ServiceNow Governance, Risk and Compliance (GRC) Team Lead

Career Area:

Job Description:

Your Work Shapes the World at Caterpillar Inc.

When you join Caterpillar yourejoining a global team who cares not just about the work we do but also about each other. We are the makers problem solvers and future world builders who are creating stronger more sustainable communities. We dontjust talk about progress and innovation here we make it happen with our customers where we work and live. Together we are building a better world so we can all enjoy living in it.

ServiceNow Governance Risk and Compliance (GRC) Team Lead

Role Definition:

The ServiceNow Governance Risk and Compliance (GRC) Team Lead plays a critical role in the advancement and maturation of enterprise risk management governance and cybersecurity compliance programs. This position is designed for an experienced professional who possesses deep expertise in ServiceNow IRM modules. The architect will be responsible for designing implementing and optimizing ServiceNow solutions that support organizational risk security and compliance objectives. This role requires strategic thinking firsthand technical skills and the ability to effectively collaborate with business and IT stakeholders to align technology solutions with regulatory requirements cybersecurity assessment types and risk management best practices.

What You Will Do:

• Lead Architecture and Strategy: Define and drive the architectural vision and roadmap for ServiceNow IRM ensuring alignment with the organizations broader Cybersecurity Governance Risk and Compliance strategy.

• Solution Design: Design and architect ServiceNow IRM solutionsincluding Policy & Compliance Management Risk Management Audit Management Vendor Risk Management and other related modulesto meet complex business requirements.

• Implementation Leadership: Oversee the implementation of ServiceNow IRM capabilities ensuring high quality scalability and maintainability. Serve as the technical authority during project delivery migration and integration phases.

• Stakeholder Collaboration: Work closely with Cybersecurity IT Legal Compliance and business stakeholders to gather requirements define solutions and ensure alignment with organizational goals.

• Governance Frameworks: Translate regulatory requirements industry best practicessuch as ISO 27001/2 NIST SOC PCI-DSS ISA-62443 CIS HIPAA and GDPRinto ServiceNow IRM workflows and processes that drive compliance automation and reporting.

• Risk and Compliance Automation: Develop and optimize automated processes reporting and dashboards within ServiceNow to enable efficient tracking escalation and remediation of risks and compliance violations.

• Continuous Improvement: Analyze system performance usage and feedback to identify opportunities for optimization and enhancement. Implement updates and changes to maximize value while minimizing customization and maintaining Out of the Box functionality.

• Technical Leadership and Mentorship: Guide mentor and develop junior architects developers and business analysts fostering a culture of excellence and continuous learning.

• Change Management: Lead organizational change efforts related to GRC initiatives educating stakeholders on new functionality and driving adoption of ServiceNow IRM solutions.

• Risk Reporting and Analytics: Architect advanced analytics and reporting capabilities to deliver actionable insights for executive leadership risk committees and audit teams.

• Integration Management: Design and oversee integrations between ServiceNow IRM and other enterprise applications such Snowflake vulnerability management third-party risk and identity management platforms.

• Documentation and Standards: Produce comprehensive solution documentation architectural diagrams standards and best practice guides to support operational sustainability.

What You Have:

• Education: Bachelors or masters degree in computer science Information Security Information Systems or a related discipline.

• Progressive experience in designing and implementing GRC/IRM solutions with at least 5 years in a senior or lead architect focused on ServiceNow IRM modules.

• Demonstrated proficiency in ServiceNow IRM including advanced configuration scripting custom application development and module integration.

• Thorough understanding of governance frameworks (e.g. ISO NIST COBIT) regulatory compliance standards and risk management processes.

• Strong firsthand experience with JavaScript REST/SOAP APIs ServiceNow Flow Designer business rules and data modeling.

• Proven history of leading complex GRC-related projects from conception through deployment including requirements gathering planning execution and change management.

• Exceptional verbal and written communication skills with the ability to translate technical concepts for non-technical audiences and influence senior leadership.

• ServiceNow Certified Implementation Specialist (Risk and Compliance) CISSP CISM CRISC or related certifications.

Skills Descriptors:

• Communicating Complex Concepts: Knowledge of effective presentation tools and techniques to ensure clear understanding; ability to use summarization and simplification techniques to explain complex technical concepts in simple understandable language appropriate to the audience.

• Cybersecurity Standards and Policies: Knowledge of developing cybersecurity policies standards and procedures; ability to develop and communicate policies standards and procedures that guide interactions with customers.

• Cybersecurity Risk Management: Knowledge of tools techniques approaches and processes of cybersecurity risk management; ability to ensure organizational network operation and minimize negative effects by cybersecurity risks.

• Information Security Management: Knowledge of the processes tools and techniques of information security management; ability to deploy and monitor information security systems while detecting controlling and preventing violations of IT security.

• Information Technology (IT) Security Policies: Knowledge of IT security policies standards and procedures; ability to utilize a variety of administrative skill sets and technical knowledge to ensure cyber security compliance.

Additional Info:

• The primary locations for this position are: East Peoria IL Nashville TN or Dallas TX
• 5 days onsite is MANDATORY.
• Sponsorship isNOT available.
• Relocation is available for qualified candidates.

About Caterpillar -

Caterpillar Inc. is the worlds leading manufacturer of construction and mining equipment off-highway diesel and natural gas engines industrial gas turbines and diesel-electric locomotives. For nearly 100 years weve been helping customers build a better more sustainable world and are committed and contributing to a reduced-carbon future. Our innovative products and services backed by our global dealer network provide exceptional value that helps customers succeed.

Summary Pay Range:

Compensation and benefits offered may vary depending on multiple individualized factors job level market locationjob-related knowledge skills individual performance and experience. Please note that salary is only one component of total compensation at Caterpillar.

Benefits:

Subject to plan eligibility terms and guidelines. This is a summary list of benefits.

• Medical dental and vision benefits*

• Paid time off plan (Vacation Holidays Volunteer etc.)*

• 401(k) savings plans*

• Health Savings Account (HSA)*

• Flexible Spending Accounts (FSAs)*

• Health Lifestyle Programs*

• Employee Assistance Program*

• Voluntary Benefits and Employee Discounts*

• Career Development*

• Incentive bonus*

• Disability benefits

• Life Insurance

• Parental leave

• Adoption benefits

• Tuition Reimbursement

* These benefits also apply to part-time employees

Posting Dates:

Any offer of employment is conditioned upon the successful completion of a drug screen.

Caterpillar is an Equal Opportunity Employer Including Veterans and Individuals with Disabilities. Qualified applicants of any age are encouraged to apply.

Not ready to apply Join our Talent Community.