Talent.com
TC-CS-SRCR- Cyber Risk And Compliance- Manager
TC-CS-SRCR- Cyber Risk And Compliance- ManagerFP&A • Delhi, Delhi, India
TC-CS-SRCR- Cyber Risk And Compliance- Manager

TC-CS-SRCR- Cyber Risk And Compliance- Manager

FP&A • Delhi, Delhi, India
2 days ago
Job description

At EY youll have the chance to build a career as unique as you are with the global scale support inclusive culture and technology to become the best version of you. And were counting on your unique voice and perspective to help EY become even better too. Join us and build an exceptional experience for yourself and a better working world for all.

EY- Cyber Risk Compliance and Resilience TPRM Manager

As part of our EY Cyber Risk and Compliance Consulting (CRCR) team you will contribute technically to Cyber Security client engagements and internal projects. The role involves managing Third-Party Risk Management (TPRM) engagements ensuring that our clients effectively identify assess and mitigate risks associated with third-party relationships. An important part of your role will be to actively establish maintain and strengthen internal and external relationships.

The opportunity

We are looking for TPRM Manager with expertise in cyber security risk management and security controls testing concepts. This role offers a unique opportunity to contribute to the growth of our TPRM service offering while upholding EYs commitment to quality and line with EYs commitment to quality you will confirm that work is of the highest quality as per EYs quality standards. You will help to create a positive learning culture coach and counsel junior team members and help them to develop. As an influential member of the team you will help to create a positive learning culture coach and counsel junior team members and help them to develop.

Your key responsibilities

  • Reporting to the competency leader for Cyber Risk Compliance Resilience (CRCR) and will be responsible for :
  • Leading TPRM Engagements : Manage and deliver TPRM engagements including current state assessments program design and implementation technology integration and managed service operations.
  • Managed Service Operations Delivery : Oversee the end-to-end TPRM assessment lifecycle from intake to onboarding and offboarding ensuring effective delivery of TPRM managed services.
  • TPRM Technology Implementation : Lead implementation projects for TPRM technologies such as OneTrust ServiceNow Archer and Ariba ensuring successful integration and adoption within the organization.
  • Stakeholder Relationship Management : Build and maintain strong relationships with internal and external stakeholders facilitating effective communication and collaboration on TPRM initiatives.
  • TPRM Strategy Development : Develop and implement TPRM strategies and frameworks to identify assess and mitigate risks associated with third-party vendors and partners.

Policy and Procedure Implementation : Create and enforce TPRM policies and procedures that align with organizational goals industry standards and regulatory requirements.

  • Process Improvement : Review and enhance TPRM processes including risk assessment methodologies due diligence procedures and monitoring practices to ensure effectiveness and efficiency.
  • Cross-Department Collaboration : Work closely with stakeholders such as Privacy Legal Procurement Cybersecurity and IT to ensure a comprehensive approach to managing third-party risks.
  • Technology Enhancement Initiatives : Lead or participate in initiatives focused on technology enhancements including Automation Data Analytics and AI to support and streamline TPRM processes.
  • Market Awareness : Maintain a broad understanding of market trends competitor activities and EYs TPRM products and service lines.
  • Business Development Support : Assist EY leadership in driving business development efforts and managing client accounts related to TPRM services.
  • Internal Relationship Building : Foster strong internal relationships within EY Consulting Services and across other organizational services to promote TPRM best practices.

    • Skills and attributes for success

  • Excellent interpersonal written verbal communication and presentation skills
  • Hands-on experience of more than 8 years of with key components of Cyber Security including (but not limited to) :
  • Third Party Risk Management (End to end TPRM lifecycle)
  • Cyber Governance Risk and Compliance
  • Cyber Strategy & Transformation
  • Business Continuity & Disaster Recovery
  • Regulations / standards such as ISO 27001 NIST 800-53 PCI DSS HIPAA HITRUST GDPR CCPA COBIT OWASP Top 10 etc.
  • Proven experience in client-facing roles managing cyber security and resiliency-based third-party risk assessments from start to finish.
  • Ability to lead third-party assessments providing technical guidance to assessors and facilitating decision-making during evidence reviews.
  • Proficient in performing detailed technical quality assurance reviews of deliverables guiding the team with constructive feedback to ensure timely and high-quality outputs.
  • Strong stakeholder management skills capable of leading discussions with stakeholders and presenting engagement metrics including identified findings.
  • Effective communicator able to bridge gaps between assessors and vendors as needed.
  • Skilled in handling escalations analysing root causes identifying lessons learned and sharing insights with the team for continuous improvement.
  • Demonstrated people management skills fostering effective team collaboration.
  • Capable of reviewing remediation plans and providing quality feedback as a QA reviewer.
  • Experience in providing technical training to enhance team members skills and serving as a mentor as needed.
  • Committed to contributing to current processes identifying potential improvements or optimizations assessing impacts and communicating changes to relevant stakeholders for implementation.
  • In-depth knowledge of general security concepts including defence-in-depth least privilege security architecture and design networking architecture reviews VAPT IDS / IPS technologies SIEM and resiliency concepts such as business continuity and workplace safety.
  • Ability to develop budget scope and staffing recommendations based on an understanding of client budgets and project economics.
  • Experience managing large teams to deliver Cyber services either independently or within large complex projects.
  • Proficient in utilizing and guiding the team with TPRM tools such as OneTrust Process Unity ServiceNow Archer and external data providers like Security Scorecard and BitSight.

