ServiceNow GRC & SecOps Implementation Consultant
ServiceNow GRC & SecOps Implementation Consultant (Contract – 6 Months)
Location: Riyadh, Kingdom of Saudi Arabia
Contract Duration: 6 Months
Employment Type: Contract
Experience : 5 to 7 Years
About the Role
We are seeking experienced ServiceNow GRC & SecOps Consultants/Developers to support a large-scale ServiceNow implementation program for a leading organization in Saudi Arabia. The selected candidates will play a key role in the design, configuration, customization, integration, and deployment of ServiceNow Integrated Risk Management (IRM), Security Operations (SecOps), Business Continuity Management (BCM), and Third-Party Risk Management (TPRM) modules.
This role requires hands-on implementation experience in ServiceNow GRC and Security Operations environments, with exposure to regulatory frameworks applicable to the banking and financial services sector.
Key Responsibilities
- Design, configure, and implement ServiceNow IRM, BCM, TPRM, and SecOps solutions.
- Gather business and regulatory requirements and translate them into ServiceNow configurations and workflows.
- Configure and customize:
- Policy and Compliance Management
- Risk Management and Risk Assessments
- Third-Party Risk Management (TPRM)
- Business Continuity Management (BCM)
- Security Incident Response (SIR)
- Vulnerability Response (VR)
- Threat Intelligence (TI)
- Develop and maintain ServiceNow workflows, business rules, UI policies, client scripts, and integrations.
- Configure role-based access controls (RBAC) and security models.
- Support integration activities with security and monitoring platforms.
- Participate in testing, defect resolution, deployment, and post-go-live support.
- Collaborate with stakeholders, project managers, architects, and compliance teams to ensure successful delivery.
- Ensure platform configurations align with regulatory and governance requirements.
- Produce technical documentation, solution designs, and implementation guides.
Mandatory Technical Skills
- Strong hands-on experience with ServiceNow Integrated Risk Management (IRM):
- Policy Management
- Compliance Management
- Risk Assessments
- Third-Party Risk Management (TPRM)
- Strong experience with ServiceNow Security Operations (SecOps):
- Security Incident Response (SIR)
- Vulnerability Response (VR)
- Threat Intelligence (TI)
- Experience implementing ServiceNow Business Continuity Management (BCM):
- Business Impact Analysis (BIA)
- BCM Workflows
- Crisis Management
- Experience with ServiceNow Third-Party Risk Management (TPRM):
- Vendor Lifecycle Management
- Due Diligence Processes
- Vendor Tiering Models
- Strong knowledge of ServiceNow platform administration and development:
- Update Sets
- Scripting (JavaScript)
- Integrations
- Role-Based Access Controls (RBAC)
- Workflow Configuration
Required Experience
- Minimum 3+ years of ServiceNow GRC implementation experience.
- Overall experience of 5+ years in ServiceNow development and implementation projects.
- Proven experience delivering ServiceNow GRC, BCM, TPRM, and SecOps implementations.
- Experience working in complex enterprise environments.
- Ability to work independently and engage directly with business and technical stakeholders.
Preferred Qualifications
- ServiceNow Certified Implementation Specialist (CIS) – GRC.
- ServiceNow Certified Implementation Specialist (CIS) – SecOps.
- ServiceNow Certified System Administrator (CSA).
- Additional ServiceNow certifications will be considered an advantage.
Desirable Skills
- Integration experience with:
- Qualys
- Splunk
- IBM QRadar
- Experience working within regulated financial institutions, including:
- Banking
- Digital Banking
- FinTech
- Familiarity with regulatory and compliance frameworks:
- SAMA Cyber Security Framework (CSF)
- SAMA IT Governance Framework (ITGF)
- SAMA Cloud Framework Framework (CFF)
- NCA Essential Cybersecurity Controls (ECC)
- PCI-DSS
- ISO 22301
- Arabic language proficiency is desirable but not mandatory.