CrawlJobs Logo

GRC Tool Administrator & Automation Developer

United States, Lansing · Job Posted February 16, 2026
Apply Position
Job Link Share

Job Description

We are seeking a skilled GRC Tool Administrator & Automation Developer to join our collaborative information technology team. In this role, you will support and enhance a Web-based Governance, Risk, and Compliance (GRC) platform and contribute to its ongoing development, automation, and integration efforts. You’ll work closely with cross-functional teams to streamline security processes, implement new features, and ensure the platform effectively supports organizational compliance and risk objectives.

Job Responsibility

  • Serve as the primary administrator and developer for the organization’s GRC platform
  • Collaborate with stakeholders to understand security and compliance requirements, then design and implement automation solutions
  • Lead automation initiatives for accreditation workflows, evidence collection, control reviews, and other key security processes
  • Design and implement unified security control frameworks aligned with industry standards and integrate frameworks such as CJIS, IRS 1075, PCI, and ARC-AMPE
  • Develop and maintain Python-based API modules and automation scripts to import and update compliance controls, integrate CMDB and vulnerability data, and support continuous monitoring
  • Ingest structured data (JSON, CSV) into the GRC tool and maintain centralized source control and documentation repositories (e.g., Azure Repos)
  • Integrate with RESTful APIs to automate data transfers, reporting, and system updates
  • Troubleshoot system issues, identify root causes, and ensure timely resolution
  • Maintain system and project documentation across repositories and knowledge bases
  • Partner with the platform vendor on software issues, updates, and enhancements
  • Participate in development activities, including testing, implementation, and documentation
  • Perform additional duties as assigned

Requirements

  • 2–3+ years of Python programming experience
  • 1–2+ years developing automation scripts and API integrations (RESTful APIs)
  • General understanding of database design
  • Basic programming experience in Java or C#
  • Familiarity with DevOps practices and risk management concepts
  • Experience working within Agile methodologies (e.g., sprints)
  • Strong troubleshooting and analytical problem‑solving skills
  • Excellent communication and cross-team collaboration abilities

Nice to have

  • Experience with automated testing
  • Hands-on experience with any Governance, Risk & Compliance (GRC) tool
  • Understanding of GRC frameworks
  • Familiarity with security frameworks such as CJIS, IRS 1075, PCI, or ARC-AMPE

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

GRC Tool Administrator & Automation Developer

8 matching positions

Senior Product Security Consultant

The Product Security Consultant is a post-sales role that works closely with cus...
Location
Location
United States
Salary
Salary:
89300.00 - 120700.00 USD / Year
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 5 years of technical experience working with security applications: Security Information and Event (SIEM)/ Log Management, Governance Risk Compliance (GRC), Identity Access Management, IDS/IPS, Advanced Persistent Threat, Anti-Virus, Vulnerability Management
  • Experience with scripting languages and databases: Python or Powershell
  • SQL
  • Interacting with APIs
  • Experience communicating highly technical concepts to a non-technical audience
  • Understanding of network technologies and protocols (e.g. DHCP, IP, DNS, HTTP, etc.)
  • Experience deploying and maintaining virtual machines and configuring policies on cloud platforms (e.g. Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP))
  • Administrator-level experience with Microsoft Windows Server, Linux and/or MacOS operating systems
  • Customer Centric Communication: Ability to translate complex technical concepts and security best practices into clear, actionable guidance for customers with varying levels of technical expertise
  • Technical Collaboration & Enablement: Ability to partner sales teams to provide technical expertise and support throughout the customer lifecycle, from pre-sales scoping to post-implementation success
Job Responsibility
Job Responsibility
  • Evaluate information technology architecture within customer environments across a broad range of industries and proportions to deploy Rapid7 products, and advise on security best practices within the scope of these products
  • Document and communicate design & implementation details to customer end users
  • Automate and customize solutions to enable customers to use Rapid7 products most efficiently via API scripting, reporting, and custom dashboard development
  • Support sales teams by providing enablement on available offerings and by providing scoping assistance during the sales cycle
  • Generate, Maintain and deliver R7 internal enablement materials to team members and cross-functional R7 partners, as well as team infrastructure, internal processes, tooling, and collateral
  • Willingness to travel up to 30%
  • Fulltime
Read More
Arrow Right

