Job Title

Job Title: TPRM Analyst Location: Remote (Work from Home) Experience: 2+ Years Shift Timing: US Shift (Evening IST) Employment Type: Full-Time Joining: Immediate Joiners Preferred Role Overview: We are looking for a detail-oriented and proactive TPRM Analyst to join our team. The ideal candidate will have hands-on experience in Third-Party Risk Management , a solid understanding of Information Security frameworks such as ISO 27001 and ISMS , and the ability to work independently in a remote setup during US hours. Key Responsibilities: Conduct third-party risk assessments including initial onboarding, periodic reviews, and offboarding. Evaluate vendors’ security posture through questionnaires, documentation reviews, and due diligence calls. Assess third-party compliance with ISO 27001 , ISMS , SOC 2 , NIST , and other relevant standards. Identify and track security risks, escalate critical findings, and support remediation plans. Maintain and update the TPRM inventory, risk register, and documentation repository. Collaborate with internal stakeholders (legal, procurement, IT security, business units) for vendor risk decisions. Ensure timely communication and tracking of risk mitigation activities and deliverables. Prepare reports and dashboards for leadership on vendor risk trends and status. Required Skills and Qualifications: Minimum 2 years of experience in Third-Party Risk Management or Information Security. Strong understanding of ISO 27001 , ISMS , and security compliance standards. Familiarity with risk assessment frameworks, tools, and methodologies. Experience in working remotely and coordinating across time zones, preferably during US shifts . Excellent communication, analytical, and documentation skills. Self-driven, highly organized, and detail-oriented. Good to Have: Experience with GRC platforms (e.g., Archer, OneTrust, ProcessUnity). Knowledge of data privacy laws like GDPR, CCPA. Certifications such as ISO 27001 LA, CISA, or Security+. Why Join Us: 100% Remote role with work-life flexibility. Opportunity to work with a global cybersecurity team. Exposure to international clients and compliance standards. Career growth in a niche and in-demand domain.