Full-Time Staff Information Cloud Security Engineer

The ServiceNow Security Organization delivers world-class, innovative security solutions. We enable customers to migrate sensitive data to the cloud. We create an environment where employees are proud to work.

Role Overview: This role is part of the Security Engineering Org reporting to the Senior Manager of Public Cloud Security Engineering.

Team Responsibilities: The team builds state-of-the-art technology reducing risk to sensitive assets with minimal operational impact. They provide guidance to security operations teams, shifting security perception from blocker to enabler. Strong relationships with other teams are essential.

Key Responsibilities:

• Build and operationalize security tools.
• Build and automate workflows and dashboards.
• Suggest security improvements by assessing current situations, evaluating trends, anticipating needs, and supporting proof-of-concept experiments.
• Create and present functional/technical designs with data analysis for business teams.
• Direct and influence multi-disciplinary teams in implementing and operating Cyber Security controls.
• Participate in security incidents, implementing containment and eradication.
• Evaluate audit and vulnerability findings.
• Serve as an expert for team-built tools.
• Provide guidance and facilitation to security operations.
• Build strong relationships with stakeholders.
• Shape security policies and standards for hybrid cloud environments.
• Interpret security and technical requirements into business requirements.
• Communicate security risks to stakeholders (business leaders to engineers).
• Influence build vs. buy decisions related to security tools.
• Ensure timely project delivery based on established roadmaps.
• Participate in on-call roster.
• Align with product management and engineering on roadmap and feedback.
• Mentor and train peers.

Requirements:

• Must Have: 8+ years of Security Engineering experience
• Must Have: 5+ years of Public Cloud experience (GCP preferred or Azure)
• Must Have: Experience with infrastructure automation tools (AWS CloudFormation, Ansible, Terraform, etc.)
• Must Be Proficient: In Python
• Preference: GCP, but ok if 2/3 of the above
• Nice to Have: REGO
• Experience with containerization on cloud (AKS, EKS)
• Experience implementing cloud native security tools (AWS Guard Duty, Azure Security Center)
• Experience implementing Cloud Security Posture Management toolset
• Experience with systems automation platforms and technologies
• Execute security architectures for cloud/hybrid systems
• Automate security controls, data, and processes
• Build dynamic dashboards to track metrics
• Employ cloud-based APIs to write tools
• Spot and execute new security technologies and best practices
• Strong knowledge of system internals and networking
• Familiarity with Linux, Windows, and cloud provider ecosystems
• Assist with integration of infrastructure pipelines
• Familiarity with common security vulnerabilities
• Strong analytical skills for problem-solving
• Proven experience in being an effective team player
• Ability to articulate complex issues to executives and customers

What is the last date for applying to the job?

Which countries are accepted for this remote job?