    • Qualify for the role you must have.

  • A bachelors degree in computer science computer / electrical engineering information technology or a related field
  • At least 8 years of overall experience of recent relevant work experience in information security / Third-Party Risk Management
  • One mandatory certification - CISSP CISA CISM CTPRP CTPRA CIPP ISO 27001
  • Knowledge of TPRM tools like OneTrust ProcessUnity ServiceNow Archer along with external data providers like SecurityScorecard and BitSight
  • Experience in client service delivery and be able to manage multiple engagement teams and projects.
  • Program and Project Management skills.

    • Ideally you will also have

  • Strong analytical and problem-solving skills
  • Strong drive to excel professionally and to guide and motivate others.
  • Excellent interpersonal written verbal communication and presentation skills.

    • What we look for

  • Highly motivated individuals with excellent problem-solving skills and the ability to prioritize shifting workloads in a rapidly changing industry.
  • An effective communicator you will be a confident leader equipped with strong people management skills and a genuine passion to make things happen in a dynamic organization.
  • An opportunity to be a part of market-leading multi-disciplinary team of 2000 professionals in the only integrated global transaction business worldwide.
  • Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries.

    • EY Building a better working world

    EY exists to build a better working world helping to create long-term value for clients people and society and build trust in the capital markets.

    Enabled by data and technology diverse EY teams in over 150 countries provide trust through assurance and help clients grow transform and operate.

    Working across assurance consulting law strategy tax and transactions EY teams ask better questions to find new answers for the complex issues facing our world today.

    Required Experience :

    Manager

    Key Skills

    Arm,Risk Management,Financial Services,Cybersecurity,COSO,PCI,Root cause Analysis,COBIT,NIST Standards,SOX,Information Security,RMF

    Employment Type : Full Time

    Experience : years

    Vacancy : 1

    Create a job alert for this search

    Risk And Compliance Manager • Delhi, Delhi, India

    Related jobs
    TPRM Assistant Manager - Cyber

    TPRM Assistant Manager - Cyber

    Cubical Operations LLP • Delhi, IN
    Third-Party Risk Management (TPRM) - Deputy Manager.Minimum 3 to 8 years in TPRM / Vendor Risk / Information Security / Risk Advisory. We are looking for a skilled and motivated.Third-Party Risk Man...Show more
    Last updated: 8 hours ago • Promoted • New!
    Manager / AVP - Global Market, Market Risk Compliance [T500-20757]

    Manager / AVP - Global Market, Market Risk Compliance [T500-20757]

    MUFG • Delhi, India
    Japan’s premier bank, with a global network spanning in more than 40 markets.Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to busin...Show more
    Last updated: 30+ days ago • Promoted
    Manager / Sr. Manager - Infosec Audit & Compliance

    Manager / Sr. Manager - Infosec Audit & Compliance

    EXL • Delhi, India
    Primary Responsibilities : Activities pertaining to InfoSec – Audit Assurance- First Line Compliance (including but not limited to) : Regular reviews of Policy, Process reviews basis cyber security b...Show more
    Last updated: 30+ days ago • Promoted
    Cybersecurity Director

    Cybersecurity Director

    Vriba Solutions • Delhi, India
    Cybersecurity Director Remote 6.Role Summary The Cybersecurity Director is responsible for the strategic vision and scaling of the cybersecurity practice to serve external clients.This leader will ...Show more
    Last updated: 4 days ago • Promoted
    Security Compliance Manager

    Security Compliance Manager

    Pay10 India • Delhi, India, India
    Job Description — M365 Security & Compliance Architect.Own the end-to-end implementation, hardening, and governance of Microsoft 365 E5 across Pay10 India, aligning to RBI requirements and relevant...Show more
    Last updated: 11 days ago • Promoted
    Cybersecurity Awareness Manager

