ServiceNow Engineer/Developer (IRM/GRC Domain)

We are looking for an experienced ServiceNow Engineer/Developer with expertise in Integrated Risk Management (IRM) and Governance, Risk, and Compliance (GRC). The role will focus on designing, implementing, and optimizing ServiceNow GRC solutions to support enterprise risk, compliance, audit, and vendor risk management initiatives.

Key Responsibilities

• Collaborate with stakeholders to identify risks, define mitigation plans, and deliver actionable insights.
• ServiceNow GRC Implementation:
• Design, configure, and implement ServiceNow GRC modules (Policy and Compliance Management, Risk Management, Audit Management, Vendor Risk Management).
• ServiceNow GRC functionalities.
• Reporting and Analytics:
• Develop and deliver dashboards, reports, and key performance indicators (KPIs) related to GRC activities.
• Analyze data to identify trends, issues, and opportunities for improvement.
• Automate workflows, forms, dashboards, and reports to streamline risk and compliance processes.
• Support audits and regulatory compliance by enabling automated tracking, evidence collection, and reporting.
• Build and manage vendor risk assessments and ensure alignment with compliance standards.
• Develop and maintain workflows, forms, and integrations to optimize GRC processes.
• Risk Management:
• Identify, assess, and prioritize risks across the organization.
• Develop risk mitigation strategies and monitor risk metrics.
• Policy and Compliance Management: Manage policy lifecycle, including creation, review, approval, and dissemination
• Evaluate and manage third-party risks, ensuring vendor compliance with contractual and regulatory obligations.
• Process Improvement: Continuously improve GRC processes and tools to enhance efficiency and effectiveness

Required Skills

• 7+ years of ServiceNow development/configuration experience (2+ years in GRC/IRM).
• Strong understanding of risk frameworks (ISO 31000, NIST, COSO) and compliance standards (SOX, GDPR, PCI-DSS, HIPAA).
• Hands-on expertise in workflows, UI policies, client scripts, business rules, and integrations.
• Strong communication and stakeholder management skills.