Product Manager - ServiceNow GRC & SecOps

About The Position

Requirements

• Strong understanding of risk frameworks and security operations processes.
• Proven ability to manage cross-functional stakeholders and communicate effectively with executive leadership.
• Strategic, outcome-driven mindset with a focus on delivering measurable business value.
• Strong stakeholder management and communication skills.
• Governance and compliance-oriented approach.
• Data-driven decision-making capabilities.
• Ability to balance security, risk, and business priorities.
• Completed Bachelor’s Degree or relevant work experience required.
• 8+ years of experience in risk management, compliance, cybersecurity, or security operations.
• 3+ years of experience with ServiceNow IRM/GRC and/or SecOps product ownership or product management.
• Experience leading enterprise-scale ServiceNow or GRC/SecOps transformation initiatives.
• Ability to travel to SHI, Partner, and Customer Events.
• Ability to travel 25%

Nice To Haves

• ServiceNow certifications such as: CIS-IRM, CIS-SecOps, CSA
• Experience with CMDB, vulnerability management tools, SIEM platforms, and TPRM solutions.
• Familiarity with regulatory frameworks such as SOX, ISO, NIST, GDPR, or HIPAA.
• Exposure to AI/GenAI capabilities within risk and security operations.

Responsibilities

• Own and manage the ServiceNow IRM/GRC and SecOps product roadmap, ensuring alignment with the enterprise risk and security strategy.
• Drive adoption and maturity of key capabilities, including: Policy & Compliance, Risk Management, Audit Management, Business Continuity Management (BCM), Third-Party Risk Management (TPRM), Vulnerability Response, Security Incident Response, Threat Intelligence.
• Partner with Security, GRC, Audit, IT Operations, and Platform teams to define requirements and prioritize enhancements.
• Lead governance forums, stakeholder workshops, and executive reviews.
• Translate business and regulatory requirements into user stories and product backlog items.
• Ensure integration across CMDB, vulnerability tools, threat intelligence platforms, and third-party systems.
• Drive process standardization, automation, and continuous improvement across risk and security workflows.
• Define and monitor KPIs related to compliance, risk reduction, security response, and remediation SLAs.
• Develop dashboards and reporting to provide leadership visibility and support audit transparency.
• Promote adoption of advanced capabilities, including AI-driven risk scoring, automation, and continuous control monitoring.

Benefits

• medical
• vision
• dental
• 401K
• flexible spending
• Continuous professional growth and leadership opportunities.
• Health, wellness, and financial benefits to offer peace of mind to you and your family.
• World-class facilities and the technology you need to thrive – in our offices or yours.