Global Managed Services - Staff - Third Party Risk as a Service

As a Staff in the Third-Party Risk as a Service (TPRaaS) team at EY, you will help clients enhance their business performance by translating their strategies into realities. You will participate in the delivery of Third-Party Risk Management (TPRM) engagements, vendor calls, and client interactions. You will have opportunities to work with leading businesses across a range of industries and develop new skills and knowledge.

Requirements

• B.Tech (IT/Computer Science), BSc.(IT), BE, MCA, from a tier1 or tier 2 college.
• 1 to 4 years of demonstrated experience with Risk Management, preferably in the Third-Party engagement lifecycle (pre-contracting, contracting, and post contracting).
• Basic understanding of the TPRM framework, Risk Management, Information Security practices.
• Good to have exposure in Contract Risk Reviews.
• Good exposure in TPRM tools and technology solutions (e.g., GRC enablement solutions, such as Process Unity, Prevalent, Archer, ServiceNow, etc.).
• Basic knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI – DSS, HITRUST, etc.
• Basic knowledge of privacy regulations such as GDPR, CCPA, etc.
• Basic knowledge of regulations such as FISMA, HIPAA, Reg SCI, MAS, etc.
• Basic knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts, Physical & Environmental Security, Asset Security and Identity & Access Management.
• Good to have certifications - CISSP, CISA, CISM, CTPRP, CIPP, ISO 27001 Lead Auditor or Lead Implementer

Benefits

• Support, coaching, and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you