EY Risk _ TPRM Non FSO, Senior Consultant in Bangalore, India

Risk _ TPRM Non FSO, Senior Consultant


Requisition # BEN003VB

Post Date Feb 20, 2018

Third Party Risk Management (TPRM) – Senior (42/1-3)

Job purpose:

Senior in the Risk Advisory team to work on various TPRM projects for our customers across the globe.

You will be responsible for delivering on accounts in accordance with EY quality guidelines & methodologies. You will need to execute and coordinate on accounts and relationships on a day-to-day basis and explore new business opportunities for the firm. Establishing, strengthening and nurturing relationships with clients and internally across service lines and proactively will also be a part of your day-to-day activities. You will assist in developing new methodologies and internal initiatives, and help in creating a positive learning culture by coaching, counselling and developing junior team members.

In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards, by reviewing the work provided by junior members.

Your client responsibilities:

  • Provide guidance and share knowledge with team members and participate in performing procedures focusing on complex, judgmental and/or specialized issues.

  • Maintain relationships with client management to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations

  • Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the client's business. Demonstrate strong project management skills, inspire teamwork and responsibility with engagement team members, and use current technology/tools to enhance the effectiveness of deliverables and services. Understand EY and its service lines and actively assess what the firm can deliver to serve clients

  • Assist Managers in driving the business development process on existing client engagements by gathering appropriate resources, gaining access to key contacts & assisting in proposal preparation.

  • Assist in creating innovative insights for clients, adapt methods & practices to fit operational team needs, contribute to thought leadership documents and develop new methodologies.

  • Facilitate discussions / knowledge sharing with key client personnel and contribute to EY thought leadership.

  • Plan & deliver on client engagements. Provide regular status updates on engagements and work products.

  • Demonstrate strong project management skills

  • Maintain a strong client focus by effectively serving client needs and developing productive working relationships with client personnel. Stay abreast of current business and economic developments and new pronouncements/standards relevant to the client's business.

  • Demonstrate industry expertise (deep understanding of the industry, emerging trends, issues/challenges, key players & leading practices)

  • Review status updates and prepare management presentations/audit committee presentations etc.

  • Actively contribute to improving operational efficiency on projects & internal initiatives.

Your people responsibilities:

  • Display teamwork and integrity. Work with team members to meet committed timelines and quality on engagements

  • Driving the quality culture agenda at GDS

  • Manage the performance management for the direct reportees, as per the organization policies

  • Training and mentoring of project resources

  • Participating in the organization-wide people initiatives

Mandatory skills:

  • Strong knowledge of information security standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI – DSS, HITRUST, etc.

  • Strong knowledge of regulations such as FISMA, HIPAA, Reg SCI, MAS, etc.

  • Proficient working knowledge within the following risk domains/technologies: Access Control, Asset Management, Network and Operations Management, Physical Security, Secure Software Development, Business Continuity Management, Cryptography etc.

  • Thorough understanding of cloud computing security controls.

  • Strong understanding on evaluating the network security diagrams, SOC 1 and SOC 2 reports, HITRUST work papers etc.

  • Proven ability to work independently and effectively in a complex environment with multi-location team structure

  • Strong control, process, and project management skills with the proven ability to influence and drive results from a diverse team of functional stakeholders

  • Proficient risk assessment, interpretation, analytical and negotiation skills.

  • IT Risk Management/ Audit industry certification (such as CISSP, CISA, CRISC, etc.) required

  • Proven ability to collaborate and build strong relationships at all levels of teammates and management

  • Demonstrated skills in project management, business analysis or problem-solving in a fast-paced environment

  • Strong written and verbal communication skills.

  • Proficient in Microsoft Outlook, Word, Excel and PowerPoint

  • 4-6 years’ experience in supplier management, project management, internal audit or public accounting capacity

  • Master’s degree preferred, Bachelor’s degree required or equivalent technical experience

Preferred skills:

  • Strong domain experience in a specific sector

  • Prior Client facing experience

  • Proficient in operating risk management tools: Archer, Process Unity, Metric Stream.