Senior Business Analyst / Scrum Master ServiceNow GRC/IRM

Project Overview:

The Risk Controls Enhancements (RCE) initiative is an enterprise-wide modernization and consolidation

effort for Governance, Risk, and Controls (GRC) processes, data, and reporting.

Contractor’s Role:

The Senior Business Analyst, GRC/IRM, is a subject matter expert in risk management processes,

responsible for defining and documenting business requirements for the ServiceNow IRM platform. This

role involves leading discovery workshops, conducting process analysis, and acting as the functional

owner of the solution to ensure it aligns with business goals and best practices. As a Senior Business

Analyst, you will be a key liaison between business stakeholders and the technical team to ensure that

the ServiceNow IRM solution effectively addresses strategic GRC objectives.

Experience Level – 3 (Senior):

 5+ years of experience working with ServiceNow IRM, with a deep focus on GRC processes and

modules.

 10+ years of professional experience in risk management, GRC, or a related field, demonstrating

an in-depth understanding of enterprise risk, and controls processes.

 Proven track record of success in gathering and translating complex business requirements into

clear, functional specifications for large-scale ServiceNow IRM implementations.

 Expertise in core IRM capabilities such as Risk Identification, Risk and Control Self-Assessments

(RCSA), Issue Management, Incident Management, Loss Events, and Controls Testing.

Qualifications:

 Deep functional understanding of the ServiceNow IRM suite and its capabilities, including Policy

and Compliance, Risk Management, and Audit Management.

 In-depth knowledge of GRC and risk management frameworks and best practices.

 Strong communication, presentation, and facilitation skills, with the ability to effectively bridge

the gap between technical and non-technical stakeholders.

 Proven ability to lead workshops, gather requirements, and present complex information to all

levels of the organization.

 Bachelor's degree in a relevant field, or equivalent professional experience.

Nice to Have

 Experience with Agile or other iterative development methodologies.

 Experience with other risk management software or enterprise risk processes.

Daily Tasks and Responsibilities:

 Lead workshops and conduct interviews with business stakeholders to define, analyze, and

validate GRC/IRM requirements.

 Translate business needs into user stories, functional requirements, and process flow diagrams

for implementation in ServiceNow IRM.

 Develop risk-related artifacts such as risk registers, risk assessment methodologies, and control

frameworks.

 Conduct business process analysis to identify inefficiencies and make recommendations for

improvement.

 Collaborate with the technical team to ensure the configured solution aligns with the

documented functional requirements.

 Create and configure dashboards and reports to provide stakeholders with clear visibility into

the organization's risk and compliance posture.

 Develop test plans, assist with user acceptance testing (UAT), and ensure the solution meets

acceptance criteria.

 Provide ongoing support and clarification for implemented IRM solutions, acting as the subject

matter expert.

 Stay up-to-date with ServiceNow IRM product releases and evolving GRC industry trends

Job Type: Contract

Pay: $55.00 - $60.00 per hour

Expected hours: 40 per week

Benefits:

• Referral program

Work Location: Hybrid remote in Chicago, IL 60603