... GRC, Archer, OneTrust, or BigID and building evidence pipelines mapped to control objectives. * Experience building pipelines for security information and event management, security orchestration ...
... GRC, Archer, OneTrust, or BigID and building evidence pipelines mapped to control objectives. * Experience building pipelines for security information and event management, security orchestration ...
... GRC Solution Manager Enterprise Portal J2EE administration Experience in SAP Performance Tuning, Landscape Optimization, and troubleshooting; Multiple Database Knowledge (Oracle, DB2, SQL Server ...
... GRC Solution Manager Enterprise Portal J2EE administration Experience in SAP Performance Tuning, Landscape Optimization, and troubleshooting; Multiple Database Knowledge (Oracle, DB2, SQL Server ...
SAP Security Consultant
Indianapolis, IN · On-site
... / BW / BIBO / EP / CUA / BOBJ / GRC (hands on experience in min 3 systems - for example ECC, GRC and S4HANA) GRC Access Control support / implementation experience Experience in SoD remediation ...
SAP Security Consultant
Indianapolis, IN · On-site
... / BW / BIBO / EP / CUA / BOBJ / GRC (hands on experience in min 3 systems - for example ECC, GRC and S4HANA) GRC Access Control support / implementation experience Experience in SoD remediation ...
Job Title: IT Auditor I (GRC Analyst I) FLSA Status: Exempt Job Family: Information Technology ... Perform assigned vendor risk management activities. * Learn the process for using the risk register ...
Job Title: IT Auditor I (GRC Analyst I) FLSA Status: Exempt Job Family: Information Technology ... Perform assigned vendor risk management activities. * Learn the process for using the risk register ...
IT Auditor I
Fort Wayne, IN · On-site
Job Title: IT Auditor I (GRC Analyst I) FLSA Status: Exempt Job Family: Information Technology ... Perform assigned vendor risk management activities. * Learn the process for using the risk register ...
IT Auditor I
Fort Wayne, IN · On-site
Job Title: IT Auditor I (GRC Analyst I) FLSA Status: Exempt Job Family: Information Technology ... Perform assigned vendor risk management activities. * Learn the process for using the risk register ...
IT Auditor I
Fort Wayne, IN · On-site
Job Title: IT Auditor I (GRC Analyst I) FLSA Status: Exempt Job Family: Information Technology ... Perform assigned vendor risk management activities. * Learn the process for using the risk register ...
IT Auditor I
Fort Wayne, IN · On-site
Job Title: IT Auditor I (GRC Analyst I) FLSA Status: Exempt Job Family: Information Technology ... Perform assigned vendor risk management activities. * Learn the process for using the risk register ...
Demonstrate familiarity with Governance, Risk, and Compliance (GRC) software-preferably ServiceNow GRC or similar platforms-to support workflow management, risk tracking, and documentation within ...
Demonstrate familiarity with Governance, Risk, and Compliance (GRC) software-preferably ServiceNow GRC or similar platforms-to support workflow management, risk tracking, and documentation within ...
SAP BASIS CONSULTANT
Indianapolis, IN · On-site
$63.75 - $83.25/hr
Should have 8-10 of experience required SAP ECC SAP SRM and ARIBA SAP GTS SAP APO SAP PI SAP BW/BI SAP GRC SAP GBT SAP LVM SAP Cronacle SAP BI (BO, BODS) SAP SLT Solution Manager Enterprise Portal ...
SAP BASIS CONSULTANT
Indianapolis, IN · On-site
$63.75 - $83.25/hr
Should have 8-10 of experience required SAP ECC SAP SRM and ARIBA SAP GTS SAP APO SAP PI SAP BW/BI SAP GRC SAP GBT SAP LVM SAP Cronacle SAP BI (BO, BODS) SAP SLT Solution Manager Enterprise Portal ...
Demonstrate familiarity with Governance, Risk, and Compliance (GRC) software-preferably ServiceNow GRC or similar platforms-to support workflow management, risk tracking, and documentation within ...
Demonstrate familiarity with Governance, Risk, and Compliance (GRC) software-preferably ServiceNow GRC or similar platforms-to support workflow management, risk tracking, and documentation within ...
Privacy Senior Associate
Indianapolis, IN · On-site
Demonstrate familiarity with Governance, Risk, and Compliance (GRC) software-preferably ServiceNow GRC or similar platforms-to support workflow management, risk tracking, and documentation within ...
