Archer ConsultantLocation: Rosslyn, VA
Posted On: 11/07/2019
Requirement Code: 36205
BA or BS
Design and develop typical GRC solutions like risk management (enterprise and IT risk), compliance management, issue and corrective action plan management, exception management, policy lifecycle management, third party risk management, audit management, threat and vulnerability management, enterprise asset management, security operations management for clients across industries.
Define, enhance, and implement enterprise risk management frameworks based on industry standards and frameworks (e.g. ISO 27001, COSO, COBIT, PCI, NIST, and HIPAA etc.) on GRC technologies such as RSA Archer.
Define the architecture and design elements for implementation of GRC solution (including design data/object models, technical workflows diagrams, access control models etc.).
Lead build/ configuration of GRC solutions on RSA Archer as per defined business requirements and design.
Lead SDLC efforts for successful build, test, and rollout of GRC solution into production use.
Assist in developing GRC governance and operating model for the set up and sustainment of the GRC program.
Implement the RSA SGRC Archer GRC tool including customized A&A, SecOps, Policy, ConMon & Threat modules at a government agency.
Agile Software Development MethodologyFunctional TestingServiceNow GRC - Policy & Compliance
1-4 years of experience in defining and implementing GRC solutions using RSA Archer.
Graduation in Bachelor of Engineering (or B.Tech) or other technical course.
Experience in developing data/ object models design, technical workflows diagrams, access control models etc.
Hands-on experience with all SDLC activities related to GRC program implementation such as requirements gathering, analysis, design, configuration, testing, and production deployment.
Understanding and knowledge of industry standards and industry frameworks (e.g., COBIT, COSO, ISO 27001, PCI, NIST).
Excellent documentation and communication skills
Ability to contribute towards eminence activities, Proof of Concepts, and assist in sales (proposal responses, demos etc.).