Job Title: TPRM Consultant Locations: Mumbai & Coimbatore (Work From Office) Experience: 3+ Years Joining: Immediate / Early Joiners Preferred Job Summary: We are looking for a Third Party Risk Management (TPRM) Consultant with strong experience in risk assessment, ISO 27001, GRC frameworks , and Information Security Management Systems (ISMS) . The ideal candidate will be responsible for evaluating and mitigating risks posed by third-party vendors and ensuring compliance with regulatory and internal security requirements. Key Responsibilities: Conduct end-to-end third-party risk assessments including due diligence, security control reviews, and vendor profiling. Evaluate vendors against frameworks such as ISO 27001 , NIST , and internal risk policies. Collaborate with business units and procurement teams to support secure onboarding and continuous monitoring of vendors. Design, implement, and maintain GRC processes for third-party risk tracking and reporting. Identify gaps in vendor security postures and recommend mitigation strategies. Support internal and external audits by providing evidence and documentation for TPRM controls. Maintain and improve Information Security Management System (ISMS) documentation related to third-party management. Track, escalate, and report risk remediation plans and performance metrics. Required Skills & Qualifications: Minimum 3 years of experience in Third Party Risk Management , GRC , or Information Security . Strong understanding of ISO 27001 , risk assessment methodologies , and ISMS implementation . Hands-on experience with risk assessment tools, security questionnaires, and audit processes. Ability to interpret and communicate security risk and compliance findings to technical and non-technical stakeholders. Excellent analytical, documentation, and stakeholder management skills. Relevant certifications such as ISO 27001 LA , CISA , or CRISC are a plus.
Job Title
TPRM Consultant - Cyber