Full-Time Staff Information Cloud Security Engineer

The ServiceNow Security Organization delivers innovative security solutions to reduce risk and protect the company and customers. Enabling customer cloud migration, accelerating business, and striving to be the most trusted SaaS provider. The team promotes employee pride and positive impact.

This role is within the Security Engineering Org, reporting to the Senior Manager of Public Cloud Security Engineering.

The security engineering team builds state-of-the-art technology to reduce risk to sensitive assets with minimal operational impact, guides and facilitates security operations, and fosters a culture where security is an enabler.

Key Responsibilities:

• Build and operationalize security tools.
• Build and automate workflows and dashboards.
• Suggest security improvements by analyzing trends and anticipating requirements.
• Create functional and technical designs, including data analysis, presenting to business teams, and gathering feedback.
• Direct and influence multi-disciplinary teams on Cyber Security controls.
• Participate in security incidents, implementing containment and eradication.
• Evaluate audit and vulnerability findings and act upon them.
• Serve as an expert for team-built tools.
• Provide guidance and facilitation to security operations.
• Develop strong relationships with stakeholders.
• Contribute to organization security policies and standards for hybrid cloud environments.
• Translate security and technical requirements into business requirements and communicate risks to stakeholders.
• Influence build vs. buy decisions related to security tools.
• Ensure timely project delivery via close collaboration with business teams.
• Participate in on-call roster.
• Collaborate with product management and engineering on roadmap and feedback.
• Provide mentoring and training to peers.
• Leverage/critically think about integrating AI into work processes, decision-making, or problem-solving.

Requirements:

• MUST HAVE 8+ years of Security Engineering experience.
• MUST HAVE 5+ Years in Public Cloud (GCP, AWS, or Azure) Compute, network, storage, content delivery, administration & security, deployment & management, and automation.
• Preference: GCP experience
• MUST HAVE Experience with infrastructure automation tools (AWS CloudFormation, Ansible, Terraform, etc.).
• MUST BE PROFICIENT in Python.
• Nice to Have: REGO experience.
• Experience with cloud containerization (AKS, EKS).
• Experience with cloud-native security tools (AWS Guard Duty, Azure Security Center).
• Experience with Cloud Security Posture Management toolset.
• Strong understanding of systems automation.
• Experience executing security architectures for cloud/hybrid systems.
• Experience automating security controls, data, and processes for improved metrics.
• Ability to build dynamic dashboards.
• Strong working knowledge of system internals and networking.
• Strong familiarity with Linux and Windows operating systems and cloud provider ecosystems (AWS/Azure/GCP).
• Experience integrating Infrastructure pipelines with secure configuration parameters to mitigate known threat vectors.
• Familiarity with common security vulnerabilities and their impact.
• Analytical problem-solving skills, offensive security tactics.
• Proven ability to be an effective team player and to automate/improve processes.
• Excellent communication skills to articulate complex issues to executives and customers.

What is the last date for applying to the job?

Which countries are accepted for this remote job?