Privacy Senior Associate
Indianapolis, IN · On-site
Demonstrate familiarity with Governance, Risk, and Compliance (GRC) software-preferably ServiceNow GRC or similar platforms-to support workflow management, risk tracking, and documentation within ...
Awareness of governance, risk management, and compliance (GRC) concepts and their practical application in auditing. * Experience with audit tools/GRC platforms (e.g., AuditBoard). * Understanding of ...
Awareness of governance, risk management, and compliance (GRC) concepts and their practical application in auditing. * Experience with audit tools/GRC platforms (e.g., AuditBoard). * Understanding of ...
Support associated security activities including security engineering, threat hunting, vulnerability management, penetration tests, and GRC processes * Participate in the process to on-board new ...
Support associated security activities including security engineering, threat hunting, vulnerability management, penetration tests, and GRC processes * Participate in the process to on-board new ...
Support associated security activities including security engineering, threat hunting, vulnerability management, penetration tests, and GRC processes * Participate in the process to on-board new ...
Support associated security activities including security engineering, threat hunting, vulnerability management, penetration tests, and GRC processes * Participate in the process to on-board new ...
Senior Manager - ServiceNow Program Suite
Indianapolis, IN · On-site
$110K - $111K/yr
... GRC, SecOps, ITSM, ITOM, SPM, CSM, HRSD, App Engine, or related ServiceNow products. * Proven ... while managing project financials, delivery quality, and executive client relationships.
Senior Manager - ServiceNow Program Suite
Indianapolis, IN · On-site
$110K - $111K/yr
... GRC, SecOps, ITSM, ITOM, SPM, CSM, HRSD, App Engine, or related ServiceNow products. * Proven ... while managing project financials, delivery quality, and executive client relationships.
Senior Manager - ServiceNow Program Suite
South Bend, IN · On-site
$113K - $114K/yr
... GRC, SecOps, ITSM, ITOM, SPM, CSM, HRSD, App Engine, or related ServiceNow products. * Proven ... while managing project financials, delivery quality, and executive client relationships.
Senior Manager - ServiceNow Program Suite
South Bend, IN · On-site
$113K - $114K/yr
... GRC, SecOps, ITSM, ITOM, SPM, CSM, HRSD, App Engine, or related ServiceNow products. * Proven ... while managing project financials, delivery quality, and executive client relationships.
SAP Cybersecurity
Indianapolis, IN · On-site
The role involves monitoring security events, managing vulnerabilities, and collaborating with multiple teams to enhance the security posture of SAP systems. Responsibilities : • Lead SAP ...
SAP Cybersecurity
Indianapolis, IN · On-site
The role involves monitoring security events, managing vulnerabilities, and collaborating with multiple teams to enhance the security posture of SAP systems. Responsibilities : • Lead SAP ...
Ability to manage multiple priorities and work cross-functionally. * Preferred: * Privacy certifications such as CIPP (US/E, etc.), CIPM, CIPT, or equivalent. * Familiarity with privacy or GRC ...
Ability to manage multiple priorities and work cross-functionally. * Preferred: * Privacy certifications such as CIPP (US/E, etc.), CIPM, CIPT, or equivalent. * Familiarity with privacy or GRC ...
Ability to manage multiple priorities and work cross-functionally. * Preferred: * Privacy certifications such as CIPP (US/E, etc.), CIPM, CIPT, or equivalent. * Familiarity with privacy or GRC ...
Ability to manage multiple priorities and work cross-functionally. * Preferred: * Privacy certifications such as CIPP (US/E, etc.), CIPM, CIPT, or equivalent. * Familiarity with privacy or GRC ...
Ability to manage multiple priorities and work cross-functionally. * Preferred: * Privacy certifications such as CIPP (US/E, etc.), CIPM, CIPT, or equivalent. * Familiarity with privacy or GRC ...
Ability to manage multiple priorities and work cross-functionally. * Preferred: * Privacy certifications such as CIPP (US/E, etc.), CIPM, CIPT, or equivalent. * Familiarity with privacy or GRC ...
Experience managing multiple projects, in a fast-paced environment * Proven ability to learn new ... Experience with Archer, Process Unity, ServiceNow or other GRC/VRM tools * Experience with security ...
Experience managing multiple projects, in a fast-paced environment * Proven ability to learn new ... Experience with Archer, Process Unity, ServiceNow or other GRC/VRM tools * Experience with security ...
Grc Manager information
What does a typical day look like for a GRC Manager?
