Talent.com
R1 - Cyber Security Manager - NIST

R1 - Cyber Security Manager - NIST

R1 RCM IndiaNoida
4 days ago
Job description

Position Summary :

We are seeking an experienced Sr. Manager Third party Cyber Risk Management to lead our Third-party Cybersecurity risk and governance efforts for India / Philippines market of R1 RCM.

The Senior Manager Third-Party Cyber Risk Management is responsible for leading and executing the organizations cybersecurity oversight of vendors, suppliers, partners, and other external entities.

This role ensures that all third-party relationships align with enterprise security policies, regulatory obligations, and risk tolerance levels.

The individual will own the third-party risk management (TPRM) lifecycle from onboarding and due diligence to continuous monitoring and remediation and will serve as the subject matter expert on vendor security governance.

Key Duties & Responsibilities :

Program Leadership & Governance :

  • Design, implement, and mature the Third-Party Cyber Risk Management Program aligned with frameworks such as NIST CSF, ISO 27001, HIPAA, CIS Controls, and SOC2.
  • Develop and maintain policies, standards, and procedures governing vendor security due diligence, onboarding, monitoring, and offboarding.
  • Establish and iterate security exhibit for contracts, enforce compliance and iterate wherever needed.
  • Lead governance committees or working groups to discuss vendor risk posture, key issues, and remediation progress with business, procurement, and legal teams.
  • Define and track Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) for vendor risk and present them to leadership and risk committees.

Vendor Risk Assessment & Due Diligence :

  • Oversee end-to-end third-party risk assessments including questionnaires, evidence review, and validation of security controls.
  • Evaluate vendors against recognized security frameworks (e.g., SOC 2, ISO 27001, PCI DSS, NIST CSF, HIPAA / HITRUST).
  • Manage inherent and residual risk scoring models to prioritize vendors based on business impact and data sensitivity.
  • Perform or oversee onsite or virtual vendor audits for high-risk vendors and ensure timely closure of identified gaps.
  • Work closely with Procurement and Legal to integrate cybersecurity clauses and right-to-audit provisions in vendor contracts.

    • Continuous monitoring and remediation :

  • Implement and manage continuous monitoring tools and processes (e.g., SecurityScorecard, Recorded Future) to detect vendor security posture changes.
  • Ensure that remediation plans are documented, tracked, and closed within defined SLAs.
  • Coordinate periodic reassessments of critical and high-risk vendors to verify ongoing compliance.
  • Manage escalation processes for non-compliant or high-risk vendors, including executive reporting and remediation oversight.
  • Perform internal audits against client security requirements to proactively prepare and improve organizational security posture.

    • Collaboration and stakeholder management :

  • Partner with Business Units, Procurement, Legal, Privacy, and IT Security teams to ensure security risk is addressed in all third-party engagements.
  • Collaborate with Legal, Compliance to support external audits and regulatory reviews involving third-party risk.
  • Provide subject matter expertise during M&A due diligence, supplier transitions, or strategic partnerships.
  • Deliver training and awareness to business and procurement teams on vendor security best practices.

    • Reporting and metrics : Maintain a vendor risk register and ensure accurate documentation of risk decisions, exceptions, and compensating controls.

  • Prepare executive dashboards and periodic reports summarizing vendor risk trends, findings, and remediation status.
  • Support board-level reporting on supply chain and vendor cyber risks.

    • Experience, Skills & Knowledge :

  • 7 to 10 years of total experience in information security, risk, or compliance roles.
  • At least 5+ years of direct experience in third-party or vendor cyber risk management.
  • Strong understanding of supply chain security, cloud vendor assessments, data privacy, and regulatory compliance (HIPAA, PCI DSS, GDPR, etc.
  • Experience using GRC and vendor risk management platforms (e.g., Archer, Auditboard, or similar).
  • Proven track record of leading remediation governance and cross-functional collaboration across business, IT, and legal teamsProven experience managing third-party cybersecurity risk and audit programs at scale.
  • Excellent communication skills, with ability to interface with clients, vendors, operational, legal, and IT leadership.

    • Key Competencies :

  • Certified Information Security Manager (CISM).
  • Certified Information Systems Auditor (CISA).
  • Certified in Risk and Information Systems Control (CRISC).
  • HITRUST CCSFP or ISO 27001 Lead Implementer.

    • (ref : hirist.tech)

    Create a job alert for this search

    Cyber Security Manager • Noida

    Related jobs
    • Promoted
    Senior Cyber Security Analyst

    Senior Cyber Security Analyst

    Eltropyfaridabad, haryana, in
    Senior Cybersecurity Analyst | 100% Remote | Eltropy (Product based fintech SaaS firm).Senior Cybersecurity Analyst – GRC (Governance, Risk, and Compliance). This individual will help manage third-p...Show moreLast updated: 3 days ago
    • Promoted
    Cyber Security Manager

    Cyber Security Manager

    R1 RCMNoida, Uttar Pradesh, India
    R1 is a leading provider of technology-driven solutions that help hospitals and health systems to manage their financial systems and improve patients’ experience. We are the one company that combine...Show moreLast updated: 2 days ago
    • Promoted
    Cyber Security Trainer

