Manager| ServiceNow | Application Security | KSA

Company: Deloitte –

WebSite: Riyadh, Saudi Arabia

Job Description:Adhering to the organizational values of leadership, integrity, mutual support, inclusion, and collaborative impact, the Manager will be responsible for the following duties and must demonstrate the outlined capabilities:

**Responsibilities:**

* Lead ServiceNow GRC & SecOps implementations, ensuring high standards of technological enablement across modules including Policy and Compliance, Risk Management, Audit, Business Continuity Management (BCM), Third-Party Risk Management (TPRM), Privacy, Vulnerability Response (VR), and Security Incident Response (SIR).
* Develop comprehensive end-to-end ServiceNow GRC and SecOps solution architectures tailored for clients within the Middle East region.
* Collaborate with client domain architects to guarantee alignment of proposed solutions with existing architectures, IT landscapes, and strategic objectives.
* Translate business requirements into well-defined functional and non-functional technical specifications.
* Articulate complex technical concepts into clear and understandable business implications for stakeholders.
* Conduct preliminary discovery sessions with prospective clients and contribute to the development of robust business cases.
* Oversee the end-to-end bidding process for GRC/SecOps-related Requests for Proposals (RFPs), encompassing bid qualification through final award, including internal quality assurance, risk assessments, and executive reviews.
* Contribute to commercial estimation by reviewing business cases, project scopes, and required effort for bids or opportunities.
* Supervise and mentor a team of ServiceNow Business Analysts (BAs), engineers, and testers.
* Lead pre- and post-implementation solution discussions and facilitate process workshops with clients.
* Design and develop solutions to automate GRC processes, incorporating integration with third-party regulatory feeds (e.g., UCF) for compliance libraries and third-party IT systems for evidence collection.
* Design and develop solutions to integrate ServiceNow GRC with third-party Configuration Management Databases (CMDBs) for entity scoping and Business Impact Analysis.
* Design and develop solutions to integrate ServiceNow VR with vulnerability scanners.
* Design and develop solutions to integrate ServiceNow SIR with Security Information and Event Management (SIEM) solutions, threat intelligence feeds, and client’s Identity and Access Management (IAM) systems.
* Review project deliverables to ensure adherence to the highest standards of quality and client value.
* Coordinate among enterprise stakeholders to ensure that solutions meet requirements and are delivered within established timelines and budgetary constraints.
* Cultivate relationships with client personnel at appropriate levels.
* Maintain current knowledge of the latest ServiceNow platform features, releases, and product roadmaps for GRC/SecOps modules.
* Lead the development of essential project documentation, including High-Level Designs (HLDs), Low-Level Designs (LLDs), and user playbooks.
* Lead business development activities, encompassing proposals, Proof of Concepts (POCs), client demonstrations, and pursuit management.
* Lead technical and operational support for ServiceNow security solutions following implementation.
* Support the achievement of team Key Performance Indicators (KPIs) related to financial and performance targets.
* Collaborate with team members across the Middle East and other member firms.

**Leadership Attributes:**

* Develop a comprehensive understanding of the organization’s purpose and values, and actively seek opportunities for meaningful impact.
* Demonstrate a strong commitment to continuous personal learning and development, serving as a brand ambassador to attract top talent.
* Understand expectations and exhibit personal accountability for maintaining high performance standards.
* Actively cultivate effective communication and relationship-building skills.
* Understand how daily contributions align with and support the priorities of the team and the business.

**Qualifications:**

* A bachelor’s degree from an accredited university in Computer Science, Information Technology, Cybersecurity, or a closely related field. A master’s degree may be preferred.
* A minimum of ten (10) years of technology implementation experience, with at least five (5) years specifically focused on the ServiceNow platform, emphasizing GRC and SecOps modules.
* Experience with a Big 4 or other technology consulting firms is preferred but not mandatory.
* Demonstrated experience in solution architecture and design within the cybersecurity and compliance domains.
* Experience leading technical teams and projects related to Integrated Risk Management (IRM), Business Continuity Management (BCM), and security operations.
* Possession of a ServiceNow Certified System Administrator certification.
* Possession of a ServiceNow Certified Implementation Specialist certification for GRC and SecOps.
* Additional certifications in cybersecurity (e.g., CISSP, CISM) or ITIL may be considered advantageous.
* Proficiency in ServiceNow development, encompassing scripting, workflows, and integrations specific to GRC and SecOps modules.
* A strong foundational understanding of cybersecurity principles and risk management frameworks.
* Knowledge of web technologies (HTML, CSS, JavaScript) and database management principles.
* Demonstrated integrity, strong values, ethical principles, and a robust work ethic.

Skills: