Principal ServiceNow IRM Solution Architect

About The Position

Requirements

• 12+ years of progressive experience in Cybersecurity GRC, Information Security, or a closely related field, including a minimum of 5 years in a senior technical architecture or platform leadership role.
• Deep, hands-on expertise in ServiceNow IRM/GRC modules (Policy & Compliance, Risk Management, Audit Management, Vendor Risk) and the ServiceNow BCM application suite.
• Demonstrated success of architecting and delivering enterprise-scale GRC solutions integrated with complex, multi-cloud ecosystems (e.g., Workday, Azure, AWS, Okta).
• Extensive experience designing and automating Business Continuity Management (BCM) and Disaster Recovery (DR) programs within large, globally distributed enterprises.
• Comprehensive understanding of global risk and compliance frameworks, including NIST CSF, ISO 27001, SOC 2, GDPR, and FedRAMP.
• Proven ability to leverage data platforms such as Snowflake and visualization tools such as Tableau (or equivalent BI solutions) to build risk and compliance reporting pipelines, analytics models, and executive-level dashboards.

Nice To Haves

• ServiceNow Certified Implementation Specialist – Risk and/or Compliance
• CISSP
• CRISC
• CISA

Responsibilities

• Serve as the authoritative solution architect for the ServiceNow IRM/GRC platform, leading the end-to-end design and delivery of scalable solutions across Policy & Compliance Management, Risk Management, Audit Management, and Third-Party/Vendor Risk Management to align with enterprise risk strategy.
• Own the architectural blueprint for ServiceNow's Business Continuity Management (BCM) and Disaster Recovery (DR) modules, ensuring deep integration between risk assessment workflows and operational recovery planning to strengthen organizational resilience.
• Develop and champion a multi-year GRC technology roadmap, identifying opportunities to automate, modernize, and evolve the platform including the adoption of AI and machine learning capabilities to enable predictive and proactive risk management.
• Define and enforce engineering standards, configuration best practices, and governance guardrails for the ServiceNow IRM/GRC platform, ensuring long-term scalability, maintainability, upgrade readiness, and security posture.
• Collaborate closely with Global Security, Legal, Privacy, and Compliance stakeholders to architect technical controls that address complex regulatory requirements across jurisdictions, including GDPR, SOC 2, ISO 27001, and FedRAMP.
• Provide hands-on technical leadership and mentorship to senior and staff engineers within the GRC Center of Excellence (COE/POD), cultivating a high-performance culture driven by innovation, engineering rigor, and continuous improvement.

Benefits

• Equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws.
• Variety of reasonable accommodations for candidates.