Cyber Strategy - ServiceNow Developer| Solution Advisor

Same job available in 7 locations

Bengaluru, Karnataka, India

Chennai, Tamil Nadu, India

Gurugram, Haryana, India

Hyderabad, Telangana, India

Kolkata, West Bengal, India

Mumbai, Maharashtra, India

Pune, Maharashtra, India

Back to search results
Back to search results

Position Summary

GRC/IRM — Solution Advisor

Deloitte’s Cyber Risk Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise.

Deloitte’s Cyber Risk Services have been recognized as a leader by a number of independent analyst firms.

IDC MarketScape named Deloitte as a Leader in the first 2024 for Worldwide Cybersecurity Consulting Services: Global System Integrators/Consultancies. Source: Worldwide Systems Integrators/Consultancies for Cybersecurity Consulting Services 2024 Vendor Assessment, By Cathy Huang, Published January 2024 – ID#US50463423

Work you will do

As a Consultant in Governance, Risk, and Compliance (GRC)/ Integrated Risk Management (IRM) at Deloitte, you will play a pivotal role and be instrumental in helping our clients manage and mitigate risks associated with their governance, risk management, and compliance activities by focusing on delivering continuous, high-quality GRC services to our clients. This role involves a blend of strategic advisory, process improvement, and technology implementation, tailored to ensure continuous compliance and effective risk management strategies are in place.

This role also involves ensuring compliance with regulatory requirements and managing risks effectively. The ideal candidate will have a strong background in GRC frameworks, excellent analytical skills and adept in developing workflows in GRC tools like ServiceNow, Archer, Aravo or OneTrust

As a Consultant, you would be expected to perform the following activities:

·       Take ownership of SDLC efforts for successful build, test, and rollout of GRC solution into production use.

·       Conduct thorough risk assessments and implement solutions to minimize exposure and enhance business resilience.

·       Well versed with the application deployment and configuration baselines, and understanding of how the application environment operates in a secure environment and how exceptions are handled during operations;

·       Utilize GRC tools to automate risk management and compliance monitoring tasks.

·       Configure GRC solutions like risk management (enterprise and IT risk), compliance management, issue and corrective action plan management, exception management, policy lifecycle management, privacy management, third party risk management, audit management, threat and vulnerability management, security operations management, business continuity management for clients across industries.

·       Understand the business requirement and define & document user stories, create UI mock-ups and having a roll-up the sleeves approach to execute and make things happen.

·       Define, enhance, and implement enterprise risk management frameworks based on industry standards and frameworks (e.g. ISO 27001, COSO, COBIT, PCI, NIST, and HIPAA etc.) on GRC technologies such as Archer, ServiceNow or Aravo.

·       Ensure compliance with all relevant local, national, and international laws and regulations. Regularly update internal policies to align with changing regulatory landscapes to ensure that they are effectively integrated into the clients' operational processes.

·       Provide ongoing support and enhancements to risk management frameworks that align with client objectives and regulatory requirements.

·       Assist in developing GRC governance and operating model for the set up and sustainment of the GRC program.

·       Prepare detailed reports on compliance activities, risk assessments, and mitigation plans. Ensure all documentation is accurate and audit ready.

The team

Want to work at one of the fastest growing and industry leading risk management consulting firms that will give you an enriching experience to build your career and brand? If yes, then look no further, Deloitte’s Cyber Risk Services practice is the place for you. The Cyber Governance, Risk, and Compliance (GRC)/ Integrated Risk Management (IRM) is one of the most rapidly growing market offerings with capability spanning - GRC strategy, design, and implementation of GRC & Security solutions using confluence of ServiceNow, Archer, Aravo and OneTrust.

Individuals who take deep personal accountability for their work, have a passion for excellence, driven to achieve their full potential and understand the value of building relationships with clients and the industry, are encouraged to realize our requirement for GRC. The GRC Solution Advisor is expected to have an in- depth understanding of GRC tools as mentioned above, leading practices and have demonstrated experience in the design and implementation of their solutions. Understanding of risk and compliance pain points and how they can be addressed effectively through a scalable and usable GRC technology is key to success in this role. This role involves working closely with clients to understand their needs, designing solutions that leverage all the tool’s capabilities to enhance their GRC processes, and ensuring the successful implementation and operation of these solutions.

Required:

Education:

·       Bachelor’s degree in Computer Science/ Information Technology, or a related field.

Experience:

·       Minimum of 3-5 years of experience in implementing GRC solutions and/or in ServiceNow/Archer/Aravo/OneTrust or cyber strategy.

·       Well versed with at least 1 GRC tool such as ServiceNow/Archer/Aravo/OneTrust.

·       Gathering and documenting business requirements and identifying gaps within existing systems and processes.

·       Hands-on experience on at least 2 GRC modules (ERM, ITRM, TPRM, SecOps, Issues Management, Policy & Compliance Management, etc.).

·       Hands-on experience in on-demand and out-of-the-box solution developments, access control, rules & events, notifications, data integrations, UI, reports and dashboards, workflows and other administrative activities in tools like ServiceNow/Archer/Aravo/OneTrust.

·       Experience on Privacy Enhancement and Automation tools such as OneTrust.

·       Proficient in risk management processes and compliance regulations.

·       Proven experience in GRC, particularly within a consulting environment.

·       Proficiency with scripting language in implementing API integrations with external system

·       Must have development experience in more than 2- 3 projects from scratch to till go-live

·       Strong understanding of GRC frameworks such as COBIT, ISO 27001, NIST, etc.

·       Strong analytical and problem-solving skills.

·       Excellent interpersonal and communication skills, capable of working effectively with clients and team members.

·       Flexibility in work hours may be necessary to meet project deadlines and client needs.

Preferred:

·       Education: Master’s degree in Business Administration, Cyber Security or a related field

·       GRC Certifications: ServiceNow CSA, Archer Administrator


#CA-DS
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Our people and culture

Our diverse, equitable, and inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our client most complex challenges. This makes Deloitte one of the most rewarding places to work. Learn more about our inclusive culture.
Our purpose

Deloitte’s purpose is to make an impact that matters for our clients, our people, and in our communities. We are creating trust and confidence in a more equitable society. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. We are focusing our collective efforts to advance sustainability, equity, and trust that come to life through our core commitments. Learn more about Deloitte's purpose, commitments, and impact.
Professional development

From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.

Requisition code: 194061