Full-Time Principal Information Security Engineer

The ServiceNow Security Organization (SSO) delivers innovative security solutions to reduce risk and protect the company and our customers.

Team: This position reports to the Director, Security Engineering. The Enterprise Security Engineering team targets building state-of-the-art technology that will help reduce the risk surrounding the sensitive assets of the company with the least impact possible on operations.

Role: As a Principal Security Engineer, you will be a strategic technical leader driving the security of ServiceNow’s global infrastructure and cloud environments. You will architect, implement, and oversee security solutions across on-premises and multi-cloud platforms (AWS, Azure, GCP), ensuring resilience, compliance, and operational excellence.

What you get to do in this role:

• Define and execute the security strategy for infrastructure and cloud platforms.
• Lead architecture and implementation of scalable, automated security controls across AWS, Azure, GCP, and on-prem environments.
• Drive secure cloud migration initiatives and hyperscaler adoption.
• Oversee security for network, server, authentication systems, certificates, and operational tooling in hybrid and cloud-native environments.
• Establish and maintain controls for certificate lifecycle management, cloud IAM, and secure credential management.
• Champion operational excellence through automation, outage reduction, and service resilience improvements.
• Represent Security Engineering in architecture reviews, incident response, and compliance initiatives.
• Mentor and develop engineers.
• Stay current with industry threats, trends, and mitigation techniques.

In order to be successful in this role, we need someone who has:

• Experience in leveraging or critically thinking about how to integrate AI into work processes.
• 15+ years of hands-on security engineering experience, including 5+ years in cloud security (AWS, Azure, GCP).
• Deep expertise in operating system and server security (Linux, Windows), enterprise networking, and secure network architectures.
• Advanced proficiency in scripting and automation (Python, Bash, Go, etc.).

Desirable Skills:

• Proven experience with cloud migration, hyperscaler environments, and securing hybrid cloud architectures.
• Strong understanding of IAM services (LDAP/Directory Services, SAML, FIDO2, cloud-native IAM), password-less authentication, and PKI.
• Experience with infrastructure-as-code and configuration management tools (Puppet, Ansible, Terraform).
• Experience with Splunk, SIEM/log management systems.

What is the last date for applying to the job?

Which countries are accepted for this remote job?