ServiceNow GRC & SecOps Implementation Consultant

Location: Riyadh, Kingdom of Saudi Arabia
Contract Duration: 6 Months
Employment Type: Contract 
Experience : 5 to 7 Years 

We are seeking experienced ServiceNow GRC & SecOps Consultants/Developers to support a large-scale ServiceNow implementation program for a leading organization in Saudi Arabia. The selected candidates will play a key role in the design, configuration, customization, integration, and deployment of ServiceNow Integrated Risk Management (IRM), Security Operations (SecOps), Business Continuity Management (BCM), and Third-Party Risk Management (TPRM) modules.

This role requires hands-on implementation experience in ServiceNow GRC and Security Operations environments, with exposure to regulatory frameworks applicable to the banking and financial services sector.

• Design, configure, and implement ServiceNow IRM, BCM, TPRM, and SecOps solutions.
• Gather business and regulatory requirements and translate them into ServiceNow configurations and workflows.
• Configure and customize:
  • Policy and Compliance Management
  • Risk Management and Risk Assessments
  • Third-Party Risk Management (TPRM)
  • Business Continuity Management (BCM)
  • Security Incident Response (SIR)
  • Vulnerability Response (VR)
  • Threat Intelligence (TI)
• Develop and maintain ServiceNow workflows, business rules, UI policies, client scripts, and integrations.
• Configure role-based access controls (RBAC) and security models.
• Support integration activities with security and monitoring platforms.
• Participate in testing, defect resolution, deployment, and post-go-live support.
• Collaborate with stakeholders, project managers, architects, and compliance teams to ensure successful delivery.
• Ensure platform configurations align with regulatory and governance requirements.
• Produce technical documentation, solution designs, and implementation guides.

• Strong hands-on experience with ServiceNow Integrated Risk Management (IRM):
  • Policy Management
  • Compliance Management
  • Risk Assessments
  • Third-Party Risk Management (TPRM)
• Strong experience with ServiceNow Security Operations (SecOps):
  • Security Incident Response (SIR)
  • Vulnerability Response (VR)
  • Threat Intelligence (TI)
• Experience implementing ServiceNow Business Continuity Management (BCM):
  • Business Impact Analysis (BIA)
  • BCM Workflows
  • Crisis Management
• Experience with ServiceNow Third-Party Risk Management (TPRM):
  • Vendor Lifecycle Management
  • Due Diligence Processes
  • Vendor Tiering Models
• Strong knowledge of ServiceNow platform administration and development:
  • Update Sets
  • Scripting (JavaScript)
  • Integrations
  • Role-Based Access Controls (RBAC)
  • Workflow Configuration

• Minimum 3+ years of ServiceNow GRC implementation experience.
• Overall experience of 5+ years in ServiceNow development and implementation projects.
• Proven experience delivering ServiceNow GRC, BCM, TPRM, and SecOps implementations.
• Experience working in complex enterprise environments.
• Ability to work independently and engage directly with business and technical stakeholders.

• ServiceNow Certified Implementation Specialist (CIS) – GRC.
• ServiceNow Certified Implementation Specialist (CIS) – SecOps.
• ServiceNow Certified System Administrator (CSA).
• Additional ServiceNow certifications will be considered an advantage.

• Integration experience with:
  • Qualys
  • Splunk
  • IBM QRadar
• Experience working within regulated financial institutions, including:
  • Banking
  • Digital Banking
  • FinTech
• Familiarity with regulatory and compliance frameworks:
  • SAMA Cyber Security Framework (CSF)
  • SAMA IT Governance Framework (ITGF)
  • SAMA Cloud Framework Framework (CFF)
  • NCA Essential Cybersecurity Controls (ECC)
  • PCI-DSS
  • ISO 22301
• Arabic language proficiency is desirable but not mandatory.