    Cybersecurity Awareness Manager

    EXL • Noida, Uttar Pradesh, India
    We are looking for a dynamic and experienced Cybersecurity Awareness Manager to lead the development and execution of security awareness initiatives across the organization.The ideal candidate will...Show more
    Last updated: 11 days ago • Promoted
    Senior Manager Risk Management

    Senior Manager Risk Management

    EXL • Noida, Uttar Pradesh, India
    Minimum 8 years of experience in conducting cyber risk assessments in domains such as enterprise security, access management, VAPT, SOC, Endpoint Security, Cloud Security (IaaS, SaaS, PaaS), Data P...Show more
    Last updated: 11 days ago • Promoted
    Cybersecurity Product Manager

    Cybersecurity Product Manager

    NIIT Limited • Gurugram, Haryana, India
    We are seeking a strategic and entrepreneurial product leader to spearhead our Cyber GTM Office at NIIT.This role blends market-facing product leadership with internal orchestration across NIIT's c...Show more
    Last updated: 2 days ago • Promoted
    Manager- Cyber Defense Center

    Manager- Cyber Defense Center

    EXL • Noida, Uttar Pradesh, India
    Manager – Cyber Defense Center.Managing CDC operations @ 24 • 7.Understanding of alerts (SIEM, EDR, DLP), handling escalations, communications, notifications of higher priority incidents.Respond to ...Show more
    Last updated: 11 days ago • Promoted
    Manager - Cybersecurity

    Manager - Cybersecurity

    GMG • Gurugram, Haryana, India
    GMG is a global well-being company retailing, distributing and manufacturing a portfolio of leading international and home-grown brands across sport, everyday goods, health and beauty, properties a...Show more
    Last updated: 2 days ago • Promoted
    Senior Manager -Risk & Compliance

    Senior Manager -Risk & Compliance

    Flipkart • Delhi, India
    Stakeholder Management, Business Excellence, Risk Management Desirable Skills -.Customer Experience Education / Qualification -. A Bachelor's degree in Business Administration, Finance, Information Te...Show more
    Last updated: 12 days ago • Promoted
    ITGC Deputy Manager - Cyber

    ITGC Deputy Manager - Cyber

    Cubical Operations LLP • Delhi, India
    Early joiners preferred Key Responsibilities : Conduct.IT processes and control environments.Collaborate with cross-functional teams, including risk advisory and cybersecurity functions, to ensure e...Show more
    Last updated: 11 days ago • Promoted
    IT Risk and Controls Manager

    IT Risk and Controls Manager

    Deloitte Touche Tohmatsu India LLP • Gurugram, Haryana, India
    This is a full-time on-site role for an IT Risk and Controls Manager at Deloitte Touche Tohmatsu India LLP, based in Gurugram. The IT Risk and Controls Manager will be responsible for identifying, a...Show more
    Last updated: 2 days ago • Promoted
    Senior Manager - Network & Security Operations Compliance

    Senior Manager - Network & Security Operations Compliance

    Kotak Mahindra Bank • Delhi, India
    Oversee the Audit and Compliance activities for the Network & Security Operations within the Information Technology division of the Bank. This role requires effective collaboration with Internal Aud...Show more
    Last updated: 2 days ago • Promoted
    Cyber Security Manager

    Cyber Security Manager

    R1 RCM • Noida, Uttar Pradesh, India
    R1 is a leading provider of technology-driven solutions that help hospitals and health systems to manage their financial systems and improve patients’ experience. We are the one company that combine...Show more
    Last updated: 20 days ago • Promoted
    Associate Manager II - Cyber Security

    Associate Manager II - Cyber Security

    Navi • Delhi, India
    At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data. We lead the charge on cyber risk management, regu...Show more
    Last updated: 3 days ago • Promoted
    Cyber Risk Intelligence and Automation Manager

    Cyber Risk Intelligence and Automation Manager

    NMT Security | Simplifying Cybersecurity • Noida, Uttar Pradesh, India
    Role : IT Risk Intelligence and Automation Manager.Join NMT Security - The 24×7 AI-Powered CISO (NOVA).NOVA - our 24×7 AI-powered CISO Copilot. NBFCs, FinTechs, SaaS, and regulated enterprises.ISO 27...Show more
    Last updated: 13 days ago • Promoted
    Manager Enterprise Risk

    Manager Enterprise Risk

    Ujjivan Small Finance Bank • Delhi, India
    These responsibilities are representative and the role holder is also responsible for any other job assigned by the superior authorities from time to time. This section in not intended to be an exha...Show more
    Last updated: 30+ days ago • Promoted