and Role :
We are seeking Project Leader, Risk Analyst Grade I based out of Chennai / Pune, India offices. In this role you will be responsible for end-to-end management of third party risk assessment.
Here is brief description of the job role :
Role and Responsibility :
This position would be part of global Third Party Risk Management team based in Chennai / Pune India, to perform Risk Assessments on BNY Mellon’s Third Parties.
The individual would assess the adequacy of controls, standards, policies, and procedures to protect the Confidentiality, Integrity and Availability of BNY’s information and ensure compliance to regulatory requirements.
Support lines of businesses and their processes and controls for identifying and managing technology and information risk associated with services provided by external vendors and provide ongoing independent oversight and challenge of technology.
Assess the level of inherent technology risks in the context of business objectives & risk appetite and establish residual risk and may include coordinating site visits for high-risk service providers.
Provide guidance to the lines of business, Third Party and other stakeholders related to third-party risks and collaborate with Global Procurement, Operational Risk and Cyber Security teams.
Minimum of 4 - 6 years of Information Security, vendor risk management and / or other risk management experience with a recognized company
Comprehensive SME level knowledge of Risk Assessments (Application / Infrastructure or Vendor)
Experience with Risk Management, Operational Risk, Internal Audit, and / or Controls related function preferably in banking or financial services industry is desired
Familiar with regulatory and industry standards such as NIST, ISO etc. and SOC1 / SOC2 audit reports
Ability to lead and execute complex risk assessments that require both analytical and technical skills across all domains of IT Security (example Application & Infrastructure Security, Network Security, Cloud Security, Privacy, Identity and Access Management, Physical and Environmental Controls, Business Continuity / Disaster Recover, and Regulatory / Standard Compliance etc.)
Good communicator with strong networking skills to build relationships with global stakeholders in multiple time zones
Strong written communication and report writing skills with proficiency on office productivity applications especially ability to quickly analyze and manipulate complex spreadsheets by writing macros
Flexibility, multi-tasking ability and willingness to work with changing priorities in a complex and dynamic work environment
Certifications such as CISSP, CISA or CISM preferred
What’s in it for you?
1.Competitive global pay and benefits
2.Unparalleled experience as part of one of the most advanced Risk and compliance teams in the world, with opportunities to build valuable skills and grow your career.