Kyndryl is seeking a Cybersecurity Specialist (TPRM Analyst) to be at the forefront of protecting customers’ computer systems and networks. In this role, you will evaluate third-party vendors for security risks, manage supplier compliance, and integrate Third-Party Risk Management (TPRM) into the broader security lifecycle.
What You'll Do
- Conduct Third-Party Risk Assessments for vendors and partners, evaluating security posture and compliance.
- Manage supplier compliance to align third-party engagements with organizational risk appetite and regulations.
- Support Vulnerability Management (VM) and Application Security (AppSec) integration to embed TPRM into the security lifecycle.
- Track SLA adherence for remediation timelines and escalate overdue third-party vulnerabilities.
- Contribute to weekly/monthly dashboards reflecting TPRM risk trends, SLA compliance, and exceptions.
- Conduct cyber risk assessments for new vendors and perform periodic and trigger-based evaluations.
- Track identified risks and monitor critical vendors for changes in their risk profile or breaches.
- Defend against cyber threats like malware, ransomware, phishing, and data breaches.
- Implement new cybersecurity systems and policies to protect customer data and assets.
- Monitor and review potential threats from various cybersecurity systems.
- Conduct proof-of-concepts (POCs) with new cybersecurity software to evaluate effectiveness.
- Enrich organizational knowledge of potential cyber threats and best practices.
- Provide automation scripts for threat hunting in customer environments.
- Conduct penetration testing and threat and vulnerability assessments of applications, operating systems, and networks.
- Respond to cybersecurity breaches, identify intrusions, and perform root cause analysis.
- Assist in creating and implementing security solutions.
- Work in security innovation, experimenting with “outside the box” ideas.
What We're Looking For
- 3 to 6 years of experience.
- Experience conducting Third-Party Risk Assessments.
- Experience managing supplier compliance.
- Experience supporting VM Integration.
- Experience tracking SLA adherence.
- Experience with dashboard reporting.
- Experience conducting cyber risk assessments for new vendors.
- Experience with periodic and trigger-based evaluation.
- Experience tracking identified risks.
- Experience monitoring critical vendors for changes in their risk profile or breaches.
Nice to Have
- Understanding of Risk Management, Compliance and Privacy frameworks.
Team & Environment
You will join a team of talented Technical Specialists.
Benefits & Compensation
- Opportunities to grow your career, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms.
- Access to employee learning programs for certifications with Microsoft, Google, Amazon, Skillsoft, and others.
- Company-wide volunteering and giving platform to donate, fundraise, volunteer, and search for over 2 million non-profit organizations.
- Benefits that support you and your family throughout your life journey.
We are always moving forward – constantly striving to create a more equitable and inclusive world for our employees, customers and communities. Diversity is much more than what we look like or where we come from: it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. The Kyndryl Way is a workplace where all Kyndryl employees can find and provide support and advice, and the opportunity to bring your whole self to work.
