To achieve professional excellence by delivering quality work in a competitive and mentally stimulating environment for the betterment of the organization and self.
o Designing the TPRM framework assessing the information security risks and controls at external third parties in order to safeguard client’s sensitive information
o Conducting Inherent Risk Assessment (IRA) and Information Security Risk Assessment (ISR) on suppliers who have access to data or assets
o Preparing risk-based questionnaire to assess third party’s inherent risk score
o Conducting vendor assessment to determine the controls in place by the third-party and
determine the on-going monitoring that is necessary to perform on the third-party. The assessment contains a set of risk domains and questions that the third-party must respond to
o Preparing and presenting TPRM information security assessment reports
o Reviewing and closing gaps/issues identified during vendor assessment and preparing a remediation plan to monitor to ensure that issues are resolved within the stipulated timelines
o Responding to supplier inquiries related to information security risk assessments o Tracking and reporting supplier information security findings and issues
o Assistance with maintaining and developing documentation related to TPRM information security policies, processes and standards
o Providing reports of key risk and operational metrics to management
o Reviewing and analyzing various metrics which help in measuring and monitoring supplier risks, TPRM performance and service quality