Senior Analyst , CyberSecurity (TPRM)

Ensemble Health Partners India is at the forefront of innovation in the Revenue Cycle Management (RCM) space, leveraging modern technology to drive meaningful, real world impact. Our future ready platforms bring together AI driven analytics, intelligent data ingestion, workflow automation, and business intelligence built on a scalable, cloud native architecture. Our AI powered solutions are actively running in production, continuously optimizing processes and delivering data driven insights at scale. With the second largest market share in the U.S. RCM industry, a global workforce of 15,000+ professionals, and 12 technology patents, we deliver results through strong teams, proven processes, and flexible, modern technologies. As part of our continued growth, we have launched our Global Capability Center (GCC) in Hyderabad designed to serve as a strategic extension of our global operations. The GCC brings together technology, analytics, and RCM expertise to build scalable solutions, accelerate innovation, and support our long term vision of transforming healthcare operations. At Ensemble Health Partners India, we foster a culture of growth, collaboration, and innovation where your expertise is valued, your ideas are heard, and your work makes a measurable impact.  

• Conduct thorough risk assessments of third-party vendors to identify potential cybersecurity threats. Regularly monitor vendor compliance with established cybersecurity protocols.
• Develop and maintain comprehensive cybersecurity policies and procedures that address third-party risk management. Ensure these policies align with industry standards and regulatory requirements.
• Collaborate with the vendor management team to integrate cybersecurity risk considerations into the vendor selection and onboarding processes.
• Implement strategies and controls to mitigate identified cybersecurity risks associated with third-party vendors. Develop action plans to address vulnerabilities and ensure continuous improvement.
• Establish and manage processes for responding to cybersecurity incidents involving third-party vendors. Coordinate with internal and external stakeholders to effectively manage and resolve incidents.
• Maintain accurate and comprehensive documentation of all third-party risk management activities. Prepare regular reports on the status of third-party cybersecurity risks and mitigation efforts.
• Engage with internal and external stakeholders to ensure effective communication and collaboration on third-party risk management. Provide regular updates to senior management and relevant committees

Education: Bachelor’s degree in cybersecurity, information technology, risk management, or a related field or equivalent experience. Advanced degrees or certifications (e.g., CISSP, CISM, CRISC) are preferred.

Experience: Minimum of 5+ years of experience in cybersecurity, with a focus on third-party risk management. Experience in vendor management, risk assessment, and policy development is essential.

Technical Skills: Strong understanding of cybersecurity frameworks, standards, and best practices. Proficiency in risk assessment tools and techniques.

Analytical Skills: Excellent analytical and problem-solving skills. Ability to assess complex cybersecurity risks and develop effective mitigation strategies.

Communication Skills: Strong written and verbal communication skills. Ability to convey technical information to non-technical stakeholders clearly and effectively.

Organizational Skills: Demonstrated exceptional time management skills. Ability to lead cross-functional team projects and drive initiatives to completion.

Attention to Detail: High level of attention to detail and accuracy in documentation and reporting.