:Job Title: Cybersecurity Risk Assessment Analyst (Third-Party Risk Assessment)Location: [Bangalore]Job Type: [Full-Time]Department: Information Security / Risk ManagementLevel : 3:We are seeking a detail-oriented Cybersecurity Risk Assessment Analyst to join our team. This role will focus on evaluating the cybersecurity risks associated with third-party vendor. The ideal candidate will have a strong background in information security, risk management, and compliance standards, with the ability to assess and mitigate risks associated with third-party relationships.Key Responsibilities:1. Third-Party Risk Assessments:o Conduct comprehensive risk assessments of third-party vendors to evaluate their cybersecurity posture, compliance with relevant regulations, and alignment with company policies.o Create and maintain a third-party risk assessment framework that aligns with industry standards and regulatory requirements.2. Risk Identification and Analysis:o Identify potential risks introduced by third-party vendors, including data breaches, compliance failures, and operational disruptions.o Analyze both qualitative and quantitative risk metrics to assess the potential impact and likelihood of third-party risks.3. Documentation and Reporting:o Prepare detailed risk assessment reports documenting findings, recommendations, and remediation plans.o Present risk assessment results to stakeholders, including senior management and relevant business units.4. Collaboration and Advisement:o Work closely with procurement, legal, and compliance teams to ensure that third-party contracts include appropriate cybersecurity provisions.o Advise business units on risk mitigation strategies and best practices for managing third-party relationships.5. Continuous Monitoring:o Establish processes for continuous monitoring and reassessment of third-party risks, ensuring that changing circumstances are duly evaluated.o Track remediation efforts and verify the implementation of recommended cybersecurity practices by third-party vendors.6. Vendor Evaluation and Management:o Assist in the selection and evaluation of new vendors by conducting cybersecurity due diligence.o Maintain a comprehensive inventory of third-party vendors and their associated risk profiles.7. Policy and Procedure Development:o Contribute to the development, implementation, and maintenance of third-party risk management policies and procedures.o Stay informed about industry trends, regulatory changes, and emerging threats related to third-party risk.Qualifications: Bachelors degree in information security, Cybersecurity, Computer Science, Risk Management, or a related field. 2-3 years of experience in cybersecurity, risk management, or compliance, with a focus on third-party risk assessments. Familiarity with cybersecurity frameworks (e.g., NIST, ISO 27001, CIS) and relevant regulations (e.g., GDPR, HIPAA, PCI-DSS). Strong analytical skills with the ability to assess complex information and provide actionable recommendations. Excellent verbal and written communication skills, with experience presenting to diverse audiences. Certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Risk Management Professional (CRMP) are a plus.Preferred Skills: Experience with risk assessment tools and methodologies. Knowledge of risk management software solutions.About MphasisMphasis applies next-generation technology to help enterprises transform businesses globally. Customer centricity is foundational to Mphasis and is reflected in the Mphasis Front2Backxe2x84xa2 Transformation approach. Front2Backxe2x84xa2 uses the exponential power of cloud and cognitive to provide hyper-personalized (C=X2C2TM=1) digital experience to clients and their end customers. Mphasis Service Transformation approach helps xe2x80x98shrink the core through the application of digital technologies across legacy environments within an enterprise, enabling businesses to stay ahead in a changing world. Mphasis core reference architectures and tools, speed and innovation with domain expertise and specialization are key to building strong relationships with marquee clients.Skills:PRIMARY COMPETENCY : Banking And Capital Markets PRIMARY SKILL : CLR (Complaince, Legal & Risk) PRIMARY SKILL PERCENTAGE : 100About Company:Mphasis is a leading IT solutions provider, offering Applications, Business Process Outsourcing (BPO) and Infrastructure services globally through a combination of technology knowhow, domain and process expertise. The accolades we have been garnering can be attributed to our undeterred focus in delivering quality solutions across verticals that meet the challenging requirements of our esteemed customers. We have been recently felicitated by the economic times as the most distinguished digital company 2015. We have also been ranked 29 of 100 largest financial technology vendors by American Banker and BAI in the FinTech Forward Top 100 rankings.
MNCJobsIndia.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.