SERVICENOW GRC IMPLEMENTATION
4 Months
Stamford, Connecticut
ONSITE
JD Overview:
We are seeking a ServiceNow GRC Implementation Contractor to configure, test, and deploy core GRC and CMDB capabilities. Working under the direction of the Head of GRC and in partnership with internal ServiceNow developers, this role will execute the implementation needed to deliver a unified platform for findings, risks, controls, policies, and application mappings.
Key Responsibilities:
GRC/IRM Module Implementation
Issue/Finding Management & Remediation Tracking
Risk Register, Scoring, and Risk Acceptance/Exception workflows
Control Library, Framework Mapping, and Control Applicability
Compliance Assessments & Evidence Workflows
Policy Management (inventory, ownership, lifecycle automation)
Dashboards, heatmaps, and executive reporting
CMDB Integration & Alignment:
Ensure CMDB CI classes, attributes, and relationships required for GRC applicability are accurate and complete
Validate CI data for application-to-control mappings and ownership
Build or refine Transform Maps and workflows to bring CI data into GRC modules
Data Transformation & Migration:
Extract, standardize, cleanse, and prepare data sets for migration
Load structured data for findings, risks, controls, policies, and application/CI mapping
Reconcile and validate all migrated data
Testing, Deployment & Support:
Perform unit, integration, and UAT testing
Resolve configuration issues and refine workflows based on feedback
Support deployment planning, cutover, and post-go-live stabilization
Participate in design reviews, working sessions, and sprint activities
Qualifications:
5+ years of ServiceNow development and configuration experience, including GRC/IRM and CMDB
Strong skills in scripting, Flow Designer, Transform Maps, and data modeling
Experience with data migration, transformation, and data quality improvements
Understanding of IT SOX, risk and control frameworks, and policy governance
ServiceNow System Administrator certification strongly preferred; CIS Risk & Compliance a plus
Success Criteria:
Fully configured and tested GRC modules
CMDB aligned to support control applicability
Clean, validated baseline data migrated
Smooth production deployment with minimal rework
Must-Have Certifications:
1. ServiceNow Certified System Administrator (CSA) Foundation certification required for almost all ServiceNow roles.
Good-to-Have (Preferred) Certifications
1 ServiceNow CIS Security Incident Response (CIS-SIR) Useful when GRC interacts with SecOps processes.
2 ServiceNow CIS Vulnerability Response (CIS-VR) Helps when VR is integrated with risk and compliance modules.
3 ServiceNow GRC / IRM Certification
Certified Implementation Specialist Risk and Compliance (CIS-R&C)
4 ServiceNow Certified Application Developer (CAD) Preferred if the role requires scripting, custom app creation, or advanced configuration.
Never miss an opportunity! Create an alert based on the job you applied for.
