Talent.com
Senior Manager, Third-Party Security

Senior Manager, Third-Party Security

R1 RCMNoida, Republic Of India, IN
4 days ago
Job description

R1 is a leading provider of technology-driven solutions that help hospitals and health systems to manage their financial systems and improve patients’ experience. We are the one company that combines the deep expertise of a global workforce of revenue cycle professionals with the industry's most advanced technology platform, encompassing sophisticated analytics, Al, intelligent automation and workflow orchestration. R1 is a place where we think boldly to create opportunities for everyone to innovate and grow. A place where we partner with purpose through transparency and inclusion. We are a global community of engineers, front-line associates, healthcare operators, and RCM experts that work together to go beyond for all those we serve. Because we know that all this adds up to something more, a place where we're all together better

R1 India is proud to be recognized amongst Top 25 Best Companies to Work For 2024, by the Great Place to Work Institute. This is our second consecutive recognition on this prestigious Best Workplaces list, building on the Top 50 recognition we achieved in 2023. Our focus on employee wellbeing and inclusion and diversity is demonstrated through prestigious recognitions with R1 India being ranked amongst Best in Healthcare, Top 100 Best Companies for Women by Avtar & Seramount, and amongst Top 10 Best Workplaces in Health & Wellness. We are committed to transform the healthcare industry with our innovative revenue cycle management services. Our goal is to ‘make healthcare work better for all’ by enabling efficiency for healthcare systems, hospitals, and physician practices. With over 30,000 employees globally, we are about 16,000+ strong in India with presence in Delhi NCR, Hyderabad, Bangalore, and Chennai. Our inclusive culture ensures that every employee feels valued, respected, and appreciated with a robust set of employee benefits and engagement activities.

Position : Sr. Manager – Cybersecurity (Third-Party Cyber Risk Management)

Location : Noida

Shift Timing : 2 PM to 11 PM

Position Summary : -

We are seeking an experienced Sr. Manager – Third party Cyber Risk Management to lead our Third-party Cybersecurity risk and governance efforts for India / Philippines market of R1 RCM. The Senior Manager – Third-Party Cyber Risk Management is responsible for leading and executing the organization’s cybersecurity oversight of vendors, suppliers, partners, and other external entities. This role ensures that all third-party relationships align with enterprise security policies, regulatory obligations, and risk tolerance levels. The individual will own the third-party risk management (TPRM) lifecycle — from onboarding and due diligence to continuous monitoring and remediation — and will serve as the subject matter expert on vendor security governance.

Key Duties & Responsibilities

Program Leadership & Governance

  • Design, implement, and mature the Third-Party Cyber Risk Management Program aligned with frameworks such as NIST CSF, ISO 27001, HIPAA, CIS Controls, and SOC2.
  • Develop and maintain policies, standards, and procedures governing vendor security due diligence, onboarding, monitoring, and offboarding.
  • Establish and iterate security exhibit for contracts, enforce compliance and iterate wherever needed.
  • Lead governance committees or working groups to discuss vendor risk posture, key issues, and remediation progress with business, procurement, and legal teams.
  • Define and track Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) for vendor risk and present them to leadership and risk committees.

Vendor Risk Assessment & Due Diligence

  • Oversee end-to-end third-party risk assessments including questionnaires, evidence review, and validation of security controls.
  • Evaluate vendors against recognized security frameworks (e.G., SOC 2, ISO 27001, PCI DSS, NIST CSF, HIPAA / HITRUST).
  • Manage inherent and residual risk scoring models to prioritize vendors based on business impact and data sensitivity .
  • Perform or oversee onsite or virtual vendor audits for high-risk vendors and ensure timely closure of identified gaps.
  • Work closely with Procurement and Legal to integrate cybersecurity clauses and right-to-audit provisions in vendor contracts.

    • Continuous monitoring and remediation :

  • Implement and manage continuous monitoring tools and processes (e.G., SecurityScorecard, Recorded Future) to detect vendor security posture changes.
  • Ensure that remediation plans are documented, tracked, and closed within defined SLAs.
  • Coordinate periodic reassessments of critical and high-risk vendors to verify ongoing compliance.
  • Manage escalation processes for non-compliant or high-risk vendors , including executive reporting and remediation oversight.
  • Perform internal audits against client security requirements to proactively prepare and improve organizational security posture

    • Collaboration and stakeholder management

  • Partner with Business Units, Procurement, Legal, Privacy, and IT Security teams to ensure security risk is addressed in all third-party engagements.
  • Collaborate with Legal, Compliance to support external audits and regulatory reviews involving third-party risk.
  • Provide subject matter expertise during M&A due diligence, supplier transitions, or strategic partnerships.
  • Deliver training and awareness to business and procurement teams on vendor security best practices.

    • Reporting and metrics

  • Maintain a vendor risk register and ensure accurate documentation of risk decisions, exceptions, and compensating controls.
  • Prepare executive dashboards and periodic reports summarizing vendor risk trends, findings, and remediation status.
  • Support board-level reporting on supply chain and vendor cyber risks.

    • Experience, Skills & Knowledge : -

  • 7-10 years of total experience in information security, risk, or compliance roles.
  • At least 5+ years of direct experience in third-party or vendor cyber risk management.
  • Strong understanding of supply chain security, cloud vendor assessments, data privacy, and regulatory compliance (HIPAA, PCI DSS, GDPR, etc.).
  • Experience using GRC and vendor risk management platforms (e.G., Archer, Auditboard, or similar).
  • Proven track record of leading remediation governance and cross-functional collaboration across business, IT, and legal teamsProven experience managing third-party cybersecurity risk and audit programs at scale.
  • Excellent communication skills, with ability to interface with clients, vendors, operational, legal, and IT leadership.

