Role description
Who we are:
At UST, we help the world’s best organizations grow and succeed through transformation. Bringing together the right talent, tools, and ideas, we work with our client to co-create lasting change. Together, with over 26,000 employees in 25 countries, we build for boundless impact—touching billions of lives in the process. Visit us at .
The Opportunity:
IT Risk Management
Bangalore, KA
Key Roles & Responsibilities:
- Lead the identification, assessment, and mitigation of IT and technologyrelated risks, including GxP, data integrity, cybersecurity, and operational risks.
- Define and maintain a riskbased approach to IT governance aligned with applicable regulations and standards (e.g., FDA QMSR, 21 CFR Parts 11 and 820, ISO 13485, ISO 27001, Annex 11).
- Support system risk assessments for new tools, enhancements, upgrades, and decommissioning activities.
- Lead IT system and vendor risk assessments from a quality and regulatory perspective.
- Ensure risks impacting GxP compliance, data integrity (ALCOA+), and patient/product safety are properly assessed and mitigated.
- Vendor and ThirdParty Compliance
- Lead vendor risk assessments, due diligence activities, and ongoing monitoring for critical and highrisk vendors.
- Partner with InfoSec to align vendor quality risk assessments with:
- Security risk assessments
- Data classification and data flow analyses
- Review and assess vendor documentation, including:
- Quality Management Systems (QMS)
- Validation and assurance documentation
- Coordinate and participate in vendor audits, as required.
- Partnership with Information Security
- Work closely with InfoSec to ensure data protection, privacy, and cybersecurity controls support regulatory requirements
- Review system architectures, data flows, and data classifications affecting regulated data
- Collaborate to ensure security controls are implemented and operated in a manner that supports regulatory compliance, audit readiness, and data integrity.
- Collaborate with Information Security to develop, maintain, and improve IT risk, vendor compliance, and thirdparty governance procedures as appropriate.
- Audit, Inspection, and Issue Management
- Support internal audits, regulatory inspections, and thirdparty assessments related to IT systems and vendors.
- Support CAPA development and remediation activities related to IT risk or vendor findings.
- CrossFunctional Leadership and Influence
- Partner closely with IT, Quality, InfoSec, and Business teams to enable compliant technology adoption.
- Provide practical, riskbased guidance that supports business needs while maintaining regulatory compliance.
- Communicate complex compliance and risk concepts clearly to nontechnical stakeholders.
Required Qualifications
- Bachelor s degree in Information Technology, Computer Science, Engineering, Quality, or a related field
- 8+ years of experience in IT Quality & Compliance, IT Risk Management or Vendor Oversight within a regulated environment (pharma, biotech, medical devices, or similar)
Strong working knowledge of:
- FDA QMSR / 21 CFR Part 820
- Data Integrity principles (ALCOA+)
- Handson experience supporting vendorhosted and SaaS systems in GxP contexts.
- Experience leading or supporting vendor audits.
- Familiarity with information security frameworks (e.g., ISO 27001, SOC 2).
- Experience working with cloudbased systems and modern IT delivery models
- Demonstrated experience partnering with Information Security teams.
- Professional certifications (e.g., CISA, CISSP, CRISC, ASQ, ISPE) a plus
What we believe:
We’re proud to embrace the same values that have shaped UST since the beginning. Since day one, we’ve been building enduring relationships and a culture of integrity. And today, it's those same values that are inspiring us to encourage innovation from everyone to champion diversity and inclusion and to place people at the centre of everything we do.
Humility:
We will listen, learn, be empathetic and help selflessly in our interactions with everyone.
Humanity:
Through business, we will better the lives of those less fortunate than ourselves.
Integrity:
We honor our commitments and act with responsibility in all our relationships.
Equal Employment Opportunity Statement
UST is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion, or sexual orientation.
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
UST reserves the right to periodically redefine your roles and responsibilities based on the requirements of the organization and/or your performance.
- To support and promote the values of UST.
- Comply with all Company policies and procedures
Skills
cloud infrastructure,it risk management,vendor risk assessment,data integrity,
About UST
UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients’ organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.