A typical day for a GRC Manager involves coordinating risk assessments, reviewing regulatory compliance requirements, and working closely with departments such as IT, Legal, and Internal Audit to implement controls and mitigate risks. This role often includes developing or updating policies, conducting training sessions, and preparing reports for senior leadership or regulatory bodies. GRC Managers also keep an eye on emerging risks and compliance trends, ensuring that the organization proactively adapts its governance and risk strategies. Collaboration and regular communication with diverse teams make the work dynamic and engaging, as no two days are exactly the same.
What are the key skills and qualifications needed to thrive in the Grc Manager position, and why are they important?
To thrive as a GRC Manager, you need a deep understanding of governance, risk management, and compliance frameworks, often supported by a bachelor's degree in business, information security, or a related field. Experience with GRC platforms (such as RSA Archer, MetricStream, or ServiceNow), risk assessment tools, and certifications like CISA, CRISC, or CISSP are highly valued. Leadership, strong analytical skills, and effective communication are vital soft skills for influencing stakeholders and managing cross-functional teams. These abilities are essential to ensure regulatory adherence, mitigate organizational risks, and drive a culture of compliance throughout the company.
What is a GRC Manager job?
A GRC (Governance, Risk, and Compliance) Manager is responsible for developing and overseeing an organization's risk management, regulatory compliance, and corporate governance programs. They ensure that internal policies and external regulations are followed to mitigate risks and maintain legal and ethical standards. Their role includes implementing frameworks, conducting risk assessments, and collaborating with different departments to align business objectives with compliance requirements. GRC Managers also provide training and guidance to employees on regulatory changes and best practices.

Other
Re-posted 29 days ago
Deloitte rating
8.1
Based on 90 frontline employees who took The Breakroom Quiz
59th of 148 rated financial services
Job description
Are you interested in improving the cyber and organizational risk profiles of leading companies? Do you want to build the data foundations that power the next generation of AI-enabled cyber defense?
If yes, then Deloitte's Cyber team could be the place for you.
We are looking for a hands-on Data Engineer to build and operate the governed data foundations powering cyber risk, compliance evidence, and agentic AI-enabled cyber workflows. You will design production-grade pipelines and services that support risk reporting, continuous controls monitoring, and AI-assisted security operations-built with strong governance, lineage, privacy-by-design, and audit-ready evidence.
This role is ideal for engineers who can bridge modern data engineering and software development with Governance, Risk, and Compliance (GRC) expectations in regulated enterprise environments.
Recruiting for this role ends on 12/31/2026.
Work you'll do
As a Senior Consultant, Strategy, Growth and Transformation on the Cyber team, you will be responsible for:
- Building scalable batch and stream processing pipelines that ingest security telemetry, control evidence, and compliance artifacts into governed data stores.
- Designing data models for risk and controls domains, including key risk indicators, issues and defects, risk acceptance, control testing outcomes, audit evidence, and policy exceptions, and enabling self-service analytics and dashboards.
- Implementing data quality checks, lineage, metadata, and access controls to support auditability, regulatory defensibility, and repeatable evidence generation.
- Developing AI-enabled capabilities that accelerate governance, risk, and compliance and cyber operations, including evidence summarization, control testing assist, policy question-and-answer, investigation copilots, ticket triage, and exception reasoning using agentic patterns, workflow orchestration, and retrieval-augmented generation.
- Engineering integrations between data platforms, governance, risk, and compliance workflows, and enterprise systems using application programming interfaces, event patterns, and connectors, with observability and runbooks for production support.
- Partnering with Cyber, Risk, Compliance, Privacy, and Legal stakeholders to translate requirements into implementable controls and developer-ready guardrails.
A successful candidate would possess these skills:
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
You will join a cyber engineering team focused on enabling resilient, secure, and compliant operations through modern data platforms and AI-enabled automation. The team builds repeatable assets-reference architectures, accelerators, and governance patterns-to help clients modernize and scale cyber and GRC programs.
Qualifications
Required:
- Bachelor's degree or equivalent practical experience.
- 4+ years of experience in data engineering and software development using Python and SQL.
- Experience building production data pipelines and data models for batch processing, stream processing, or both, and deploying solutions using cloud platforms, containers, infrastructure as code, application programming interfaces, and secrets management.
- Experience implementing data governance controls including data classification, personally identifiable information handling, least-privilege access, encryption, secrets management, retention, audit logging, and lineage or metadata management.
- Experience supporting governance, risk, and compliance workflows, including risk reporting, audit data requests, controls monitoring, controls testing, compliance metrics, governance, risk, and compliance tool integrations, and large language model-enabled applications using retrieval-augmented generation, vector or hybrid retrieval, tool or function calling, evaluation or monitoring, prompt-injection defenses, and secure access patterns.