    • Key Competencies : -

  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
  • Certified in Risk and Information Systems Control (CRISC)
  • HITRUST CCSFP or ISO 27001 Lead Implementer
    • Create a job alert for this search

    Manager Security • Noida, Republic Of India, IN

    Related jobs
    • Promoted
    Third-Party Risk Management

    Third-Party Risk Management

    Live Connectionsgurugram, uttar pradesh, in
    Manager – Information Security (Third-Party Risk Management).Educational Qualifications / Certifications.Bachelor’s degree in Computer Science, Engineering, or a related field (or equivalent work e...Show moreLast updated: 3 days ago
    • Promoted
    Manager / Senior Manager | GSOC

    Manager / Senior Manager | GSOC

    ConfidentialNoida, Delhi, Gurgaon / Gurugram
    The candidate should be hands-on in managing Security Operations, SOC, Identify access management, Risk Management.Should have worked on Blueprinting and Designing of SOC frameworks and implementat...Show moreLast updated: 3 days ago
    • Promoted
    Sr. Security Manager

    Sr. Security Manager

    ConfidentialNoida, India
    In fast changing markets, customers worldwide rely on Thales.Thales is a business where brilliant people from all over the world come together to share ideas and inspire each other.In aerospace, tr...Show moreLast updated: 8 days ago
    • Promoted
    Senior Manager – Governance, Risk & Compliance (Global Security)

    Senior Manager – Governance, Risk & Compliance (Global Security)

    ConfidentialGurgaon / Gurugram, India
    Senior Manager - Governance, Risk & Compliance (Global Security).We are seeking an experienced Security professional to support and enhance the organization's Governance, Risk & Compliance (GRC) pr...Show moreLast updated: 8 days ago
    • Promoted
    Illumio- Zero Trust Microsegmentation

    Illumio- Zero Trust Microsegmentation

    CareerXperts ConsultingMeerut, IN
    Hiring : Manager - Zero Trust Microsegmentation.Bengaluru | 💼 5+ Years Experience.Lead Illumio microsegmentation implementations. Design & deploy Zero Trust policies.Analyze network infrastructure &...Show moreLast updated: 15 days ago
    • Promoted
    Senior Application Security Manager

    Senior Application Security Manager

    ARCONDelhi, India
    Job Summary : We are seeking a highly experienced and strategic-minded Senior Manager of Application Security to lead our security initiatives. The ideal candidate will be a seasoned leader with a de...Show moreLast updated: 25 days ago
    • Promoted
    Senior Security Specialist

    Senior Security Specialist

    ConfidentialDelhi, India
    HighLevel is an AI powered, all-in-one white-label sales & marketing platform that empowers agencies, entrepreneurs, and businesses to elevate their digital presence and drive growth.We are proud t...Show moreLast updated: 8 days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.aiMeerut, IN
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    ArcanaDelhi, IN
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Applications Security Manager

    Senior Applications Security Manager

    DEUTSCHE TELEKOM DIGITAL LABS PRIVATE LIMITEDGurgaon
    We are seeking a highly skilled and experienced Senior Manager Application Security to lead our application security strategy, governance, and execution. This role will oversee secure software devel...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Data Security & Governance Specialist

    Senior Data Security & Governance Specialist

    Integris GroupDelhi, IN
    The Senior Data Security & Governance Specialist is responsible for defining and enforcing governance, compliance, and security controls across modern data platforms built on Azure and Databricks.T...Show moreLast updated: 4 days ago
    • Promoted
    Cyber Security Manager

    Cyber Security Manager

    CareerUS SolutionsMeerut, IN
    The Cyber Security Manager is responsible for.The Cyber Security Manager also leads a team of security professionals and collaborates across departments to strengthen the company’s overall.Develop,...Show moreLast updated: 3 days ago
    • Promoted
    Senior Manager, Infrastructure-Security Lead – Agentic AI

    Senior Manager, Infrastructure-Security Lead – Agentic AI

    ConfidentialGurugram, Gurgaon / Gurugram
    Ready to build the future with AI.At Genpact, we don't just keep up with technology-we set the pace.AI and digital innovation are redefining industries, and we're leading the charge.Genpact's AI Gi...Show moreLast updated: 1 day ago
    • Promoted
    Global Security Senior Analyst, Asia Pacific

    Global Security Senior Analyst, Asia Pacific

    Boston Consulting GroupGurgaon, Haryana, India
    Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy whe...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Manager IS Cyber Culture & Awareness

    Senior Manager IS Cyber Culture & Awareness

    MashreqMeerut, IN
    The Cyber Security Awareness Specialist plays a critical role in maturing Mashreq Bank’s cyber security awareness program. The specialist is responsible for fostering a culture where Cybersecurity i...Show moreLast updated: 4 days ago
    • Promoted
    Sr. Lead - Cloud Security

    Sr. Lead - Cloud Security

    Sycamore Informatics Inc.Meerut, IN
    Cloud security framework; Strong scripting skills with PowerShell and.Solid understanding of version control tools, particularly Git. Experience with cloud platforms, including AWS, Azure and GCP.Pr...Show moreLast updated: 30+ days ago
    • Promoted
    R1 - Senior Program Manager - Cyber Security

    R1 - Senior Program Manager - Cyber Security

    R1 RCM IndiaGurugram
    Description : R1 is a leading provider of technology-driven solutions that help hospitals and health systems to manage their financial systems and improve patients e...Show moreLast updated: 1 day ago
    • Promoted
    Site Security Manager

    Site Security Manager

    ConfidentialGurgaon / Gurugram
    Represent Pinkerton's core values of integrity, vigilance, and excellence.Provide operational support in the application of physical security operations to ensure a safe working environment.Assist ...Show moreLast updated: 30+ days ago