Job Description

:
Risk Management Expert with 6-8 years of experience in 3rd party Risk Assessments. Having ISMS Auditing skills are added advantage. Candidate must be well versed with Risk Assessments performed and not restriciting to checklist assessments. Need thorough knowledge of Information Security.
Department:
Risk Management
Skills Required:
Risk Management, Risk Assessment, Audit Compliance
Role:

• Experience in conducting Business Impact Analysis and Risk Assessments for third-party companies / third-party applications / information systems with business stakeholders.
• Ability to identify information security risks and provide recommendations, including compensating controls for third-party companies / third-party applications / information systems.
• Summarize findings and recommendations in the risk report.
• Experience in communicating with business stakeholders / non-technical stakeholders to explain information security risks and mitigation plan.
• Review third-party contractual agreements to ensure alignment with internal policies.
• Conduct audits to verify the compliance to organization security policies / standards.
• Expertise in cyber security / information security standards / frameworks such as ISO27001, NIST CSF, etc.
• Experience with TPRM tools such as Archer, OneTrust is an advantage.
• Experience working with geographically distributed teams.
• Excellent organizational, presentation & communication skills and ability to handle multiple assessment request and deliverables it within the specific timelines.

Years Of Exp:
6 to 8 Years
Education/Qualification:
B.E., / B.Tech., / MCA / MBA with specialization in Information Security
Designation:
Risk Management Consultant

Skills Required