.svg)
ServiceNow
Senior Staff Information Security Engineer
Join ServiceNow as a Senior Staff Information Security Engineer in Salt Lake City, UT. Leverage your expertise in securing infrastructure and ServiceNow modules. Master’s degree and 10+ years required. Benefits include strategic initiatives and mentorship opportunities.
The Mothership
Senior
ServiceNow Role Type:
ServiceNow Modules:
IT Service Management
Incident Management
Security Operations
ServiceNow Certifications (nice to have):
Job description
Posted on:
April 16, 2025
The Senior Staff Information Security Engineer will serve as a technical subject matter expert within the Infrastructure Security team, responsible for engineering solutions that secure ServiceNow’s core enterprise infrastructure. This includes network, server, authentication systems, certificates, and operational tooling.
Requirements
- Master’s degree in computer science; engineering, or information technology or equivalent industry experience
- 10+ years of relevant hands-on engineering experience
- Deep experience with operating system and server security (Linux, Windows)
- Advanced knowledge of enterprise networking and secure network architectures
- Proficiency in scripting and automation (Python, Bash, Go, etc.)
- Experience in working with web and database services (REST APIs, JSON, XML, SQL)
- Experience in working with Splunk and SPL (or other SIEM/Log management systems)
- Experience in working with cryptography (PKI, TLS, VPNs, secure credential management, disk encryption, certificate and code signing)
- Experience with infrastructure-as-code and configuration management tools such as Puppet and Ansible to automate system hardening and policy enforcement.
- Experience in working with hardware virtualization (bare metal servers, storage, load balancing, virtual networking using VMware, Citrix, Hyper-V, etc.)
Benefits
- Drive strategic initiatives that prevent threats, reduce operational risk, and enhance resilience across infrastructure services
- Define and execute the technical strategy for securing infrastructure, aligned to risk and business needs
- Lead efforts to harden network and server infrastructure against unauthorized access, misconfigurations, and malware
- Architect and implement scalable and automated security controls across authentication, system configurations, and monitoring pipelines
- Establish controls and visibility to manage certificate lifecycle and prevent expiration-related risks
- Champion operational excellence through automation, outage reduction, and service resilience improvements
- Represent Infrastructure Security in architecture reviews, incident response, and compliance initiatives
- Mentor and develop other engineers, influencing secure engineering practices across teams
- Stay current with industry threats, trends, and mitigation techniques related to infrastructure security
Requirements Summary
Master’s degree in computer science or related field, 10+ years of experience in infrastructure security, and proficiency in scripting and automation
