Risk Analyst - Vendor Risk Management

Risk Analyst - Vendor Risk Management

Risk Analyst - Vendor Risk Management

Risk Analyst - Vendor Risk Management

Url to apply- https://in.indeed.com/jobs?q=iso%2027001&start=10&vjk=0028cb0ddc938500

FIS Global logo

FIS Global2,002 reviews - Gurgaon, Haryana

Position Type :

Full time

Type Of Hire :

Experienced (relevant combo of work and education)

Education Desired :

Bachelor's Degree

Travel Percentage :


Are you curious, motivated, and forward-thinking? At FIS, you’ll have the opportunity to work on some of the most challenging and relevant issues in financial services and technology. Our talented people empower us, and we believe in being part of a team that is open, collaborative, entrepreneurial, passionate and above all fun.


About the team

It’s an amazing opportunity to join a talented team of innovative and committed folks doing interesting work at the world’s largest global provider dedicated to financial technology solutions!


What you will be doing

  • Performing Vendor Risk Assessment & Reviews for Internal and External client vendors as per ISO 27001, PCI DSS, HIPPA, RBI, GLBA etc,
  • Develop utilizing key control objectives and principles from the Federal Financial Institutions Examination Council (FFIEC), the Gramm-Leach-Bliley Act (GLBA), the Federal Trade Commission (FTC),
    the Health Information Portability and Accountability Act (HIPAA), and other relevant requirements.
  • Prepare audit reports and work paper with the process owners to close the findings.
  • Designed to manage and mitigate operational and reputational risk associated with third party provider services. Key elements of the Process include: due diligence reviews, service provider selection, contract establishment and ongoing monitoring practices related to third party relationships and adequate risk assessment activities at all stages of the lifecycle.
  • Shift timing for this role is 1:00 – 10:00 PM

What you bring:

  • Must have a broad knowledge of Information technology, Security Architecture review, and methodologies particularly including, for example, SSAE 16, ISO 27001, PCI DSS.
  • Governance, Risk Management, Compliance, Internal Audit, Vendor Management.
  • Must have worked or having theoretical knowledge on Risk Assessment.
  • Minimum 2+ years’ experience required in Audits and compliance.

What we offer you:

  • A multifaceted job with a high degree of responsibility and a broad spectrum of opportunities
  • A broad range of professional education and personal development possibilities – FIS is your final career step!
  • A competitive salary and benefits
  • A variety of career development tools, resources, and opportunities


Privacy Statement


FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.


Sourcing Model


Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.