Scymes Services Pvt. Ltd.
Website:
scymes.com
Job details:
Company Description
Scymes Services Pvt. Ltd. is a Knowledge Process Outsourcing (KPO) firm providing value-added turnkey solutions to Banks & Financial Institutions. Certified with ISO 9001/27001 and Cyber GRX, Scymes is committed to upholding high standards in client delivery and information security practices. Scymes is working on an assignment for an MNC bank for a role as Supplier Risk Specialist and function on the roles of the MNC Bank.
Role Description
The Supplier Risk Specialist, based in Mumbai, India, will play a pivotal role in supporting the establishment and continuous development of our third-party risk management (TPRM) approach. The role is primarily directed at supplier due diligence execution and associated analysis and documentation.
Acting as subject matter expert (SME) and first line of defence, he/she will identify, assess, report, and monitor supplier risks associated with the Bank’s external suppliers and outsourcing partners using third-party intelligence to evaluate financial, ESG and other key aspects.
The mandate spans the entire supplier lifecycle - from new supplier onboarding screening through periodic or ad-hoc reviews and remediations to supplier exits– ensuring, from a Procurement perspective, that third-party engagements are aligned with the Bank’s regulatory, operational, financial, and reputational risk appetite.
The Supplier Risk Specialist will collaborate cross-functionally with Global Category Managers, Senior Sourcing Leads, as well as with the Bank’s Risk functions, Compliance, Information Security, ESG, BCM and Business Stakeholders to support embedding a risk-based approach into sourcing decisions and third-party oversight. This role is instrumental in safeguarding the Bank’s resilience, regulatory compliance, and long-term sustainable supplier relationships.
ROLE
· Supplier Due Diligence Execution:
-Supplier risk assessments: Conduct risk assessments for existing and new suppliers based on Third Party Risk Framework and pre-defined Procurement Risk assessment methodology
-Perform initial, periodic as well as ad-hoc Supplier due diligence reviews whilst involving second-line functions (Risk, Compliance, Legal, BCM, InfoSec, etc.) where needed
· Data Collection & Validation:
-Document and maintain standard and risk-specific Procurement due diligence templates and playbooks in relevant databases
-Manage the distribution, completion and analysis of supplier questionnaires related to financials viability, cybersecurity, ESG compliance, and other risk aspects ensuring high response rates and data completeness
-Support identification of sub-tier risks, such as concentration of sub-processors in high-risk regions, using automated tools or structured surveys
· Compliance Monitoring & Reporting:
-Track supplier compliance with the Supplier Code of Conduct and contractual risk clauses, flagging non-compliance for escalation to the Global Category Management
-Review legacy contracts and suppliers to assess Procurement related risk exposure and compliance gaps
-Verify implementation of ongoing Procurement monitoring checks (financial health, concentration risk, subcontracting, ESG etc.)
-Review outcomes with Global Category Management on regular basis
-Support remediation planning and execution, track Procurement mitigation activities, and escalate unresolved issues to Global Category Management, LM or other instances as needed
-Provide regular Procurement supplier risk reporting and dashboards for internal stakeholders and senior management
· Onboarding & Expert Support:
-Guide suppliers through the onboarding process, ensuring all required certifications are valid and up to date prior to contract execution
-Train Procurement and Business SMEs on Supplier risk identification, due diligence, and policy requirements
· Cross-Functional Procurement Stakeholder Engagement:
-Collaborate with Global Category Management and Business Stakeholders to support integration of risk management into sourcing strategy and operational supplier management
-Act as the primary interface between Global Procurement and internal risk functions (e.g. TPRM, Legal, Compliance, Cyber), ensuring together with Global Category Management that suppliers meet the Bank’s risk standards
-Acts as first point of contact providing Procurement subject matter expertise and support for audits related to supplier risk
Qualifications
· Bachelor’s degree in Business Administration, Finance, Risk Management, Law, or related field
· 3-5 years’ experience in Procurement, Vendor Risk Management, Operational Risk, or a related
Governance/Risk/Compliance (GRC) function
· Strong understanding of third-party risk domains: financial, operational, regulatory, and
reputational risk
· Proven ability to assess risk in complex supplier arrangements, including outsourcing and
subcontracting
· Familiarity with supplier due diligence techniques (e.g., financial statement analysis, sanctions
checks, ESG assessments, etc.)
· Strong analytical skills and attention to detail when reviewing complex documentation
· Ability to synthesize complex risk topics into clear recommendations.
· Team player who is open-minded, hands-on, a critical-thinker and has excellent problem-solving
skills
· Good communication skills, good written and spoken English, other language(s) a plus
· Proactive mindset, high integrity, and solution-oriented approach
· Proficiency with GRC and TPRM tools (e.g., ServiceNow, SAP Ariba, etc.).
Preferred
· Strong reporting and data analysis skills, including proficiency in Python (Sdata processing/automation) and BI tools such as Tableau or Power BI for dashboarding and risk indicator visualization
· Prior experience in a regulated financial institution (banking or insurance)
- Working knowledge of Swiss/EU/UK/APAC regulations relating to third-party risk and outsourcing (e.g., FINMA Circular 2018/3, EBA Guidelines, DORA)
Click on Apply to know more.