Mphasis
Website:
mphasis.com
Job details:
Job Description
Role: Supplier Due Diligence & Third-Party risk management – L4
Location: Preferred Bangalore and Secondary Pune
Job Summary
We are seeking a mid-level TPRM professional to manage third-party risk assessments and supplier due diligence activities for a UK-based insurance client. The individual will be responsible for evaluating vendor risk posture, ensuring regulatory compliance, and supporting ongoing risk monitoring activities across the supplier lifecycle.
Years of experience needed
3-6 years of experience in Information Security with expertise in Governance Risk and Compliance.
Technical Skills
Key Skills
3-6 years of experience in Third Party Risk Management, Supplier Risk, or IT Risk
Hands-on experience in conducting supplier due diligence and risk assessments
Exposure to UK or EMEA regulatory environments preferred insurance or financial services
Ability to manage stakeholders across business, procurement, legal, and IT teams
Strong documentation and reporting skills
Roles and Responsibilities
Perform end-to-end third-party risk assessments inherent and residual risk
Conduct supplier due diligence reviews security, privacy, operational, financial risk
Review and analyze security questionnaires and supporting evidence
Assess supplier controls against regulatory and contractual requirements
Track remediation actions and follow-ups
Maintain risk registers and reporting dashboards
Support audits and regulatory queries related to third-party risk
Required Qualifications
Strong understanding of SRE principles and practices
Experience in risk assessments, compliance management, and security audits
Excellent leadership and stakeholder management skills
Ability to manage multiple priorities in a fast-paced environment
Preferred Certifications
CISSP
CISA
ISO 27001 Lead Implementer or Lead Auditor
Soft Skills
Strong communication and collaboration skills
Problem-solving and analytical thinking
Leadership and mentoring abilities
Click on Apply to know more.