Systems Engineering Senior Specialist-Vulnerability Remediation & Tanium Support

We are currently seeking a Systems Engineering Senior Specialist-Vulnerability R...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • HCL Tanium — Server, Module Server, Zone Proxy, and Client deployment and administration (intermediate to advanced level)
  • Tanium Patch, Deploy, Interact, Inventory, Comply, Connect — module configuration and operations
  • Tanium Client deployment via GPO, SCCM, Intune, and PowerShell scripting
  • Tanium sensor, package, and saved question development
  • Vulnerability Remediation
  • Understanding of CVEs
  • Tanium RBAC — user roles, computer groups, content set management
  • Tanium Relevance Language for custom sensor and targeting development
  • PowerShell and Batch scripting for Tanium automation and client management
  • Tanium Connect integration with SIEM and ITSM platforms
Job Responsibility
Job Responsibility
  • Deploy and configure Tanium Server, Tanium Module Server, Zone Proxies, and Tanium Client across enterprise environments
  • vulnerability remediation using Tanium Comply, Detect, Patch, and custom remediation packages
  • Collaborate with security teams (SOC, Threat Management, GRC) to align remediation with vulnerability SLAs and compliance frameworks
  • Drive security hardening programs across endpoints using custom sensors, packages, and benchmarks
  • Execute Tanium platform deployments following defined architecture standards, deployment runbooks, and organizational guidelines
  • Manage Tanium Client deployment at scale across Windows, Linux, and macOS endpoints using GPO, SCCM, Intune, and script-based methods
  • Configure Tanium Zone Proxies for DMZ and remote site endpoint connectivity and visibility
  • Set up and configure Tanium modules post-deployment including Tanium Patch, Deploy, Interact, Inventory, Comply, and Connect
  • Manage Tanium platform SSL certificates, authentication configurations, and RBAC role assignments during and post-deployment
  • Execute Tanium platform upgrades, module updates, and hotfix deployments following change management procedures
  • Fulltime
Read More
Arrow Right

Vice President of Enterprise/Operational Risk Management

The Vice President of Enterprise/Operational Risk Management is an organizationa...
Location
Location
United States , New York
Salary
Salary:
200000.00 - 240000.00 USD / Year
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Finance, Business Administration, Risk Management, or related field
  • advanced degree or professional certifications (e.g., CPA, CISA, CRISC, CIA, CRMP, CERP, FRM, CRM, PRM)
  • Minimum of 10+ years of experience in enterprise risk management, operational risk management, risk advisory, strategy/management consulting, Financial Institution Supervision/Regulation, Internal Audit, or related role in the financial services industry, including leadership responsibility
  • Deep knowledge of operational risk frameworks (e.g., the COSO ERM Framework or ISO 31000), governance processes, control strategies, and risk assessment methodologies and regulatory requirements/industry standards for risk management
  • Strong understanding of enterprise/operational risks, third-party risk, resiliency, and data governance disciplines
  • Excellent communication and interpersonal skills, with the ability to effectively engage with senior leadership, audit, regulators, and external stakeholders
  • Comfort working in a rapidly changing, growing business environment with developing risk frameworks and evolving priorities
  • Experience with GRC tool implementation and automating ERM/ORM Processes are preferred
Job Responsibility
Job Responsibility
  • Manage the delivery of the Enterprise Risk Management framework with a focus on continuous improvement
  • Play a leading role in the delivery of ERM/ORM's strategic objectives
  • Participate in risk governance activities
  • Optimize second line risk reporting and visualization standards
  • Maintain and update second line risk policies, standards, and procedures
  • Conduct and oversee periodic risk and control assessments (RCSAs), scenario analyses, and emerging risk reviews across business lines
  • Evaluate risk exposures including operational failures, cyber threats, process weaknesses, third-party risk, and business disruption vulnerabilities
  • Partner with business stakeholders to identify control gaps and define actionable remediation plans
  • Monitor and report on key risk indicators (KRIs) and prepare loss-event analytics, and risk dashboards
  • Provide timely and accurate reporting to executive leadership and board committees
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training
  • Fulltime
Read More
Arrow Right

