Information Security Analyst

ServiceNow is seeking an Information Security Analyst to join the Global Incident Response team. The team provides 24x7x365 continuous monitoring of correlated security event feeds and the appropriate triage and escalation in case of an identified security incident. The role involves working with a geographically diverse team to respond to threats and track incidents to closure.

Requirements

• Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving
• 2+ years relevant experience or equivalent combination of education and experience
• Deep understanding of Security Operations Center and Security Incident Response Team protocols and procedures
• A solid foundation in networking fundamentals, with a deep understanding of TCP/IP and other core protocols
• Background working with data logging applications (e.g. Splunk)
• Knowledge of internet security protocols and technologies
• The ability to analyze event and systems logs, perform forensic analysis (good to have), analyze malware, and other incident response related data, as needed
• Familiarity with intrusion detection systems and different layers of defense across Endpoint, Email & Network level layers
• Knowledge of latest attack vectors, threat tactics and attacker techniques targeting SaaS companies
• Understanding of Windows and Linux operating systems and command line tools
• Enterprise level analysis and defense experience are a plus
• Willingness to work in weekend shift (no night shifts!!)
• Scripting knowledge is good to have
• CompTIA Security+, GSEC, CEH (Practical) certifications are good to have

Benefits

• Work Personas (flexible, remote, or required in office)
• Equal Opportunity Employer
• Accommodations (creating an accessible and inclusive experience for all candidates)
• Export Control Regulations (export control approval from government authorities)