2+ ISO/IEC 27000-series Jobs in Mumbai | ISO/IEC 27000-series Job openings in Mumbai

Job Summary

We are seeking an experienced ServiceNow Business Analyst with strong expertise in Integrated Risk Management (IRM) and Governance, Risk, and Compliance (GRC). The ideal candidate will bridge business needs and technical solutions, driving the implementation and optimization of ServiceNow IRM/GRC modules while ensuring alignment with organizational risk and compliance objectives.

Key Responsibilities

• Collaborate with stakeholders to gather, analyze, and document business requirements for IRM/GRC processes
• Translate business requirements into functional specifications and user stories for ServiceNow implementations
• Lead workshops, requirements sessions, and stakeholder meetings
• Configure and support ServiceNow IRM/GRC modules, including:
• Policy and Compliance Management,
• Risk Management,
• Audit Management,
• Vendor Risk Management
• Work closely with developers and architects to ensure accurate implementation of requirements
• Perform gap analysis and recommend process improvements aligned with industry best practices
• Support User Acceptance Testing (UAT), including test case creation and defect management
• Maintain documentation, including BRDs, FRDs, process flows, and user guides
• Ensure data integrity, reporting accuracy, and dashboard creation within ServiceNow
• Provide ongoing support and enhancements post-implementation

Required Skills & Qualifications

• 6+ years of experience as a ServiceNow Business Analyst, with at least 4+ years in ServiceNow IRM/GRC
• Strong understanding of risk management and compliance frameworks (e.g., ISO 27001, NIST, SOX)
• Hands-on experience with ServiceNow IRM/GRC modules
• Proficiency in requirement gathering, stakeholder management, and business process mapping
• Experience working in Agile/Scrum environments
• Strong analytical, problem-solving, and communication skills
• Ability to work with cross-functional teams and manage multiple priorities

Preferred Qualifications

• ServiceNow Certified System Administrator (CSA)
• ServiceNow Certified Implementation Specialist – Risk and Compliance (CIS-RC)
• Experience with integrations, reporting, and dashboards in ServiceNow
• Knowledge of ITSM processes and their alignment with GRC
• Prior consulting or client-facing experience

Key Competencies

• Stakeholder Management
• Business Analysis & Requirement Elicitation
• Risk & Compliance Domain Knowledge
• Process Improvement
• Communication & Presentation Skills

Nice to Have

• Experience with SecOps or Third-Party Risk Management
• Exposure to automation and workflow optimization within ServiceNow
• Understanding of regulatory environments across industries (BFSI, Healthcare, etc.)

B. Aims & Goals:

You are required to work with all departments at Pelican to implement, enhance and improve ISMS, GDPR and ISAE 3402 processes. You will also be closely working with external auditor as well as top management for status and reporting.

C. Key Responsibilities:

Your primary responsibilities include:  Assist in audit planning, including the identification of processes for audit review.   Execute internal audit assignments for all locations in India, US, UK and NL. Review the effectiveness of the controls.   Identify and document audit issues and opportunities for improvement.  Prepare the audit report for internal audit assignments and discuss audit findings with senior management.   Monitor and maintain the CAPA program. Assist with follow up corrective actions and oversee timely completion.  Facilitate independent audit engagements on behalf of the company.  Assist to develop and implement process improvements and best practices across the business unit. Review policies and procedures for all areas of the business.  Develop new policies and procedures as directed or required, to improve and to collect and analyse data for review with internal stakeholders.  Take responsibility for the management and execution of internal audit assignments, production of audit reports and management of follow up actions  Involved with working across all areas of the business to ensure that processes are documented and compliant to the company’s requirements.

D. Experience level & Qualification:

a. Experience Level  4 to 5 yrs

b. Educational background  B.E / B.Sc / B.com / Bachelor’s Degree  Holds ISO 27001:2013 Certification

E. Essential Skills:  Should have participated in ISMS (ISO 27001:2013) implementation and certification process.