Work closely with IT, security engineers, and external clients to ensure security controls are implemented and maintained.
Communicate compliance requirements effectively to technical and non-technical stakeholders.
Conduct risk assessments and track compliance with FISMA, NIST 800-53, HIPAA, and FedRAMP security controls.
Maintain security documentation, including SSPs, CAPs, Contingency Plans, and other compliance artifacts.
Perform continuous monitoring, identify security gaps, and recommend remediation strategies.
Support internal and external audits, ensuring all required security evidence is collected and documented.
Lead the management, configuration, and optimization of ServiceNow GRC, ensuring alignment with security frameworks and regulatory requirements.
Develop and automate workflows for compliance tracking, risk assessments, control monitoring, and audit management.
Continuously improve and refine ServiceNow GRC functionalities to enhance efficiency and reporting.
Provide training and support to internal teams on the use of ServiceNow GRC for compliance activities.
Extensive experience managing and optimizing ServiceNow GRC to support and enhance our security compliance program. This role will play a key part in configuring, maintaining, and improving ServiceNow GRC workflows, ensuring compliance with government security standards such as FISMA, NIST 800-53, HIPAA, and FedRAMP.
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
Bachelors degree in management information systems, Computer Science, Business Administration, or related field (or equivalent experience).
2 years of experience in IT security, risk assessment, and compliance within a government contract environment.
Extensive hands-on experience managing and configuring ServiceNow GRC.
Security Certifications (one or more preferred): CISA, CISM, CRISC, CISSP, or SSCP.
Strong knowledge of GRC/IRM systems for compliance tracking, risk management, and audit readiness.
Experience in FedRAMP and FISMA, including security package development and control validation.
Understanding of hybrid, multi-tenant infrastructure security, including network, server, database, and application security.
Excellent verbal and written communication skills, with the ability to bridge technical and business perspectives.
Security Certifications (one or more preferred): CISA, CISM, CRISC, CISSP, or SSCP.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.