Manager - Regulatory Change & Inventory Management

American Express is seeking a skilled Regulatory Change Management professional ...
Location
Location
United States , Sandy, Utah; Sunrise, Florida
Salary
Salary:
89250.00 - 150250.00 USD / Year
americanexpress.com Logo
Amex
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in law, Finance, Business Administration or related field
  • advanced degree preferred
  • Minimum of 5 years of overall experience in Banking and Financial Services
  • Minimum of 2 years of experience in compliance or regulatory change management
  • Experience in using or maintaining a repository of laws/rules/regulations and their corresponding obligations (e.g., GRC platform) preferred
  • Intermediate skills in data analysis, reporting, and risk assessment, including the use of data visualization tools (e.g., Tableau, Power BI)
  • Experience using generative artificial intelligence tools preferred
  • Professional regulatory compliance certification preferred
  • Excellent analytical skills with an ability to interpret complex legal documents
  • Demonstrated project management skills with attention to detail
Job Responsibility
Job Responsibility
  • Manage a team of analysts responsible for continuously monitoring domestic and international regulatory developments to identify changes that impact American Express
  • Utilize automated tools for horizon scanning and maintain an up-to-date understanding of new regulations, amendments, and repeals
  • Support Regulatory Change Management triggered by business and process updates to ensure compliance with policies and regulations to include communication and training efforts
  • Implement strategies for responding to regulatory changes across different business units and corporate functions
  • Lead the process and provide instruction supporting business impact analysis using established methodologies to evaluate the potential impact of regulatory changes on various business units prioritizing changes based on their complexity, urgency, and potential business impact
  • Support ongoing monitoring of risk standards and programs to drive compliance with legal, regulatory, and Corporate Policy requirements
  • Provide constructive and effective challenge to internal stakeholders (e.g. business lines, risk and local compliance) to ensure regulatory risks are adequately addressed and mitigated
  • Maintain and enhance the Regulatory Change and Inventory Management Framework, ensuring alignment with regulatory requirements
  • Collaborate with legal professionals to update and maintain the global legal inventory system with new regulatory requirements
  • Provide oversight in mapping laws rules and regulations (LRR) to business processes, products, and services and ensure these LRR are effectively mapped to controls mitigating regulatory risks and ensuring compliance
What we offer
What we offer
  • Competitive base salaries
  • Bonus incentives
  • 6% Company Match on retirement savings plan
  • Free financial coaching and financial well-being support
  • Comprehensive medical, dental, vision, life insurance, and disability benefits
  • Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
  • 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy
  • Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
  • Free and confidential counseling support through our Healthy Minds program
  • Career development and training opportunities
  • Fulltime
Read More
Arrow Right

