Associate Lead – Third Party Risk Management (TPRM) at AT&T

Bengaluru, Karnataka, India

Apply Now

Not SpecifiedCompensation

Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Telecommunications, CybersecurityIndustries

Requirements

12+ years of experience
10 years minimum experience in third-party risk management / risk consulting / cyber security assessments
Demonstrated experience in third-party risk management and vendor security assessments
Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls)
Good understanding of various third-party risk management frameworks and standards
Proficiency in using security assessment tools and methodologies
Excellent analytical and problem-solving skills
Strong communication and interpersonal skills, with the ability to convey complex security concepts to both technical and non-technical audiences
Detail-oriented with strong organizational and project management skills
Flexibility to provide coverage in US morning hours

Responsibilities

Perform comprehensive security assessments of third-party vendors, including evaluating their security policies, controls, and practices
Identify potential risks and vulnerabilities in vendor environments and provide recommendations for remediation
Analyze assessment results to determine the level of risk associated with each third-party relationship
Prepare detailed assessment reports and risk summaries for internal stakeholders, including senior management and the TPRM team
Assist in the onboarding process for new vendors by conducting initial security assessments and ensuring compliance with Supplier Information Security Requirements (SISR)
Monitor and re-assess existing vendors periodically to ensure ongoing compliance and address any emerging risks
Work closely with internal teams, including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management
Communicate assessment findings and risk mitigation strategies to third-party vendors in a clear and constructive manner
Contribute to the development and enhancement of TPRM policies, procedures, and guidelines
Stay up-to-date with industry best practices, regulatory requirements, and emerging threats to continuously improve the TPRM program
Provide training and awareness sessions to internal teams and third-party vendors on cybersecurity best practices and TPRM requirements

Skills

Key technologies and capabilities for this role

Third Party Risk ManagementTPRMCybersecurity AssessmentsRisk AnalysisVendor OnboardingVendor MonitoringSecurity PoliciesSecurity ControlsSISRIT SecurityCompliance

Questions & Answers

Common questions about this position

What is the salary for this Associate Lead TPRM position?

This information is not specified in the job description.

Is this role remote or does it require office work?

The role is based in Hyderabad or Bengaluru, but specific details on remote work or office requirements are not provided.

What skills are required for this TPRM role?

Candidates need 10+ years in third-party risk management, risk consulting, or cybersecurity assessments, demonstrated experience in vendor security assessments, strong knowledge of cybersecurity frameworks like NIST and ISO 27001, and understanding of TPRM frameworks.

What is the company culture like at AT&T for this role?

AT&T encourages bold ideas, fearless risk-taking, truthful transparency, accountability, and mastering cybersecurity to stay ahead of threats, within the Chief Security Office focused on safeguarding assets.

What experience level is needed to apply for this position?

The role requires 12+ years of experience overall, with a minimum of 10 years in third-party risk management, risk consulting, or cybersecurity assessments.

AT&T

Telecommunications services including wireless and broadband

About AT&T

AT&T provides telecommunications services, including wireless communications, broadband internet, and digital television, primarily in the United States. Its 5G network offers faster data speeds and more reliable connections, although availability can vary. The company caters to both individual consumers and businesses, offering various subscription plans that include options for unlimited data and bundled services that combine internet, TV, and phone. AT&T generates revenue mainly through subscription fees, device sales, and its streaming service, DIRECTV STREAM, which adds to its diverse offerings. In a competitive market, AT&T distinguishes itself with its extensive service range and strong brand presence.

Dallas, TexasHeadquarters

1876Year Founded

$43.3MTotal Funding

IPOCompany Stage

Consumer Software, EntertainmentIndustries

10,001+Employees

Benefits

Health Insurance

Dental Insurance

Vision Insurance

401(k) Retirement Plan

401(k) Company Match

Paid Vacation

Paid Sick Leave

Paid Holidays

Paid Parental Leave

Adoption Assistance

Disability Insurance

Life Insurance

Employee Assistance Programs

Wellness Program

Employee Discounts

Risks

The customer service guarantee may increase financial liabilities due to compensation for outages.

A recent data breach could damage AT&T's reputation and lead to customer churn.

Resistance to replacing landlines may impact customer retention and satisfaction.

Differentiation

AT&T offers a unique customer service guarantee, setting it apart from competitors.

The company is expanding its fiber network, enhancing broadband offerings in underserved areas.

AT&T's 'Phone-Advanced' device aligns with the trend of replacing traditional landlines.

Upsides

AT&T's fiber network expansion could provide a competitive edge in broadband services.

The new customer service guarantee may attract customers from competitors lacking similar assurances.

Collaboration with The Arc enhances AT&T's brand image through corporate social responsibility.

Land your dream remote job 3x faster with AI

Try Jobo Free