ServiceNow GRC & SecOps Implementation Consultant

Service Now GRC & Sec Ops Implementation Consultant (Contract – 6 Months)

Location: Riyadh, Kingdom of Saudi Arabia
Contract Duration: 6 Months
Employment Type: Contract
Experience
: 5 to 7 Years

We are seeking experienced Service Now GRC & Sec Ops Consultants/Developers to support a large-scale Service Now implementation program for a leading organization in Saudi Arabia. The selected candidates will play a key role in the design, configuration, customization, integration, and deployment of Service Now Integrated Risk Management (IRM), Security Operations (Sec Ops), Business Continuity Management (BCM), and Third-Party Risk Management (TPRM) modules.

This role requires hands-on implementation experience in Service Now GRC and Security Operations environments, with exposure to regulatory frameworks applicable to the banking and financial services sector.

• Design, configure, and implement Service Now IRM, BCM, TPRM, and Sec Ops solutions.
• Gather business and regulatory requirements and translate them into Service Now configurations and workflows.
• Configure and customize:
  • Policy and Compliance Management
  • Risk Management and Risk Assessments
  • Third-Party Risk Management (TPRM)
  • Business Continuity Management (BCM)
  • Security Incident Response (SIR)
  • Vulnerability Response (VR)
  • Threat Intelligence (TI)
• Develop and maintain Service Now workflows, business rules, UI policies, client scripts, and integrations.
• Configure role-based access controls (RBAC) and security models.
• Support integration activities with security and monitoring platforms.
• Participate in testing, defect resolution, deployment, and post-go-live support.
• Collaborate with stakeholders, project managers, architects, and compliance teams to ensure successful delivery.
• Ensure platform configurations align with regulatory and governance requirements.
• Produce technical documentation, solution designs, and implementation guides.

• Strong hands-on experience with Service Now Integrated Risk Management (IRM):
  • Policy Management
  • Compliance Management
  • Risk Assessments
  • Third-Party Risk Management (TPRM)
• Strong experience with Service Now Security Operations (Sec Ops):
  • Security Incident Response (SIR)
  • Vulnerability Response (VR)
  • Threat Intelligence (TI)
• Experience implementing Service Now Business Continuity Management (BCM):
  • Business Impact Analysis (BIA)
  • BCM Workflows
  • Crisis Management
• Experience with Service Now Third-Party Risk Management (TPRM):
  • Vendor Lifecycle Management
  • Due Diligence Processes
  • Vendor Tiering Models
• Strong knowledge of Service Now platform administration and development:
  • Update Sets
  • Scripting (JavaScript)
  • Integrations
  • Role-Based Access Controls (RBAC)
  • Workflow Configuration

• Minimum 3+ years of Service Now GRC implementation experience
  .
• Overall experience of 5+ years in Service Now development and implementation projects
  .
• Proven experience delivering Service Now GRC, BCM, TPRM, and Sec Ops implementations.
• Experience working in complex enterprise environments.
• Ability to work independently and engage directly with business and technical stakeholders.

• Service Now Certified Implementation Specialist (CIS) – GRC.
• Service Now Certified Implementation Specialist (CIS) – Sec Ops.
• Service Now Certified System Administrator (CSA).
• Additional Service Now certifications will be considered an advantage.

• Integration experience with:
  • Qualys
  • Splunk
  • IBM QRadar
• Experience working within regulated financial institutions, including:
  • Banking
  • Digital Banking
  • Fin Tech
• Familiarity with regulatory and compliance frameworks:
  • SAMA Cyber Security Framework (CSF)
  • SAMA IT Governance Framework (ITGF)
  • SAMA Cloud Framework Framework (CFF)
  • NCA Essential Cybersecurity Controls (ECC)
  • PCI-DSS
  • ISO 22301
• Arabic language proficiency is desirable but not mandatory.