GRC & SecOps Implementation Consultant
Listed on 2026-07-17
-
IT/Tech
Cybersecurity, IT Consultant, IT Business Analyst, IT Project Manager
Service Now GRC & Sec Ops Implementation Consultant (Contract – 6 Months)
Location: Riyadh, Kingdom of Saudi Arabia
Contract Duration: 6 Months
Employment Type: Contract
Experience: 5 to 7 Years
We are seeking experienced Service Now GRC & Sec Ops Consultants/Developers to support a large-scale Service Now implementation program for a leading organization in Saudi Arabia. The selected candidates will play a key role in the design, configuration, customization, integration, and deployment of Service Now Integrated Risk Management (IRM), Security Operations (Sec Ops), Business Continuity Management (BCM), and Third-Party Risk Management (TPRM) modules.
This role requires hands‑on implementation experience in Service Now GRC and Security Operations environments, with exposure to regulatory frameworks applicable to the banking and financial services sector.
Key Responsibilities- Design, configure, and implement Service Now IRM, BCM, TPRM, and Sec Ops solutions.
- Gather business and regulatory requirements and translate them into Service Now configurations and workflows.
- Configure and customize:
- Policy and Compliance Management
- Risk Management and Risk Assessments
- Third-Party Risk Management (TPRM)
- Business Continuity Management (BCM)
- Security Incident Response (SIR)
- Vulnerability Response (VR)
- Threat Intelligence (TI)
- Develop and maintain Service Now workflows, business rules, UI policies, client scripts, and integrations.
- Configure role-based access controls (RBAC) and security models.
- Support integration activities with security and monitoring platforms.
- Participate in testing, defect resolution, deployment, and post‑go‑live support.
- Collaborate with stakeholders, project managers, architects, and compliance teams to ensure successful delivery.
- Ensure platform configurations align with regulatory and governance requirements.
- Produce technical documentation, solution designs, and implementation guides.
- Strong hands‑on experience with Service Now Integrated Risk Management (IRM):
- Policy Management
- Compliance Management
- Risk Assessments
- Third-Party Risk Management (TPRM)
- Strong experience with Service Now Security Operations (Sec Ops):
- Security Incident Response (SIR)
- Vulnerability Response (VR)
- Threat Intelligence (TI)
- Experience implementing Service Now Business Continuity Management (BCM):
- Business Impact Analysis (BIA)
- BCM Workflows
- Crisis Management
- Experience with Service Now Third-Party Risk Management (TPRM):
- Vendor Lifecycle Management
- Due Diligence Processes
- Vendor Tiering Models
- Strong knowledge of Service Now platform administration and development:
- Update Sets
- Scripting (JavaScript)
- Integrations
- Role-Based Access Controls (RBAC)
- Workflow Configuration
- Minimum 3+ years of Service Now GRC implementation experience
. - Overall experience of 5+ years in Service Now development and implementation projects
. - Proven experience delivering Service Now GRC, BCM, TPRM, and Sec Ops implementations.
- Experience working in complex enterprise environments.
- Ability to work independently and engage directly with business and technical stakeholders.
- Service Now Certified Implementation Specialist (CIS) – GRC.
- Service Now Certified Implementation Specialist (CIS) – Sec Ops.
- Service Now Certified System Administrator (CSA).
- Additional Service Now certifications will be considered an advantage.
- Integration experience with:
- Qualys
- Splunk
- IBM QRadar
- Experience working within regulated financial institutions, including:
- Banking
- Digital Banking
- Fin Tech
- Familiarity with regulatory and compliance frameworks:
- SAMA Cyber Security Framework (CSF)
- SAMA IT Governance Framework (ITGF)
- SAMA Cloud Framework Framework (CFF)
- NCA Essential Cybersecurity Controls (ECC)
- PCI-DSS
- ISO 22301
- Arabic language proficiency is desirable but not mandatory.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).