Service Architect

Experienced Senior ServiceNow Architect / Developer to lead the design, developm...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
socialvalueportal.com Logo
Social Value Portal Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Expert-level knowledge of ServiceNow architecture, configuration, and development (JavaScript, Glide API, Business Rules, UI policies, Service Portal, Flow Designer)
  • Hands-on experience delivering and integrating multiple modules such as: ITSM, ITOM, ITAM, GRC, or SecOps
  • Proven track record with API integrations (REST/SOAP), MID Server, and IntegrationHub spokes
  • Effective team leadership and mentoring capabilities
  • ServiceNow Certified System Administrator (CSA)
  • ServiceNow Certified Application Developer (CAD)
  • ITIL v4 Foundation or higher
  • Agile / Scrum certification preferred
  • Familiarity with CI/CD tooling (Git, Azure DevOps) and automated testing (ATF)
  • Strong understanding of CMDB structure, Discovery, and Event management
Job Responsibility
Job Responsibility
  • Lead the architecture, design, and implementation of ServiceNow solutions, ensuring scalability, maintainability, and compliance with enterprise standards
  • Serve as technical lead for a team of developers and admins, providing mentorship, code reviews, and enforcing best practices
  • Design and implement custom applications, integrations, and automation workflows across ITSM, ITOM, GRC, and related modules
  • Collaborate with enterprise and solution architects to align ServiceNow with broader IT and business strategies
  • Drive continuous improvement through adoption of new platform features (Flow Designer, IntegrationHub)
  • Oversee ServiceNow governance, ensuring platform performance, data quality (especially CMDB), and robust change control
  • Engage stakeholders across technology and business functions to understand requirements, define roadmaps, and manage delivery priorities
  • Champion DevOps and Agile delivery practices, introducing CI/CD pipelines and automated testing frameworks
  • Ensure platform security, compliance, and documentation meet corporate and regulatory standards (e.g. FCA)
Read More
Arrow Right

Senior Manager, Revenue Risk & Compliance

We’re seeking a seasoned, strategic leader to own and scale readiness frameworks...
Location
Location
United States , San Francisco; New York
Salary
Salary:
216000.00 - 240000.00 USD / Year
openai.com Logo
OpenAI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Accounting, Finance, Business Administration, or a related field
  • CPA, CA strongly preferred
  • 10+ years in financial risk management, internal audit, or financial process transformation — preferably in high-growth, technology-enabled or product-driven environments with complex revenue models
  • Well-rounded SaaS revenue experience covering diverse monetization models (subscription/usage-based, commerce, marketplace, Ads)
  • Deep understanding of how data integrity, measurement pipelines, metering systems, and revenue operations tie into control objectives, risk assessments, and reporting accuracy
  • Strong preference for candidates who have built and implemented E2E Ads controls frameworks from the ground up—ideally within a pre-IPO or public company context, with deep familiarity with ads infrastructure economics, measurement, billing, and monetization lifecycle risks
  • Demonstrated ability to understand Ads platform workflows and translate process, system, and data requirements into effective, testable controls that address both operational and financial reporting impact
  • Experience building and running scalable control programs with governance, risk assessments, workplans, and durable artifacts
  • Ability to translate technical and product workflows (especially Ads systems and revenue engines) into defensible controls, risk matrices, narratives, and audit-ready documentation
  • Excellent communication and cross-functional influence, able to drive decisions across Finance, Product, Engineering, Data, and audit partners
Job Responsibility
Job Responsibility
  • Lead financial readiness assessments for new product launches, ensuring all subscription, commerce, and ads monetization flows have built-in controls and automated reconciliation
  • Define and operationalize SOX/ICFR readiness frameworks (standards, playbooks, templates, governance forums, and review cadences) that scale with business growth and complexity
  • Drive large-scale transformation initiatives to modernize revenue accounting, billing systems, and cash-flow reporting
  • Establish clear control expectations, metrics, and checkpoints across end-to-end revenue lifecycles
  • Drive risk assessments and control rationalization (what matters most, where to automate, where to simplify), using data and business context to focus effort on highest-impact reporting risks
  • Identify and mitigate financial risks within the "Quote-to-Cash" and "Order-to-Revenue" lifecycles, focusing on leakage prevention and data integrity
  • Oversee control testing strategies and issue management
  • ensure permanent remediation through process and system improvements rather than just documentation fixes
  • Drive root-cause analysis, action planning, and timely closure of deficiencies in partnership with process owners
  • Partner with Engineering, Product, and Legal teams to integrate financial compliance and risk management requirements into the product development roadmap
What we offer
What we offer
  • Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts
  • Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)
  • 401(k) retirement plan with employer match
  • Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)
  • Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees
  • 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)
  • Mental health and wellness support
  • Employer-paid basic life and disability coverage
  • Annual learning and development stipend to fuel your professional growth
  • Daily meals in our offices, and meal delivery credits as eligible
  • Fulltime
Read More
Arrow Right

