Neha Tyagi

Risk and Compliance Professional

Seasoned Risk and Compliance professional with over 12 years of experience in Third Party Risk Management (TPRM), Supplier Management, Vendor Audit and Assurance, Risk Management, Contract Negotiation, Policy and Document review, Information & Cyber Security, Resilience, Risk Identification and Mitigation, Performance Review, Contract Management, Process Improvement, Change Management, Stakeholder management, and Regulatory Compliance.

Professional Experience

Assistant Vice President | Vendor Management

Deutsche Bank (December 2023 – Present)

• Implemented Divisional intra group service framework & process across Technology Data & Innovation.
• Managing Risk and Control for the vendors in line with TPRM policies and regulatory requirements.
• Supporting business or service owners for enhancement of existing contract / new contracts.
• Assisted business in review of the contract ensuring relevant clause of applicable regulatory requirement are covered, SLA, Service credit, Governance Reports & model with expected frequency are captured.
• Manage risk & assurance reviews through assessments ensuring they are compliant with TPRM framework.
• Monitoring the performance review of the service in line with the contractual requirement & Business Management.
• Review and submission of ECB PRA register, outsourcing register, MAS outsourcing register in line with the services.
• Review and implementation of new regulatory requirement within control assessment / contract remediation.

Consultant – TPRM (Third Party Risk Management)

KPMG Assurance and Consulting Services LLP. (December 2022 – December 2023)

• Team Lead for third-party risk management engagements for performing third party security reviews.
• Reviewed vendor’s compliance against IT security certifications like ISO27001 and reports like SOC2 Type2.
• Tracking & Monitoring of the remediation of the identified gaps/ findings from the assessment review.
• Reviewed contracts and service agreements between the bank and vendors to ensure that regulatory requirements are incorporated.
• Involved in the process improvement process for the vendor risk assessment process at the Banks.
• Conducted gap analysis to identify areas for improvement in the process.

Various Roles (Supplier Manager, SRM Analyst and Process Advisor)

Barclays Group Service Centre Pvt Ltd. (March 2015 – December 2022)

• Manage suppliers in line with Third Party Risk Management (TPRM) Standards (EBA, GDPR, Schrems II).
• Manage risk & assurance attestations and analyse supplier’s conformance to Barclays’ Standards.
• Monitor supplier’s remediation plan and track the progress to ensure timely execution.
• Timely review of the contract, supplier performance and validating against the agreed SLAs in the contract.
• Suppliers were tested on applicable controls like Data Privacy, Information and Cyber Security, Technology Risk, etc.
• Identify cost saving opportunities with the suppliers to drive commercial value.
• Draft Contract Change Notes (CCN), Addendum, short form agreements, etc.

Various Roles (Change Management, Business Implementation Team - Officer)

RBS Business Services Private Limited (March 2012- January 2014)

• Due Diligence for and providing implementation guidelines as per the processes.
• Monitoring project risks and scope creep to identify potential problems and proactively identifying solutions.
• Integrated change management activities and phases of the project into Implementation Plan.
• Part of the HVST TEAM - High Value Service Team which was entitled to handle top 250 client of RBS.
• Experience in Service Request Management and performing user account management activities.

Core Competencies & Software

Projects & Achievements

Education & Certifications