RemoteLeaf Logo
Log in Sign up

Third Party Risk Management (TPRM) Consultant - Principal

2 hours, 3 minutes ago
Poland
Full-time
Lead
Penetration Tester
Cybersecurity
Apply Now
Infosys

Infosys

Infosys specializes in providing comprehensive consulting and IT services that facilitate digital transformation for clients across various industries, leveraging advanced technologies and innovative solutions to enhance business processes and drive me...

Internet Software & Services
100K+
Founded 1981
View All Jobs 9

Description

  • Lead the development of TPRM and GRC proposals, including scope, delivery models, governance structures, and operating models.
  • Design enterprise-level third-party risk management strategies aligned to regulatory, operational, and cyber risk requirements.
  • Lead complex client engagements as the engagement lead and trusted advisor to executive stakeholders.
  • Deliver TPRM services including assessments, frameworks, tooling, and operationalisation.
  • Lead third-party security assessments, audits, and assurance activities.
  • Define assessment methodologies, risk scoring models, control frameworks, and reporting structures.
  • Oversee supplier due diligence, onboarding risk processes, and continuous monitoring programmes.
  • Design and implement scalable third-party risk frameworks, policies, standards, and operating models.
  • Act as project manager, delivery lead, and programme lead for large-scale TPRM initiatives.
  • Lead, mentor, and develop consultants and build high-performing delivery teams.

Requirements

  • Extensive enterprise-level experience in Third Party Risk Management (TPRM) and Governance, Risk & Compliance (GRC).
  • Strong background as a security assessor, auditor, and risk consultant.
  • Proven experience leading TPRM, vendor risk, and supplier assurance programmes.
  • Experience as a Project Manager, Delivery Lead, or Programme Lead on complex engagements.
  • Strong knowledge of ISO 27001, NIST, SOC2, GDPR, DORA, NIS2, and similar frameworks.
  • Hands-on experience with GRC/TPRM platforms, ideally including OneTrust.
  • Ability to design and implement third-party risk frameworks, policies, and governance models.
  • Strong stakeholder management skills at executive and board level.
  • Proven people management experience, including team leadership and mentoring.
  • Minimum 10 years of experience in cyber security, risk management, GRC, audit, or related domains.
  • CISA strongly preferred.
  • ISO 27001 Lead Auditor certification highly desirable.
  • CISM, CRISC, or CISSP are an advantage.
  • Experience across multiple industries such as Financial Services, Healthcare, Critical Infrastructure, Government, or Technology.
  • Experience in regulatory-driven environments and compliance-led transformation programmes.

Benefits

  • Industry-leading compensation and benefits.
  • Top training and development opportunities.
  • Inclusive and entrepreneurial culture.
  • Global reach within a mid-size consultancy backed by Infosys.
  • Opportunities to work with market-leading brands across sectors.
  • Recognition as a top employer by Financial Times, Forbes, Management Consulting Magazine, and Top Employers Institute.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Alimentiv

Clinical Operations Lead

Alimentiv 251-1K Professional Services

Alimentiv is hiring a Clinical Operations Lead in Bucharest to oversee regional clinical study delivery, managing CRA and site performance and ensuring compliance with study plans and regulations.

Romania Full-time Senior Program Manager
3 minutes ago
Devoted Studios

Senior Game Producer - Full Cycle

Devoted Studios 51-250 Internet Software & Services

Devoted Studios is seeking a Senior Game Producer to lead external game development projects from kickoff through final delivery in a fully remote, global production environment.

Anywhere Full-time Senior Program Manager
Agile Game Development JIRA Scrum
18 minutes ago
CrossCountry

Associate Director - Private Equity Advisory (Transactions)

CrossCountry 251-1K Professional Services

CrossCountry’s Private Equity Advisory team is hiring an Associate Director in the United States to support portfolio companies and deal teams through transaction, finance, and accounting work that improves operations and readiness for exit.

United States Full-time Lead Financial Analyst Program Manager
18 minutes ago
Symmetrio

ServiceNow Portfolio Manager

Symmetrio Professional Services

Symmetrio is recruiting a remote ServiceNow Portfolio Manager consultant for a large international hospitality and technology company to oversee the enterprise ServiceNow program, align delivery to business priorities, and drive long-term platform value and sustainability.

United States Contract Lead Program Manager
$160k-$210k
Agile
18 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers