RemoteLeaf Logo
Log in Sign up

Third Party Risk Management (TPRM) Consultant - Principal

1 month, 1 week ago
Poland
Full-time
Lead
Penetration Tester
Cybersecurity
Apply Now
Infosys

Infosys

Infosys specializes in providing comprehensive consulting and IT services that facilitate digital transformation for clients across various industries, leveraging advanced technologies and innovative solutions to enhance business processes and drive me...

Internet Software & Services
100K+
Founded 1981
View All Jobs 10

Description

  • Lead the development of TPRM and GRC proposals, including scope, delivery models, governance structures, and operating models.
  • Design enterprise-level third-party risk management strategies aligned to regulatory, operational, and cyber risk requirements.
  • Lead complex client engagements as the engagement lead and trusted advisor to executive stakeholders.
  • Deliver TPRM services including assessments, frameworks, tooling, and operationalisation.
  • Lead third-party security assessments, audits, and assurance activities.
  • Define assessment methodologies, risk scoring models, control frameworks, and reporting structures.
  • Oversee supplier due diligence, onboarding risk processes, and continuous monitoring programmes.
  • Design and implement scalable third-party risk frameworks, policies, standards, and operating models.
  • Act as project manager, delivery lead, and programme lead for large-scale TPRM initiatives.
  • Lead, mentor, and develop consultants and build high-performing delivery teams.

Requirements

  • Extensive enterprise-level experience in Third Party Risk Management (TPRM) and Governance, Risk & Compliance (GRC).
  • Strong background as a security assessor, auditor, and risk consultant.
  • Proven experience leading TPRM, vendor risk, and supplier assurance programmes.
  • Experience as a Project Manager, Delivery Lead, or Programme Lead on complex engagements.
  • Strong knowledge of ISO 27001, NIST, SOC2, GDPR, DORA, NIS2, and similar frameworks.
  • Hands-on experience with GRC/TPRM platforms, ideally including OneTrust.
  • Ability to design and implement third-party risk frameworks, policies, and governance models.
  • Strong stakeholder management skills at executive and board level.
  • Proven people management experience, including team leadership and mentoring.
  • Minimum 10 years of experience in cyber security, risk management, GRC, audit, or related domains.
  • CISA strongly preferred.
  • ISO 27001 Lead Auditor certification highly desirable.
  • CISM, CRISC, or CISSP are an advantage.
  • Experience across multiple industries such as Financial Services, Healthcare, Critical Infrastructure, Government, or Technology.
  • Experience in regulatory-driven environments and compliance-led transformation programmes.

Benefits

  • Industry-leading compensation and benefits.
  • Top training and development opportunities.
  • Inclusive and entrepreneurial culture.
  • Global reach within a mid-size consultancy backed by Infosys.
  • Opportunities to work with market-leading brands across sectors.
  • Recognition as a top employer by Financial Times, Forbes, Management Consulting Magazine, and Top Employers Institute.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

The New York Times

Executive Producer (Remote)

The New York Times 1K-5K Media

The Athletic is hiring a remote Executive Producer / Video Editor to lead production for its flagship baseball show, Rates & Barrels, overseeing episode creation, post-production, audience growth, and social distribution.

United States Full-time Senior Program Manager
$90k-$100k
9 minutes ago
Anduril Industries

Senior Technical Program Manager (Active Clearance)

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Program Delivery Lead to oversee the development, execution, and delivery of Battlespace Awareness software for critical defense programs.

United States Full-time Senior Program Manager
$144k-$191k
Confluence GitHub JIRA
37 minutes ago
ONLY [オンリー]

Program Manager - Service Delivery / Operations

ONLY [オンリー] Textiles, Apparel & Luxury Goods

Blueprint is hiring a remote frontline operations coordinator to triage and route high-volume escalation cases for internal teams while ensuring timely resolution within SLA targets.

United States Full-time Junior Operations Specialist Program Manager
$52k-$57k
45 minutes ago
GuidePoint Security

Jr. Identity Security Metrics Consultant & Databricks Analyst

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is seeking a Jr. Identity Security Metrics Consultant & Databricks Analyst to support federal identity security initiatives and produce data-driven reporting from identity platforms and Databricks.

United States Full-time Junior Data Analyst Penetration Tester
Cybersecurity Databricks Machine Learning
1 hour, 6 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers