Remote - Senior Business Analyst, ServiceNow GRC/IRM (3 days/week onsite) Chicago, IL

Title : Senior Business Analyst, ServiceNow GRC/IRM (3 days/week onsite)

Duration : 6+ months

Location : Chicago, IL

Only considering Local Candidates to Chicago.

IRM and GRC are a must have.

This is a high level group must have good communications.

Project Overview
The Risk Controls Enhancements (RCE) initiative is an enterprise-wide modernization and consolidation effort for Governance, Risk, and Controls (GRC) processes, data, and reporting.
Contractor's Role
The Senior Business Analyst, GRC/IRM, is a subject matter expert in risk management processes, responsible for defining and documenting business requirements for the ServiceNow IRM platform. This role involves leading discovery workshops, conducting process analysis, and acting as the functional owner of the solution to ensure it aligns with business goals and best practices. As a Senior Business Analyst, you will be a key liaison between business stakeholders and the technical team to ensure that the ServiceNow IRM solution effectively addresses strategic GRC objectives.
Experience Level Senior

• 5+ years of experience working with ServiceNow IRM, with a deep focus on GRC processes and modules.
• 10+ years of professional experience in risk management, GRC, or a related field, demonstrating an in-depth understanding of enterprise risk, and controls processes.
• Proven track record of success in gathering and translating complex business requirements into clear, functional specifications for large-scale ServiceNow IRM implementations.
• Expertise in core IRM capabilities such as Risk Identification, Risk and Control Self-Assessments (RCSA), Issue Management, Incident Management, Loss Events, and Controls Testing.

Qualifications

• Deep functional understanding of the ServiceNow IRM suite and its capabilities, including Policy and Compliance, Risk Management, and Audit Management.
• In-depth knowledge of GRC and risk management frameworks and best practices.
• Strong communication, presentation, and facilitation skills, with the ability to effectively bridge the gap between technical and non-technical stakeholders.
• Proven ability to lead workshops, gather requirements, and present complex information to all levels of the organization.
• Bachelor's degree in a relevant field, or equivalent professional experience.

Nice to Have

• Experience with Agile or other iterative development methodologies.
• Experience with other risk management software or enterprise risk processes.

Daily Tasks and Responsibilities

• Lead workshops and conduct interviews with business stakeholders to define, analyze, and validate GRC/IRM requirements.
• Translate business needs into user stories, functional requirements, and process flow diagrams for implementation in ServiceNow IRM.
• Develop risk-related artifacts such as risk registers, risk assessment methodologies, and control frameworks.
• Conduct business process analysis to identify inefficiencies and make recommendations for improvement.
• Collaborate with the technical team to ensure the configured solution aligns with the documented functional requirements.
• Create and configure dashboards and reports to provide stakeholders with clear visibility into the organization's risk and compliance posture.
• Develop test plans, assist with user acceptance testing (UAT), and ensure the solution meets acceptance criteria.
• Provide ongoing support and clarification for implemented IRM solutions, acting as the subject matter expert.
• Stay up-to-date with ServiceNow IRM product releases and evolving GRC industry trends

, 110