Skip to main content
Posted 20 June, 2026

TPRM-Advisory Services

KPMG
Mumbai,Maharashtra,IN,400011 Full Time
Reference: 218_609639_INTG10040296

About KPMG in India

KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.

KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.

Third Party Risk Management

Equal employment opportunity information


KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.
Graduation - B. Tech
  • 3-7 years of hands-on experience in TPRM / vendor risk management or cybersecurity / information security risk
  • Strong understanding of risk assessment, risk management, risk monitoring, and risk mitigation concepts
  • Practical experience with due diligence, vendor onboarding, and third-party lifecycle management
  • Understanding of cybersecurity and information security risk management
  • Experience reviewing ISO 27001, SOC reports, policies, and control documentation
  • Good understanding of regulatory compliance expectations and their impact on third-party risk
  • Strong stakeholder communication and documentation skills

Equal employment opportunity information

KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.

  • Independently execute end-to-end TPRM lifecycle activities, including vendor onboarding assessments, due diligence reviews, periodic reassessments, and continuous monitoring activities
  • Perform risk identification, inherent and residual risk assessment, and risk scoring across information security, data privacy, business continuity, operational, and outsourcing risks
  • Review, analyze, and challenge third-party artifacts, including security policies, procedures, SOC reports, ISO certifications, contracts, and vendor responses
  • Assess control design and effectiveness, identify gaps, and document remediation recommendations
  • Support development and enhancement of TPRM policies, procedures, frameworks, questionnaires, and risk assessment methodologies
  • Prepare and review risk assessment reports, risk registers, dashboards, and client deliverables
  • Engage with internal stakeholders and vendors to clarify findings, resolve queries, and support risk discussions
  • Guide and review work performed by Analysts / Associate Consultants

Sign up for Job Alerts