Privacy - TPRM Analyst

Job Description

• This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Privacy - TPRM Analyst in India. This role sits at the intersection of privacy, third-party risk, and global compliance within a fast-growing cloud infrastructure environment. You will be responsible for assessing vendor risks, ensuring data protection standards, and supporting privacy governance initiatives across a complex, international ecosystem. The position plays a key role in safeguarding sensitive data by evaluating third-party vendors through structured risk assessments and compliance frameworks. You will collaborate closely with legal, security, procurement, and engineering teams to ensure consistent risk mitigation practices. The environment is highly dynamic and visibility is high, requiring strong analytical thinking and structured execution. This is an opportunity to directly influence privacy maturity and third-party governance at scale in a global technology organization.
• Accountabilities: In this role, you will oversee third-party risk and privacy assessment activities, ensuring vendors meet required security, compliance, and data protection standards while supporting ongoing governance and audit readiness. Conduct vendor Business Impact Analyses (BIA), Data Privacy Impact Assessments (DPIA), and third-party risk assessments for new and existing suppliers. Collect, review, and manage security and compliance documentation from vendors, including audit reports, policies, and continuity plans. Continuously reassess vendor risk exposure and document changes impacting privacy, security, or business continuity. Maintain and update due diligence tracking systems, ensuring real-time visibility of assessment progress and risk status. Coordinate with Security Engineering and cross-functional teams for technical reviews, proof-of-concepts, and escalations. Support internal and external audits by maintaining control evidence and compliance documentation for TPRM processes. Assist in vendor lifecycle governance, customer security questionnaires, and privacy-related stakeholder communications. Contribute to documentation of privacy policies, SOPs, and regulatory compliance reporting. Requirements The ideal candidate brings strong experience in IT security, compliance, privacy, or risk management, with hands-on exposure to third-party risk frameworks and global regulatory standards. You are structured, detail-oriented, and comfortable working in a fast-paced, cross-functional environment. Bachelor’s degree or equivalent experience in a relevant field. 3–5 years of experience in IT security, compliance, audit, privacy, or risk management roles. Strong understanding of third-party risk management (TPRM), vendor lifecycle processes, and privacy assessments. Familiarity with standards such as SOC 2, ISO 27001, GDPR, NIST, PCI DSS, HIPAA, or equivalent frameworks. Experience working with GRC tools such as Jira, AuditBoard, Drata, or SecurityScorecard. Strong analytical, documentation, and reporting skills with attention to detail. Excellent communication and stakeholder management skills, including interaction with senior teams. Ability to manage multiple priorities, meet deadlines, and work in a structured, process-driven environment. Bonus: Certifications such as CIPP, CTPRM, or similar privacy/security credentials. Benefits Competitive compensation aligned with experience and market standards Remote-first work flexibility with global collaboration exposure Health and medical insurance support Professional development and certification reimbursement programs Paid holidays, generous leave policies, and sabbatical opportunities Internet and remote work setup reimbursements Fitness and wellness benefits to support work-life balance Exposure to global privacy, security, and cloud infrastructure programs.
• How Jobgether works: We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best! Why Apply Through Jobgether? Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time. #LI-CL1
• We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
• apply for this job