Demonstrates thought leader-level hands on architectural and configuration experience with a proven track record of success managing GRC and IRM programs, solution design and configuration projects for one or more GRC/IRM Technology platforms. These projects should be targeted to enable multiple business processes and/or source data systems to drive efficiencies and reduce redundancies supporting one or more of the following functions; internal audit, compliance, enterprise risk management, operational risk management, technology risk management, third party risk management, cyber security, business resiliency, incident management, SOX (and/or other compliance frameworks), or other business programs/initiatives. In specific, the following skills are aligned with this position:

• Risk management, compliance management, and/or enterprise governance as it relates to how technologies can be and are leveraged throughout organizations& 39; internal audit, risk and compliance functions and processes, as well as the associated benefits that can be realized;
• Integrated risk management (IRM) frameworks, especially as it relates to building a program or capabilities across an enterprise;
• Experience in designing, reengineering, optimizing, and documenting financial, operational, technology, and business requirements, processes and workflow related to any of the listed GRC functions above through stakeholder interviews, facilitated workshops, and analysis of client process documentation;
• Experience in creating, drafting, and refining core business foundational elements such as process, risk, and control frameworks related to any/all of the listed GRC functions above through stakeholder interviews, knowledge of industry leading practices and frameworks, facilitated workshops, and analysis of client process documentation;
• Deep understanding of access control, specifically role based access and inheritance of role and record based permissions:
• Experience identifying sources of data outside of GRC solutions, and designing integration approaches to share data between client and third party systems;
• Knowledge of on premise and cloud based application architecture, the differences between them, advantages for each, disadvantages for each, and how each one impacts sustainability, performance, and capacity for the GRC solutions;
• Experience with implementing GRC technology such as (but not limited to) RSA Archer, MetricStream, or ServiceNow; and;
• Knowledge of proper technical documentation techniques to capture GRC solution design and configuration to meet client SDLC requirements and satisfy client requirements.

Demonstrates thought leader-level abilities with, and/or a proven record of success in directing client projects/engagements including the following areas:

• Risk management, compliance management, and/or enterprise governance as it relates to how technologies can be and are leveraged throughout organizations& 39; internal audit, risk and compliance functions and processes, as well as the associated benefits that can be realized;
• Integrated risk management (IRM) frameworks, especially as it relates to building a program or capabilities across an enterprise;
• Experience in designing, reengineering, optimizing, and documenting financial, operational, technology, and business requirements, processes and workflow related to any of the listed GRC functions above through stakeholder interviews, facilitated workshops, and analysis of client process documentation;
• Experience in creating, drafting, and refining core business foundational elements such as process, risk, and control frameworks related to any/all of the listed GRC functions above through stakeholder interviews, knowledge of industry leading practices and frameworks, facilitated workshops, and analysis of client process documentation;
• Deep understanding of access control, specifically role based access and inheritance of role and record based permissions:
• Experience identifying sources of data outside of GRC solutions, and designing integration approaches to share data between client and third party systems;
• Knowledge of on premise and cloud based application architecture, the differences between them, advantages for each, disadvantages for each, and how each one impacts sustainability, performance, and capacity for the GRC solutions;
• Experience with implementing GRC technology such as (but not limited to) RSA Archer, MetricStream, or ServiceNow; and;
• Knowledge of proper technical documentation techniques to capture GRC solution design and configuration to meet client SDLC requirements and satisfy client requirements;
• Defining resource requirements, project workflow, budgets, billing and collection;  
• Creating a positive work environment, monitoring workloads of team members while meeting client expectations and respecting the work-life quality of team members, leveraging diverse views and encouraging improvement and innovation, providing candid and meaningful feedback in a timely manner and keeping leadership informed of progress; and, 

- Developing and sustaining meaningful client relationships, understanding a client& 39;s business and technology in order to identify, pursue, and ultimately obtain additional consulting opportunities.