Job Title

Job Title:TPRM Analyst Location:Remote (Work from Home) Experience:2+ Years Shift Timing:US Shift (Evening IST) Employment Type:Full-Time Joining:Immediate Joiners Preferred Role Overview: We are looking for a detail-oriented and proactiveTPRM Analystto join our team. The ideal candidate will have hands-on experience inThird-Party Risk Management , a solid understanding ofInformation Security frameworkssuch asISO 27001andISMS , and the ability to work independently in a remote setup during US hours. Key Responsibilities: Conduct third-party risk assessments including initial onboarding, periodic reviews, and offboarding. Evaluate vendors’ security posture through questionnaires, documentation reviews, and due diligence calls. Assess third-party compliance withISO 27001 ,ISMS ,SOC 2 ,NIST , and other relevant standards. Identify and track security risks, escalate critical findings, and support remediation plans. Maintain and update the TPRM inventory, risk register, and documentation repository. Collaborate with internal stakeholders (legal, procurement, IT security, business units) for vendor risk decisions. Ensure timely communication and tracking of risk mitigation activities and deliverables. Prepare reports and dashboards for leadership on vendor risk trends and status. Required Skills and Qualifications: Minimum2 years of experiencein Third-Party Risk Management or Information Security. Strong understanding ofISO 27001 ,ISMS , and security compliance standards. Familiarity with risk assessment frameworks, tools, and methodologies. Experience in working remotely and coordinating across time zones, preferably duringUS shifts . Excellent communication, analytical, and documentation skills. Self-driven, highly organized, and detail-oriented. Good to Have: Experience with GRC platforms (e.g., Archer, OneTrust, ProcessUnity). Knowledge of data privacy laws like GDPR, CCPA. Certifications such as ISO 27001 LA, CISA, or Security+. Why Join Us: 100% Remote role with work-life flexibility. Opportunity to work with a global cybersecurity team. Exposure to international clients and compliance standards. Career growth in a niche and in-demand domain.