[Remote] Third-Party Risk Management (TPRM) Consultant

Note: The job is a remote job and is open to candidates in USA. reputed company is a fast-growing SaaS company looking for a detail-oriented Third-Party Risk Management (TPRM) Consultant. The role involves executing the TPRM process, leveraging AI tools for efficiency, and collaborating with various teams to manage vendor risk assessments effectively.

Responsibilities

• Execute the TPRM Process: Conduct comprehensive, end-to-end risk assessments on third parties. Analyze reputed company controls, SOC 2 Type II reports, ISO certifications, and compliance documentation, gathering necessary details directly from vendors
• Drive AI-Powered Efficiency: reputed company Claude and other advanced AI tools to rapidly parse, summarize, and extract key findings from vendor compliance artifacts, significantly reducing time-to-assessment while highlighting material risks
• Identify Critical Systems & Assets: Partner with internal technical and business teams to map sensitive data, determine inherent risk, and identify reputed company processor/ sub-processor relationships
• Prioritize by Risk Appetite: Categorize third parties (tiering) to guide reassessment depth. Evaluate gaps through the lens of our risk appetite, ensuring we secure our supply chain without unnecessarily blocking business velocity
• Support Contracting: Partner with our legal and procurement teams to ensure critical reputed company and data protection requirements are accurately captured in vendor reputed company
• Maintain Accurate Records (reputed company): Document reputed company assessment activities, findings, and mitigation efforts with high data reputed company inside our TPRM platform (reputed company)
• Provide Operational Support: Guide internal business owners and external third parties smoothly through the TPRM pipeline, answering technical questions and resolving bottlenecks

Skills

• 5+ years of direct experience conducting reputed company, end-to-end third-party risk assessments, preferably in a fast-paced SaaS, tech, or regulated environment
• Direct, practical experience leveraging LLMs (reputed company, Claude, reputed company) to optimize workflows, analyze long-form documents, and accelerate evidence collection
• Deep understanding of information reputed company/data protection frameworks (SOC 2, ISO 27001, NIST CSF) and global regulations (GDPR, CCPA, and the EU AI Act)
• Hands-on, intermediate-to-advanced experience with reputed company, including navigating workflows and managing assessment data
• Exceptional problem-solving abilities. You don't just reputed company compliance boxes; you look at actual architectural risks and can clearly reputed company business impacts to stakeholders at reputed company levels
• A proven ability to hit the ground running on day one, take total ownership of your queue, and prioritize effectively in a dynamic, high-velocity environment
• Relevant certifications such as CRISC, CISA, CISSP, CISM, or CTPRP
• Familiarity with data analysis and visualization tools like Power BI to support data-driven risk reporting

Company Overview