Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

Black Duck Software

Compare

4.0

based on 4 Reviews

16 Black Duck Software Jobs

Cybersecurity Engineering, Staff Engineer

Black Duck Software

4.0

based on 4 Reviews

5-8 years

Bangalore / Bengaluru

1 vacancy

Cybersecurity Engineering, Staff Engineer

Black Duck Software

posted 2mon ago

Job Role Insights

Flexible timing

Key skills for the job

Supply Chain Management Legal Advisory Analytical Chemistry Risk Management Information Security Business Operations

+ 3 more

Job Description

The Third-Party Risk Analyst supports Third-Party Risk Management (TPRM) activities and our overall GRC program. The Third-Party Risk Analyst is a critical position within the organization with supply chain risk management responsibilities affecting the organization globally. The Third-Party Risk Analyst enables and transforms the TPRM program, improves security compliance, and tracks third-party security risks with the potential to impact business operations, and develops, collects, and reports TPRM program metrics for decision-makers.

Leverage industry frameworks and regulatory standards such as, for example, ISO 27001, ISO 27036, NIST SP 800-53, NIST SP 800-161, NIST SP 800-171, NIST CSF, and GDPR to support TPRM activities
Work with internal stakeholders to build and enhance TPRM controls to improve our business risk posture
Build, maintain supplier database; track vendor risk assessments and compliance status
Engage vendors to validate compliance with contractual risk management obligations and vendor risk management framework

Qualifications

The Third-Party Risk Analyst possesses expert knowledge of computer, network, and information security methods and procedures to enable efficient, effective, and comprehensive TPRM-related business activities. The Third-Party Risk Analyst has experience with risk assessments, risk analysis, ratings, and mitigation controls. Strong analytical and critical-thinking abilities are a must.