    Cyber Security Trainer

    Veheregurgaon, haryana, in
    Vehere is seeking a Cybersecurity Trainer to design, develop, and deliver world-class training for our customers, partners, and internal teams. You will play a key role in enabling users to master V...Show moreLast updated: 16 days ago
    • Promoted
    Fortinet with Azure Migration

    Fortinet with Azure Migration

    Sonata Softwaremeerut, uttar pradesh, in
    Azure Network Security Engineer.The ideal candidate will have strong experience in designing, implementing, and migrating on-premise networks into. Design and implement secure and scalable.DNS serve...Show moreLast updated: 25 days ago
    • Promoted
    Cyber Security Manager

    Cyber Security Manager

    CareerUS SolutionsDelhi, IN
    The Cyber Security Manager is responsible for.The Cyber Security Manager also leads a team of security professionals and collaborates across departments to strengthen the company’s overall.Develop,...Show moreLast updated: 2 days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Artifact CorporationMeerut, IN
    Job Title : Onsite Cybersecurity and Networking Specialist.Location : Hyderabad, Telangana, India — Onsite at Data Center. Employment Type : Full-Time, Onsite (Resident Engineer Support).We are seeking...Show moreLast updated: 2 days ago
    • Promoted
    Illumio- Zero Trust Microsegmentation

    Illumio- Zero Trust Microsegmentation

    CareerXperts ConsultingDelhi, IN
    Hiring : Manager - Zero Trust Microsegmentation.Bengaluru | 💼 5+ Years Experience.Lead Illumio microsegmentation implementations. Design & deploy Zero Trust policies.Analyze network infrastructure &...Show moreLast updated: 14 days ago
    • Promoted
    Technical Security Manager

    Technical Security Manager

    Pay10 Indiadelhi, delhi, in
    The Technical Security Manager – Information Security will play a pivotal role in safeguarding Pay10’s technology infrastructure, applications, and network ecosystem across all operations within In...Show moreLast updated: 3 days ago
    • Promoted
    Security Architect Cyber Threat Intelligence

    Security Architect Cyber Threat Intelligence

    PineQ Lab TechnologyGurugram, Haryana, India
    Lead collection of information for different levels of cyber.Dark Web Monitoring : Monitor and.Dark Web to identify potential cyber threats, emerging trends, and vulnerabilities.Threat Intelligence ...Show moreLast updated: 1 day ago
    • Promoted
    Network Security Manager

    Network Security Manager

    BNP ParibasDelhi, India
    Position Purpose The main activities of the Manager iNet is to manage, maintain, implement and promote secure, robust, stable, redundant, Network Security infrastructure. Explore, evaluate and propo...Show moreLast updated: 2 days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Tiger AdvisoryDelhi, IN
    Tiger Advisory provides premier cybersecurity consulting services, helping clients manage risks, strengthen resilience, and achieve compliance in an ever-evolving digital landscape.Our mission is t...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Innefu LabsMeerut, IN
    We are seeking experienced and detail-oriented professionals for the role.The selected candidates will be responsible for assisting cybercrime investigations by collecting and analysing digital evi...Show moreLast updated: 2 days ago
    • Promoted
    Lead Network & Security Engineer (Hyperscalers – OCI / GCP)

    Lead Network & Security Engineer (Hyperscalers – OCI / GCP)

    Cloud4C Servicesgurgaon, haryana, in
    Gartner’s Magic Quadrant (2021), is a leading automation-driven Cloud Managed Services Provider (MSP).We specialize in multi-cloud migration, management, and disaster recovery with zero data loss g...Show moreLast updated: 17 days ago
    • Promoted
    Director Product – Building and Managing Security Products - Cyber Security Startup - Salary INR 75 L

    Director Product – Building and Managing Security Products - Cyber Security Startup - Salary INR 75 L

    CareerXperts Consultingfaridabad, haryana, in
    We are seeking a hands-on product leader to drive the strategy, design, and operational delivery of AI-driven threat investigation and response content at platform scale. This role is ideal for a fo...Show moreLast updated: 3 days ago
    • Promoted
    Senior Manager IS Cyber Culture & Awareness

    Senior Manager IS Cyber Culture & Awareness

    MashreqMeerut, IN
    The Cyber Security Awareness Specialist plays a critical role in maturing Mashreq Bank’s cyber security awareness program. The specialist is responsible for fostering a culture where Cybersecurity i...Show moreLast updated: 3 days ago
    • Promoted
    Network Security Architect

    Network Security Architect

    Next Digital RecruitmentNoida, Uttar Pradesh, India
    Job Title : Cyber Security Engineer L1,L2,L3 and Team Leads.Design, deploy, and manage security architectures focusing on SSE, SASE, and Identity Management solutions. Operate and maintain security t...Show moreLast updated: 2 days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    APN Consulting, Inc.Meerut, IN
    IT staffing and services company offering innovative business solutions to improve client business outcomes.We focus on high impact technology solutions in ServiceNow, Fullstack, Cloud & Data, and ...Show moreLast updated: 1 day ago
    • Promoted
    Cyber Security Engineer

    Cyber Security Engineer

    DautomMeerut, IN
    Security Monitoring and Incident Response.Monitor networks and systems for potential security breaches.Investigate and respond to security incidents and anomalies. Conduct forensic analysis to deter...Show moreLast updated: 2 days ago