Key Responsibilities:

Third-Party Risk Management:

•Conduct end-to-end third-party risk assessments, including onboarding, ongoing monitoring, and offboarding processes.

•Evaluate third parties against key risk areas such as information security, business continuity, data privacy, and regulatory compliance.

•Develop and maintain TPRM frameworks, policies, and procedures aligned with industry best practices.

Cyber and Risk Assessments:

•Perform cyber risk assessments using established frameworks (e.g., NIST CSF, ISO 27001, SIG).

•Analyze third-party security controls and provide actionable recommendations to mitigate risks.

•Ensure compliance with global regulatory requirements relevant to the financial services/fintech sector.

Program Design and Implementation:

•Design and implement robust TPRM programs tailored to client needs.

•Develop tools and dashboards for risk monitoring and reporting to key stakeholders.

•Drive process improvement initiatives to enhance TPRM efficiency and effectiveness.

 Client and Stakeholder Engagement:

•Work collaboratively with internal stakeholders, including legal, procurement, compliance, and IT teams.

•Provide consulting services to clients to strengthen their TPRM and cybersecurity practices.

•Support audits and regulatory assessments as a subject matter expert in TPRM.

Required Skills and Qualifications:

•Strong expertise in third-party risk management and related domains such as cybersecurity and IT risk.

•In-depth knowledge of cyber frameworks like NIST CSF, ISO 27001, and SIG.

•Experience conducting risk and cyber assessments across diverse third-party landscapes.

•Strong understanding of industry-specific risks in the financial services/fintech domain (preferred).

•Excellent verbal and written communication skills for report writing and stakeholder presentations.