Our client a UK based MNC is seeking Third-Party Cyber Risk Analyst for their office in Bengaluru.
Experience: 510 years
Location: Bengaluru (Hybrid 3 days WFO)
Qualification: Any full-time graduation
Role Summary
Responsible for operating the Third-Party Cyber Risk Management (TPCRM) framework to identify, assess, monitor, and mitigate cybersecurity risks across suppliers, partners, and vendors, ensuring a resilient and compliant supply chain.
Key Responsibilities
- Execute third-party cyber risk assessments and ongoing risk management activities.
- Assess supplier security posture using questionnaires and cyber risk monitoring tools.
- Partner with BISOs, vendor owners, and supplier management teams to define and track risk mitigation plans.
- Monitor and report third-party cyber risks to governance forums and stakeholders.
- Collaborate with OCIO and business teams to ensure vendor cyber risks remain within defined risk appetite.
Key Skills & Competencies
- Cybersecurity GRC, third-party risk, and information assurance .
- Strong knowledge of cybersecurity frameworks (NIST CSF, NIST 800-53, Secure Controls Framework, CE+).
- Familiarity with security and privacy standards (ISO 27001/27005, SOC 2, GDPR, TISAX).
- Broad IT and technology landscape understanding.
- Security+ or equivalent certification preferred.
Responsibilities
- Support GIS GRC and Partner Management teams.
- Collaborate with GIS cybersecurity leaders and provide GRC support to business units and regions.
For more details call
+919845409123 or mail you esume to [Confidential Information]
