eGRC Specialist

Job Description

This role is contingent upon award.The eGRC Specialist performs process integration and data migration from the current process to ServiceNow Governance Risk and Compliance (GRC) tool.

• Maintain the GRC Suite of applications implemented at the client and perform the following;
  • Refine and elaborate requirements for new and existing functionality within the GRC suite, including new workflows for process integration, new forms, and updates to workflows, forms, layouts, fields, reports, dashboards, etc.
  • Execute changes to the GRC suite
  • Conduct smoke testing, regression testing, and coordinate user acceptance testing for changes to the GRC suite
  • Document all work performed in knowledge base articles (KBAs), on the Operations & Maintenance (O&M) Manual SharePoint site (a supplement to KBAs as the team’s processes evolve through continuous improvement), and documenting pseudocode embedded as code comments.
  • Communicate all changes, availability of capabilities, and upcoming news and events from ServiceNow that may impact OCC’s implementation of the GRC Suite
  • Collaborate with the Tier 3 ServiceNow Enterprise Service Management Platform Support on all work
  • Adhere to ServiceNow Enterprise Service Management Platform Support, ServiceNow Change Request Process, and the customer’s Enterprise Change process
• Manage/fulfill service requests and incidents1 in the GRC Administrator’s queue and perform the following:
  • Conductdaily operations of the GRC Suite of application includes addressing GRC Suite user incidents and service request fulfillment
  • Respond to incidents in accordance with the enterprise incident management process
  • Address incidents that were not addressed by the Tier 1 Service Desk
  • Identify opportunities for the ServiceNow Tier 1 Service Desk to address end-user questions and create knowledge base articles for the Tier 1 Service Desk’s use. Approximately 15 knowledgebase articles annually.
  • Fulfill GRC suite-specific (Tier 2) service requests
  • Responding to Security Compliance mailbox emails pertaining to GRC suite-specific (Tier 2) issues and requests.
• Support platform and application upgrades and perform the following:
  • Collaborate with ServiceNow Enterprise Service Management Platform Support on enabling GRC plugins
  • Test and coordinate User Acceptance Testing for GRC application upgrades in lower instances.
  • Identify and remediate defects prior to go-live.
  • Test and coordinate User Acceptance Testing for GRC applications when the platform is upgraded in lower instances. Identify and remediate defects prior to go-live.
• Ensure that all users of the GRC Suite of applications receive training and are supported and perform the following:
  • Create and/or update end-user knowledge base articles
  • Conduct quarterly in-person/virtual training sessions
  • Create and/or update the training materials
  • Collaborate with Continuing Education Video Production team to create and maintain training videos for the GRC suite
• Support security assessments and external audits of the eGRC tool/system
• Collaborate with ServiceNow Tier3 Support on the following activities:
  • Designing, developing, testing, and releasing GRC suite changes
  • Core platform features and changes impacting GRC suite changes
  • Platform and application upgrades.

Qualifications

• At least two (2) years of experience with developing/writing advanced custom ServiceNow script includes, user interface actions, user interface policies, access control lists, client scripts, scheduled jobs, data tables, and data fields in the last three years is required
• At least three (3) years of Integrated Risk Management (IRM)/GRC implementation experience in the last four years is required
• At least (2) years of experience configuring and customizing the ITSM suite, IT Operations Management Suite, and NOW Platform Capabilities in the last three years is required
• At least (2) years of experience with technical components such as LDAP, Web Services, REST, SOAP, APIs, XML, JavaScript in the last three years is required
• At least (2) years of experience with ITILv3 Service Management processes in the last three years is required
• At least three (3) years of Administrator/Developer experience in the last four years is required
• At least two (2) years of ServiceNow Implementation Specialist experience in the last three years is required
• GRC CAM experience is preferred
• ServiceNow Certified Risk & Compliance implementation specialist is preferred
• GRC ServiceNow Certified Developer is preferred
• Certified ServiceNow Implementation Specialist is preferred.

KNOWLEDGE, SKILLS, AND ABILITIES

• Applicable information security management, governance, and compliance principles, practices, laws, rules, and regulations;
• Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols;
• Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration.
• Researching and locating information related to internal and external organizations using online and other sources;
• Troubleshooting and operating a computer and various software packages;
• Defining problems, collecting and analyzing data, establishing facts, and drawing valid conclusions;
• Using judgment and ingenuity in maintaining objectives and technical standards;
• Working with diverse academic, cultural, and ethnic backgrounds of community college students and staff.
• Effectively communicate technical issues to diverse audiences, both in writing and verbally;
• Apply a risk-based approach to planning, executing, and reporting on audit engagements and auditing process;
• Evaluate and update and/or revise program materials;
• Learn quickly and apply knowledge to new situations;
• Understand and follow broad and complex instructions;
• Interact positively with staff and regulatory agencies in order to enhance effectiveness and to promote quality service;
• Comprehend technical language and to confer, analyze and write in an objective, lucid manner;
• Work independently and prioritize multiple tasks and adapt to needed changes;
• Remain calm under high pressure/difficult situations.

Additional Information

• All your information will be kept confidential according to EEO guidelines
• Equal Opportunity Employer Veterans/Disabled