- Ability to travel 0-25%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited immigration sponsorship may be available.
Preferred:
- Experience in consulting or a Big 4 environment.
- Experience with Java, Go, or JavaScript.
- Experience integrating with ServiceNow GRC, Archer, OneTrust, or BigID and building evidence pipelines mapped to control objectives.
- Experience building pipelines for security information and event management, security orchestration, automation, and response, vulnerability, identity, or cloud security posture data.
- Experience operationalizing large language model operations or machine learning operations capabilities, including evaluation, monitoring, versioning, and governance workflows.
- Security certification such as CompTIA Security+, Certified Information Security Manager, Certified Information Systems Auditor, Certified Information Systems Security Professional, or a cloud certification.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Are you interested in improving the cyber and organizational risk profiles of leading companies? Do you want to build the data foundations that power the next generation of AI-enabled cyber defense?
If yes, then Deloitte's Cyber team could be the place for you.
We are looking for a hands-on Data Engineer to build and operate the governed data foundations powering cyber risk, compliance evidence, and agentic AI-enabled cyber workflows. You will design production-grade pipelines and services that support risk reporting, continuous controls monitoring, and AI-assisted security operations-built with strong governance, lineage, privacy-by-design, and audit-ready evidence.
This role is ideal for engineers who can bridge modern data engineering and software development with Governance, Risk, and Compliance (GRC) expectations in regulated enterprise environments.
Recruiting for this role ends on 12/31/2026.
Work you'll do
As a Senior Consultant, Strategy, Growth and Transformation on the Cyber team, you will be responsible for:
- Building scalable batch and stream processing pipelines that ingest security telemetry, control evidence, and compliance artifacts into governed data stores.
- Designing data models for risk and controls domains, including key risk indicators, issues and defects, risk acceptance, control testing outcomes, audit evidence, and policy exceptions, and enabling self-service analytics and dashboards.
- Implementing data quality checks, lineage, metadata, and access controls to support auditability, regulatory defensibility, and repeatable evidence generation.
- Developing AI-enabled capabilities that accelerate governance, risk, and compliance and cyber operations, including evidence summarization, control testing assist, policy question-and-answer, investigation copilots, ticket triage, and exception reasoning using agentic patterns, workflow orchestration, and retrieval-augmented generation.
- Engineering integrations between data platforms, governance, risk, and compliance workflows, and enterprise systems using application programming interfaces, event patterns, and connectors, with observability and runbooks for production support.
- Partnering with Cyber, Risk, Compliance, Privacy, and Legal stakeholders to translate requirements into implementable controls and developer-ready guardrails.
A successful candidate would possess these skills:
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
You will join a cyber engineering team focused on enabling resilient, secure, and compliant operations through modern data platforms and AI-enabled automation. The team builds repeatable assets-reference architectures, accelerators, and governance patterns-to help clients modernize and scale cyber and GRC programs.
Qualifications
Required:
- Bachelor's degree or equivalent practical experience.
- 4+ years of experience in data engineering and software development using Python and SQL.
- Experience building production data pipelines and data models for batch processing, stream processing, or both, and deploying solutions using cloud platforms, containers, infrastructure as code, application programming interfaces, and secrets management.
- Experience implementing data governance controls including data classification, personally identifiable information handling, least-privilege access, encryption, secrets management, retention, audit logging, and lineage or metadata management.
- Experience supporting governance, risk, and compliance workflows, including risk reporting, audit data requests, controls monitoring, controls testing, compliance metrics, governance, risk, and compliance tool integrations, and large language model-enabled applications using retrieval-augmented generation, vector or hybrid retrieval, tool or function calling, evaluation or monitoring, prompt-injection defenses, and secure access patterns.
- Ability to travel 0-25%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited immigration sponsorship may be available.
Preferred:
- Experience in consulting or a Big 4 environment.
- Experience with Java, Go, or JavaScript.
- Experience integrating with ServiceNow GRC, Archer, OneTrust, or BigID and building evidence pipelines mapped to control objectives.
- Experience building pipelines for security information and event management, security orchestration, automation, and response, vulnerability, identity, or cloud security posture data.
- Experience operationalizing large language model operations or machine learning operations capabilities, including evaluation, monitoring, versioning, and governance workflows.
- Security certification such as CompTIA Security+, Certified Information Security Manager, Certified Information Systems Auditor, Certified Information Systems Security Professional, or a cloud certification.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.