Vendor Risk Management Specialist

Novac Technology SolutionsChennai, Republic Of India, IN

18 days ago

Job description

About the Role

Experience-5 to 8 Yrs

Location-Chennai (Alwarpet)

Work mode- 5 Days (Work from Office)

We are seeking an experienced TPRM Assistant Manger / Lead to lead our third-party risk management program in line with Indian financial sector regulations and global best practices. This role involves overseeing the full lifecycle of vendor risk — from onboarding and due diligence to ongoing monitoring and exit — ensuring that our third-party relationships meet our security, compliance, and performance requirements.

You will work closely with business, legal, procurement, information security, compliance, and audit teams to identify, assess, mitigate, and monitor risks associated with third-party vendors, service providers, and outsourcing partners.

Key Responsibilities

Strategy & Governance

Develop, implement, and maintain the TPRM framework in alignment with :

RBI Master Directions on IT Outsourcing (2023) & IT Governance

DPDPA 2023

ISO / IEC 27001 : 2022, ISO 27701 : 2019

SOC 2, PCI DSS (as applicable)

Maintain TPRM policy, procedures, and standard operating guidelines.

Drive awareness and training programs for internal stakeholders on vendor risk.

2. Vendor On boarding & Due Diligence

Define and enforce vendor onboarding requirements including :

Business justification and criticality classification

Security, privacy, and compliance questionnaires

Document collection (agreements, certifications, audit reports)

Coordinate with Legal and Procurement to ensure contracts include appropriate risk, data protection, and exit clauses.

3.Risk Assessment & Scoring

Perform inherent and residual risk assessments for all vendors.

Define risk rating methodology (low / medium / high / critical) and maintain a vendor risk register.

Review vendors’ security posture, privacy practices, and financial stability.

4.Ongoing Monitoring

Establish and execute continuous monitoring plans :

Annual / periodic security assessments

SLA / KPI performance reviews

Compliance certificate and audit report collection

OSINT / threat intelligence checks for reputational and cyber risk

Track remediation of identified gaps and issues.

5.Incident Management & Exit

Oversee vendor-related incidents, breaches, and near-misses, ensuring timely reporting and root cause analysis.

Coordinate vendor exit processes, ensuring secure data return / destruction and service transition.

6.Reporting & Audit

Prepare periodic TPRM dashboards for senior management, CRO, and Board committees.

Support internal, client, and regulatory audits by providing evidence of TPRM controls.

Qualifications

Education :

Bachelor’s degree in any stream (mandatory).

Certifications (preferred but not mandatory) :

CRISC, CISM, ISO 27001 Lead Auditor, or equivalent.

Experience :

5–8 years in vendor risk management, IT risk, information security, or compliance.

Strong understanding of outsourcing risk regulations, data privacy laws, and cloud / vendor security.

Skills :

Knowledge of RBI, NPCI, and global compliance requirements.

Ability to evaluate third-party risk frameworks and technical controls.

Strong stakeholder management, negotiation, and presentation skills.

Analytical mindset with attention to detail.

Create a job alert for this search

Risk Management • Chennai, Republic Of India, IN

Related jobs

Promoted
New!

Third Party Risk Management (TPRM) Analyst

Silicon Comnet Pvt LtdIndia

L1 – Third Party Risk Management (TPRM) Analyst.Review and validate vendor responses to.Identify and document potential security or compliance gaps for review by L2 / L3 analysts.Participate in perio...Show moreLast updated: less than 1 hour ago

Promoted

Manager- SACCR / Counterparty Credit Risk

EvalueserveNagpur, IN

Elevate Your Impact Through Innovation and Learning.Evalueserve is a global leader in delivering innovative and sustainable solutions to a diverse range of clients, including over 30% of Fortune 50...Show moreLast updated: 18 days ago

Promoted

Vendor Risk Management Lead

Cubical Operations LLPRepublic Of India, IN

Manager – Third Party Risk Management (TPRM).Information Risk Management / Information Security.Third-Party Risk Management framework. The ideal candidate will have a strong background in.Informatio...Show moreLast updated: 4 days ago

Promoted

Financial Crime Risk Management Specialist

RevolutRepublic Of India, IN

People deserve more from their money.More visibility, more control, and more freedom.Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, ...Show moreLast updated: 2 days ago

Promoted

Vendor Risk Management Program Manager

Cubical Operations LLPPune, Republic Of India, IN

Deputy Manager / Manager – Third-Party Risk Management (TPRM).Information Risk Management / Cybersecurity.We are looking for an experienced and driven. Third-Party Risk Management (TPRM) professiona...Show moreLast updated: 6 days ago

Promoted

Credit Risk Management Specialist

Northern Arc InvestmentsRepublic Of India, IN

Perform quarterly financial, operational and portfolio reviews of the investee companies of the fund across sectors and provide recommendations to assist in taking further credit exposure.Take owne...Show moreLast updated: 2 days ago

Promoted

Business Risk Manager (Fincrime)

RevolutNagpur, IN

Promoted

Business Risk Manager (Savings)

RevolutNagpur, IN

Promoted

Vendor Risk Management Lead

Tata Consultancy ServicesPune, Republic Of India, IN

Should be able to develop and manage a comprehensive third party risk management framework / program.Should be able to drive regulatory compliance / remediation programs such as Digital Operational...Show moreLast updated: 5 days ago

Promoted

Risk Management Specialist

Tata ElxsiPune, Republic Of India, IN

Tata Elxsi is truly your home to a billion possibilities.We believe in opportunities for everyone to be bold and curious and seek to shape the future. Explore what’s possible, discover what you love...Show moreLast updated: 5 days ago

Promoted

Portfolio Risk Management Lead

Hiranandani Financial ServicesRepublic Of India, IN

Establish requirements for data maintenance and management and working with IT on implementation.Create Management reporting tools to monitor portfolio performance at portfolio segment (e.Preparati...Show moreLast updated: 25 days ago

Promoted

Third-Party Risk Management Lead

RevolutRepublic Of India, IN

Promoted

Technology Risk Management Lead

RevolutRepublic Of India, IN

Promoted
New!

Functional Principal / Sr. PC - Fusion Risk Management Cloud

Oraclenagpur, maharashtra, in

Oracle Global Services Center (GSC) is helping leading organizations around the world in the areas of Digital Transformation. We are looking for Consultants / SME with Risk Management / Financial Compli...Show moreLast updated: 20 hours ago

Promoted

Senior Risk Management Specialist

IndusInd BankRepublic Of India, IN

Subject Matter Expert in defining Cards and Payment (IMPS, RTGS, NEFT, UPI etc.Transaction Fraud Risk Management solution. Functional Knowledge of Card Products, Payment Products, Authorization Life...Show moreLast updated: 6 days ago

Promoted

Risk Management Specialist

KPMG IndiaRepublic Of India, IN

KPMG entities in India are professional services firm(s).These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993.Our professionals leve...Show moreLast updated: 5 days ago

Promoted

Business Risk Manager (Technology)

RevolutNagpur, IN

Promoted

Risk Management Specialist

USTPune, Republic Of India, IN

Bachelor's or Master's degree in Engineering, Biomedical, Life Sciences, or a related field.Minimum of 6 years of experience in risk management within the. In-depth knowledge of ISO 14971 and global...Show moreLast updated: 30+ days ago