Job Details

Job Title: ServiceNow GRC / Controls Specialist (Mid-Level)

Location: Hybrid - 3 days per week onsite in Boston, MA

Job Summary:
We are seeking a mid-level ServiceNow professional to support the Cyber Risk Management and Governance team in managing and implementing application security controls within ServiceNow. This role will focus on supporting a critical security plan initiative by coding and validating controls within the ServiceNow Continuous Authorization and GRC modules while collaborating closely with application managers and technical teams.

Key Responsibilities:

• Manage and configure application controls within the ServiceNow Continuous Authorization and GRC modules.
• Partner with application managers to ensure required security controls are implemented and maintained.
• Support the security plan initiative for critical enterprise applications as part of a broader cybersecurity program.
• Collaborate with technical and operational teams to translate security and governance requirements into ServiceNow controls.
• ssist with governance and compliance activities aligned with NIST standards and upcoming SOC 2 initiatives.
• Work cross-functionally with cybersecurity, application, and ServiceNow teams to ensure control effectiveness.

• 4-7 years of experience working with ServiceNow, particularly GRC and Continuous Authorization modules.
• Strong understanding of ServiceNow architecture and module functionality.
• Knowledge of security governance frameworks such as NIST; SOC 2 familiarity is a plus.
• bility to communicate effectively with both technical and operational stakeholders.
• Basic understanding of identity and access management concepts, including Okta, MFA, and Zero Trust environments.
• Strong analytical mindset with curiosity and a proactive approach to understanding enterprise applications.