TPRM module configuration: Perform hands-on configuration and customization of the ServiceNow TPRM module, including forms, tables, workflows, and dictionary entries, to align with business requirements.
Assessment and questionnaire development: Build, update, and manage third-party assessment questionnaires, leveraging templates like SIG and CAIQ. Configure assessment logic, including risk scoring and tiering models.
Workflow and process automation: Develop and enhance workflows in Flow Designer or traditional workflows to automate third-party due diligence, issue and remediation management, and renewal processes.
Access control and security: Configure Access Control Lists (ACLs) and roles to enforce secure access to third-party data and assessments.
Scripting and development: Write and maintain client scripts, business rules, and script includes to add custom functionality and improve user experience within the TPRM application.
Integrations and data management
Integrations: Implement integrations with external systems and data sources (e.g., security rating services, external risk intelligence) using methods like REST/SOAP APIs and IntegrationHub to enable continuous monitoring of vendors.
Data migration: Execute data migration activities for third-party, engagement, and assessment data from legacy systems into the ServiceNow TPRM module.
Data quality management: Develop processes for data validation and normalization to ensure the accuracy and integrity of all third-party and engagement data. Collaboration and delivery
Requirements analysis: Collaborate with functional business analysts, risk managers, and stakeholders to understand third-party risk requirements and translate them into a technical design.
Testing and quality assurance: Support the QA process by assisting with test case execution, debugging, and resolving technical issues during deployment.
Documentation: Create and maintain technical documentation, including solution design, configuration details, and release notes.
Implementation and deployment: Participate in all phases of the project lifecycle, including development, testing, and deployment across different environments.
Support and maintenance
Technical support: Provide technical support for post-implementation issues, data discrepancies, and troubleshooting to ensure the stability and reliability of the TPRM solution.
Reporting: Build and configure reports and dashboards within the TPRM module to provide visibility into third-party risk posture