EY Business Consulting_Non FS TPRM_Senior in Gurgaon, India
Business ConsultingNon FS TPRMSenior
Requisition # GGN00473
Post Date Jan 06, 2021
EY GDS Consulting - Non-financialServices – Third-Party Risk Management (NFS TPRM) – Senior
As part of our EY- NFS TPRM team, you will help clients enhance their business performance by translating their strategies into realities. Working with EY-high performing teams, you will help clients to grow, innovate, protect, and optimize their business performance.
We’re looking for Seniors with expertise in Third-Party Risk Management to join the leadership group of our EY- NFS TPRM team . It is a fantastic opportunity to be part of a leading firm while being instrumental in the growth of a new service offering.
Your key responsibilities
Lead and work closelywith the manager in the delivery of Third-Party Risk Management (TPRM)engagements.
Lead the design andimplementation of TPRM operating models, identifying, evaluating, and providingsolutions to evaluate complex business and technology risks.
Follow policies andprocedures that support the successful implementation of TPRM operating models.
Facilitate processwalkthrough discussions to document end-to-end business processes and functionalrequirements.
Assess theapplication of legal and regulatory requirements to clients TPRM practices.
Lead/Participate intechnology enhancement requirements such as Automation, Data Analytics, AI tosupport TPRM processes.
Assist in theselection and tailoring of approaches, methods, and tools to support serviceoffering or industry projects.
Demonstrate a generalknowledge of market trends, competitor activities, EY products, and servicelines.
Build and nurturepositive working relationships with clients to achieve exceptional clientservice.
Contribute toIdentifying opportunities to improve engagement profitability.
Assist leadership indriving business development initiatives and account management.
Participate inbuilding strong internal relationships within EY Consulting Services and withother services across the organization.
Skills and attributes for success
Maintain aneducational program to develop personal skills continually.
Constantly upskillingas per market trends.
Understand and followworkplace policies and procedures.
Attend L&Dprograms and exhibit a thorough knowledge of consulting methodology andconsulting attributes.
Exhibit initiativeand participate in corporate social and team events.
To qualify for the role, you must have
4 to 8 years of demonstrated experience with Risk Management across the Third-Party engagement lifecycle (pre-contracting, contracting, and post contracting) and an understanding of the associated organizational infrastructure (e.g., relevant internal controls, business processes, governance structures).
Strong understanding of the TPRM framework, Risk Management, Information Security practices.
Demonstrate a good understanding of the Contract Risk Review management process.
Hands-on exposure to TPRM tools and technology solutions (e.g., GRC enablement solutions, such as Process Unity, Prevalent, Archer, ServiceNow, etc.)
Demonstrated knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI – DSS, HITRUST, etc.
Good knowledge of privacy regulations such as GDPR, CCPA, etc.
Good knowledge of regulations such as FISMA, HIPAA, Reg SCI, MAS, etc.
Good knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts, Physical & Environmental Security, Asset Security and Identity & Access Management.
Good knowledge of OS (Windows / Linux) security, Database security, IT infrastructure (switches, routers, firewalls, IDS, IPS, etc.), Security architecture design, and review.
Good familiarity with OWASP, and Secure SDLC standards/frameworks, anti-virus solutions (e.g., Symantec, McAfee, etc.).
Good experience in LAN/WAN architectures and reviews.
Good knowledge of incident management, disaster recovery, and business continuity management, cryptography.
Good to have prior Big-4 experience.
Good to have certifications - CISSP, CISA, CISM, CTPRP, CIPP, ISO 27001 Lead Auditor or Lead Implementer
Ideally, you’ll also have
Project Management skills
Exposure to tools like ProcessUnity, ServiceNow, Archer.
What we look for
A Team of people with enthusiasm to develop new skills and knowledge and experience to succeed and inquisitiveness to learn new things in this fast-moving environment.
Actively tracks and communicates engagement performance and planning to EY engagement management, ensuring project milestones remain on track and are completed timely.
Actively mentors and trains team members on Third-Party Risk Management processes, governance, and frameworks.
Works cross-functionally with team members to support and drive a collaborative team environment.
Creates and design effective presentations as a means for communicating project and deliverable progress to clients.
Performs sophisticated data analyses to understand client s business and identify risk
Executes advanced services and supervise staff in delivering essential services.
Understands client s business environment and basic risk management approaches
Actively participates in decision making with engagement management and seek to understand the broader impact of current decisions.
Actively contributes to improving operational efficiency on projects & internal initiatives.
What working at EY offers
At EY, we’re dedicated to helping our clients, from the startups to Fortune 500 companies — and the work we do with them is as varied as they are.
You get to work with inspiring and meaningful projects. Our focus is on education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your progress with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:
Support, coaching, and feedback from some of the most engaging colleagues around
Opportunities to develop new skills and progress your career
The freedom and flexibility to handle your role in a way that’s right for you
As a global leader in Assurance, Tax, Strategy & transactions and Consulting services, we’re using the finance products, expertise, and systems we’ve developed to build a better working world. That starts with a culture
that believes in giving you the training, opportunities, and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we’ll make our ambition to be the best employer by 2020 a reality.