UST
Website:
ust.com
Job details:
Role Description
Role: Job Description - ServiceNow TPRM Business Analyst
Experience: 5+ years
Role Overview
We are seeking a highly capable ServiceNow TPRM Business Analyst to support the delivery of ThirdParty Risk Management solutions on the ServiceNow IRM/TPRM platform. This role involves gathering and translating business requirements, defining TPRM processes, documenting workflows, partnering with developers, validating configurations, and ensuring alignment with risk, procurement, legal, and infosec functions.The ideal candidate understands both TPRM domain processes and ServiceNow IRM capabilities, and can bridge business and technical teams effectively.
Key Responsibilities
- Requirements Gathering & Process Analysis
Conduct workshops with procurement, infosec, legal, privacy, finance, risk owners, and vendor managers.
Elicit and document requirements across vendor intake, tiering, due diligence, assessments, remediation, evidence, and periodic review processes.
Analyze currentstate vs futurestate TPRM processes and recommend improvements.
Translate business needs into functional specifications, user stories, acceptance criteria, and configuration workbooks.
- ServiceNow TPRM Functional Design
Define Functional Behavior For
Vendor Intake Forms & Approval Chains
Vendor Segmentation / Tiering Logic
Dynamic Assessments & Question Sets
Inherent / Residual Risk Scoring Models
Issue, Exception & Remediation Workflows
Evidence collection and audit workflows
Partner with developers and architects to ensure alignment between requirements and technical design.
Review configuration outputs and provide feedback.
- Data, Integrations & Validation
Support data mapping for vendor master, engagements, risks, controls, and scoring attributes.
Document Integration Requirements For
Cyber rating tools (BitSight, SecurityScorecard, RiskRecon)
Procurement platforms (SAP/Ariba, Coupa)
CLM and identity systems
Validate API payloads, transformation logic, data mapping, and error scenarios (working with QA and Dev).
- Testing, UAT & Quality Assurance
Develop test scenarios, test scripts, and expected results for SIT/UAT.
Support QA teams in verifying workflows, risk logic, assessments, and integrations.
Facilitate UAT execution with business teams; manage feedback, defects, and signoff.
- Documentation & Change Management
Create SOPs, process maps, business flow diagrams, training material, and release documentation.
Support training sessions for TPRM users, risk owners, and vendor managers.
Maintain requirements traceability and ensure auditready documentation.
Act as primary liaison between business SMEs and technical teams.
Ensure clear communication, alignment of priorities, and consistency in TPRM process design.
Present functional walkthroughs, demos, and progress updates to leadership.
Skills & Qualifications
Strong understanding of ServiceNow IRM/TPRM modules: vendor intake, segmentation, assessments, risk scoring, remediation, evidence workflows, dashboards, and periodic reviews.
Deep knowledge of TPRM domain: thirdparty due diligence, continuous monitoring, KRIs/KPIs, control testing, vendor lifecycle management.
Experience writing user stories, functional specs, acceptance criteria, data mappings, and configuration workbooks.
Ability to validate platform behavior such as dynamic logic, workflow triggers, scoring models, SLAs, reporting, and workspace components.
Familiarity with REST APIs, IntegrationHub, data imports, transform maps (functional understanding no coding required).
Strong analytical and problemsolving skills; ability to break down complex processes into clear requirements.
Excellent communication & facilitation skills capable of engaging procurement, infosec, legal, risk, and platform teams.
High attention to detail, documentation quality, and structured thinking.
Ability to work onsite and coordinate across multiple stakeholders and time zones.
Education Qualifications And Certifications (Preferred)
Bachelor s degree in Business Administration, Information Systems, Computer Science, Engineering, or related field.
ServiceNow Certified System Administrator (CSA)
ServiceNow IRM Implementation Specialist (preferred)
Business Analysis Certifications (CBAP, CCBA, PMIPBA) are an advantage
ITIL Foundation certification (optional)
Skills
business analysis,servicenow tprm,requirements gathering,process analysis,user stories,
Click on Apply to know more.