A&A - SG GRC Specialist (Manager)
Singapore, Singapore, SG
Title: A&A - SG GRC Implementation Manager
Are you ready to unleash your potential?
At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve.
We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives focused on making a tangible impact on society’s biggest challenges and creating a better future. We strive to advise clients on how to deliver purpose-led growth and embed more equitable, inclusive as well as sustainable business practices.
Hence, we seek talented individuals driven to excel and innovate, working together to achieve our shared goals.
We are committed to creating positive work experiences that foster a culture of respect and inclusion, where diverse perspectives are celebrated, and everyone is recognised for their contributions.
Ready to unleash your potential with us? Join the winning team now!
Work you’ll do
As a GRC Manager, you will lead the delivery of enterprise risk, compliance, and controls transformation programmes enabled by the GRC platform - ServiceNow. You will work closely with client stakeholders across risk, compliance, internal audit, technology, cybersecurity, business continuity, and operations to translate business requirements into scalable platform solutions.
Key responsibilities include:
- Lead end-to-end ServiceNow IRM implementation projects, including requirements gathering, solution design, configuration oversight, testing, deployment, and post-go-live support.
- Conduct current-state assessments of clients’ GRC, risk, compliance, controls, and assurance processes, and define target-state operating models and platform strategies.
- Facilitate workshops with stakeholders across ORM, ERM, BCM, PCM, regulatory compliance, IT risk, information security risk, cyber risk, internal controls, and internal audit.
- Translate business, regulatory, and technology requirements into functional specifications, user stories, process flows, control requirements, and configuration design documents.
- Design and oversee configuration of ServiceNow IRM modules, including Policy and Compliance Management, Risk Management, Audit Management, Regulatory Change Management, Operational Resilience, Third-Party Risk Management, and Issue Management.
- Manage UAT planning and execution, including test strategy, test scripts, defect triage, retesting, sign-off, and go-live readiness.
- Lead training, change management, adoption planning, user communications, and transition-to-business activities.
- Develop executive dashboards and reporting solutions for risk owners, compliance teams, technology risk managers, senior management, and board-level committees.
- Manage project delivery, including workplan, budget, scope, risks, issues, dependencies, client communications, and stakeholder governance.
- Supervise, coach, and review the work of consultants and configuration teams to ensure quality, consistency, and alignment with client requirements
- Support business development activities, including proposals, solution demonstrations, client presentations, effort estimation, and thought leadership.
- Contribute to the development of reusable ServiceNow IRM assets, implementation accelerators, delivery playbooks, and go-to-market materials.
Your role as a leader
At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Managers across our Firm are expected to:
- Develop diverse, high-performing people and teams through new and meaningful development opportunities.
- Collaborate effectively to build productive relationships and networks.
- Understand and lead the execution of key objectives and priorities for internal as well as external stakeholders.
- Align your team to key objectives as well as set clear priorities and direction.
- Make informed decisions that positively impact the sustainable financial performance and enhance the quality of outcomes.
- Influence stakeholders, teams, and individuals positively – leading by example and providing equal opportunities for our people to grow, develop and succeed.
- Lead with integrity and make a strong positive impact by energising others, valuing individual differences, recognising contributions, and inspiring self-belief.
- Deliver superior value and high-quality results to stakeholders while driving high performance from people across Deloitte.
- Apply their understanding of disruptive trends and competitor activity to recommend changes, in line with leading practices.
Requirements
Qualifications
- Bachelor’s or Master’s degree in Information Technology, Risk Management, Business, Engineering, Computer Science, or a related discipline.
- 6 to 10 years of relevant experience in GRC technology implementation, risk transformation, compliance transformation, or technology-enabled assurance.
- Minimum 3–5 years of hands-on experience implementing ServiceNow IRM, GRC, SecOps, ITSM, or related ServiceNow modules.
- Strong understanding of financial services risk and regulatory requirements, including operational risk, technology risk, cyber risk, business continuity, regulatory compliance, and internal controls.
Experience delivering projects for banks, insurers, capital markets firms, regulators, government agencies, or large enterprises. - ServiceNow Certified Implementation Specialist — Risk and Compliance, ServiceNow Certified System Administrator, or equivalent certification is preferred.
- Professional certifications such as CISA, CRISC, CISM, CISSP, PMP, PRINCE2, Agile/Scrum, or equivalent are highly desirable.
Technical Skills
- Strong functional knowledge of ServiceNow IRM capabilities, data model, workflows, controls, risks, issues, assessments, indicators, policies, entities, and reporting.
- Ability to design GRC workflows across risk assessments, control testing, issue management, policy attestations, regulatory obligations, incidents, and remediation tracking.
- Experience translating risk and compliance requirements into ServiceNow configuration designs, user stories, process maps, and functional specifications.
- Good understanding of ServiceNow platform capabilities, including Flow Designer, notifications, forms, lists, roles, groups, access control, dashboards, Performance Analytics, and reporting.
- Experience integrating GRC/IRM platforms with ITSM, CMDB, ERP, SAP, Oracle, JIRA, SIEM, vulnerability management, cyber risk, and data reporting tools.
Soft Skills
- Strong client-facing and stakeholder management skills, with the ability to engage senior management, risk leaders, compliance leaders, technology teams, and business users.
- Excellent presentation, communication, and documentation skills.
- Strong problem-solving skills with the ability to manage ambiguity, competing priorities, and complex stakeholder expectations.
- Proven ability to lead delivery teams, manage conflict, coach junior resources, and drive accountability.
Preferred Candidate Profile
The ideal candidate is a hands-on ServiceNow IRM implementation lead who can operate at both strategic and delivery levels. The candidate should be able to lead client conversations, shape solution design, manage configuration teams, challenge requirements constructively, and ensure the platform is implemented in a practical, scalable, and audit-ready manner. This role requires someone who is comfortable working across business, risk, compliance, technology, and delivery teams, with strong ownership of project outcomes from design through go-live.
Due to volume of applications, we regret only shortlisted candidates will be notified. Candidates will only be contacted by authorised Deloitte Recruiters via firm’s business contact number or business email address.