Third Party Risk Management
Job description
Role & responsibilities
- Should be able to develop and manage a comprehensive third party risk management framework / program.
- Should be able to drive regulatory compliance / remediation programs such as Digital Operational Resilience Act (DORA).
- Should be independently able to manage third party due diligence including initial risk assessments and ongoing monitoring.
- Contribute to governance and facilitate remediation recommendations of related risks, deficiencies, gaps or issues, advice with identifying compensating controls alternative where compliance requirements cannot be met.
- Document and present overall residual risk to higher management for approvals and risk acceptances.
- Interact with vendors, business, and multiple stakeholders to assess, explain and remediate the risks identified.
< span lang="EN-IN" style="font-size:12.0pt;font-family:Symbol;mso-fareast-font-family: Symbol;mso-bidi-font-family:Symbol;mso-fareast-language:EN-IN">· Ongoing monitoring activities such as performance monitoring, contractual compliance, SLA/KPI adherence, negative news monitoring etc.
- Test design and operating effectiveness of TPRM controls, identify gaps and recommend improvements.
- Support key reporting activities associated within key functions. Perform adhoc IT risk analysis and reporting.
Technical/Functional Skills
