion, please visit the

Skills Required