Share this Job

GRC ServiceNow

Date: Dec 31, 2020

Location: London, United Kingdom

Company: KPMG UK

The Team

Powered Enterprise is KPMG’s world-class accelerated Enterprise Business Transformation approach for cloud-based solutions driven by a pre-defined back-office function based on leading practices and KPMG’s six-layer Target Operating Model. The target operating model comprises of service delivery model, people, process, technology, data & insight and governance & controls. This solution combines the breadth and scale of KPMG’s leading practice, capabilities and insight into what makes a world class corporate services function with the latest in GRC technology provided by leading SaaS vendors such as ServiceNow and MetricStream.

The Technology Risk Consulting is a fast-growing department that currently consists of about 350 + professionals across sectors, of which roughly half are based in our Canary Wharf office in Canada Square in London. We have a mix of clients across sectors. Our engagements often take place in an international context which requires us to provide services across the globe, often in close cooperation with other KPMG offices.

The Financial Services Technology Risk Consulting team is focused on providing consultancy, advice and assurance services to clients like RBS, HSBC, Barclays and Direct Line. The market is evolving at pace and innovating, whilst embracing the digital age. We are building out our team to advise clients on emerging and legacy technology risks and controls. We are focused on project and programme risk, operational and technology resilience, technology risk and control, impact of regulatory change on data and technology, third party risk management and GRC implementations. We deliver our work through consulting projects, focused on risk and control assurance, as well as projects with 2nd and 3rd lines of defence

Within Technology Risk Consulting, our GRC team are communities of technology focussed professionals who work together to deliver SaaS GRC based transformation programmes based on KPMG Powered Enterprise. The teams use their functional knowledge and experience coupled with their expertise in the cloud applications (e.g. ServiceNow, MetricStream) to lead and deliver client programmes, to support pre-sales activities and to develop improvement and extensions to the Powered Enterprise model. Our GRC projects include delivery of business cases, roadmaps, system remediation work, process re-design, risk management solutions, data analysis, security solutions, compliance management and continuous controls monitoring.
This role requires GRC process, functional and technical knowledge with good grasp of business processes, delivering projects and assurance services. Exposure to use of GRC tools and technology both from functional and technical perspective is essential. The successful candidate will be involved in client facing and client relationship building across of range of corporate and FS clients.

Roles & Responsibilities:

Will include some or all of the following:
• Lead multiple client GRC engagements.
• Responsibility for the overall output from GRC client engagements. This includes providing services to implement GRC and transform client’s operation covering core areas namely risk management, regulatory management, controls monitoring and access control.
• Our GRC projects include delivery of business cases, roadmaps, system remediation work, process re-design, risk management solutions, data analysis, security solutions, compliance management and continuous controls monitoring.
• Understand GRC related client issues across different sectors e.g. Banking, Insurance, Wealth Asset Management.
• A deep understanding of GRC technology platforms and their strengths and weaknesses e.g. ServiceNow, MetricStream, Archer, OpenPages.
• Scoping, financial management, managing delivery risk, production and review of deliverables.
• Building and managing excellent client relationships across a range of clients.
• Developing internal networks and maintaining excellent relationships with colleagues across KPMG, but in the wider IT Consulting areas.
• Contributing to innovation and practice management, e.g. new services, training, knowledge management.
• Coaching and developing team members both as part of our overall Performance Management process or on specific engagements.
• Ability to identify and assess complex GRC programmes, to relate them to the wider business environment and to express opinions clearly to all levels.

Experience and Skills:
A combination of the following:
• Proven experience of successfully architecting, integrating, managing and delivering GRC services (including implementations, creating business cases and roadmaps, assurance reviews and maturity assessments) to medium/large, multi-national clients.
• Experience in certain key sectors e.g. Banking and Insurance.
• Ability to align client and sector specific issues to our GRC services.
• Delivered or involved in a number of enterprise risk management engagements which have included a technology workstream and implementation.
• Experience in transformation and business change programmes.
• Advising clients that operate GRC solutions on business benefits, solution fit and typical challenges.
• Experience of key GRC solutions (for example MetricStream, ServiceNow, Archer, OpenPages).
• Process expertise in GRC areas e.g. risk management, compliance & regulation, controls automation, continuous controls monitoring and security.
• Experience of using GRC related data analysis tools.
• Familiarity with regulatory compliance models and standards.
• Great relationship/stakeholder management skills at all levels.
• Proven communication and presentation skills.
• 10+ years of work experience.
• Proven experience of successfully delivering technology risk services.
• “Big 4” professional services or dynamic IT consultancy environment experience.
Prince II or PMI qualified (Desirable)
Degree/masters qualification in IT (Desirable)

Demonstrated commercial experience in
• GRC Solution Certifications (Desirable)
• Accounting / Audit Qualification ACA (Desirable)
• IT Assurance Qualifications CISA (Desirable)

Job Segment: Law, Consulting, Risk Management, Compliance, Data Analyst, Legal, Technology, Finance, Data