IAM Senior Officer

Location
Location
Egypt , New Cairo
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in computer science, information technology or a related field from a reputable university
  • 5+ years of relevant experience within banking environment
  • IAM/IGA tools (e.g., SailPoint, CyberArk, ForgeRock)
  • PAM, SSO, MFA implementation
  • NIST, ISO 27001, COBIT knowledge
Job Responsibility
Job Responsibility
  • IAM Strategy and Implementation
  • Platform Management: Design, deploy, configure, and maintain core IAM/IGA tools (e.g., SailPoint, ForgeRock) to automate identity lifecycle management, provisioning, and de-provisioning processes
  • Privileged Access Security: Lead the implementation and operational management of PAM solutions (e.g., CyberArk) to tightly secure, monitor, and manage administrative and service accounts across critical infrastructure
  • Access Architecture: Implement and manage advanced access control technologies, including Single Sign-On (SSO) via protocols (SAML, OAuth) and various Multi-Factor Authentication (MFA) methods
  • Integration: Collaborate with application development and IT infrastructure teams to onboard new applications and systems onto the central IAM platform, ensuring seamless integration and centralized access control
  • Governance, Risk, and Compliance (GRC)
  • Access Governance: Define, enforce, and continuously refine access policies based on the Principle of Least Privilege and Segregation of Duties (SoD) requirements
  • Regulatory Adherence: Ensure the IAM program is fully compliant with financial industry regulations and security standards (e.g., NIST, ISO 27001, COBIT, GLBA, SOX, etc.)
  • Access Certification: Conduct and document regular User Access Reviews (UARs) or recertification campaigns to validate that users' access rights remain appropriate for their current role
  • Audit and Reporting: Generate detailed audit trails and access reports for internal, external, and regulatory audits, actively supporting the remediation of any findings related to identity controls
Read More
Arrow Right

Security Consultant

The Security Consultant is a seasoned level role, responsible for translating cl...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of information technology and information security
  • Solid understanding of security risks and preventative controls
  • Excellent understanding of security operational processes and controls
  • Service consulting aptitude, focusing on the business, service and sales aspects
  • Excellent verbal and written communication skills
  • Demonstrate impeccable attention to detail are able to translate internal customer requirements into solutions
  • Maintain up-to-date knowledge of security threats, countermeasures, security tools, and network technologies
  • High level of drive and ability to work under pressure
  • Ability to build and maintain cross-functional relationships with a variety of stakeholders
  • Understanding of relevant laws, regulations, and compliance frameworks affecting the technology sector.
Job Responsibility
Job Responsibility
  • Works on strategic projects that ensure the efficient and effective reaction to security breaches to mitigate immediate and potential threats.
  • Uses mitigation, preparedness, response and recovery approaches to minimize business disruptions and commercial consequences.
  • Offers detailed technical support investigation and analysis response activities and evaluate the effectiveness of and improvements to existing practices.
  • Conducts regular threat and vulnerability assessments and determine deviations from acceptable configurations or policies.
  • Participates in the assessment of the level of risk and support the development of appropriate mitigation countermeasures in operational and non-operational situations.
  • Analyzes evidence to support network vulnerability mitigation.
  • Supports peers in the management and implementation of the information security management system.
  • Participates in the implementation of policies, processes and guidelines to ensure the standardization of security management throughout the organization.
  • Applies tactics, techniques, and procedures to a full range of tools and processes related to administrative, criminal, and counterintelligence gathering (e.g., in-depth case analyses, continuous monitoring, malware analysis, clear documentation).
  • Proactively searches through our critical infrastructure, systems and networks to detect and isolate advanced threats that may cause harm to our organization.
  • Fulltime
Read More
Arrow Right