Sr Staff Product Security Engineer

ServiceNow is a global market leader in cloud-based technology, and we're looking for a Sr Staff Product Security Engineer to ensure the security of our clients' instances. The role involves security auditing, hardening guidelines, and researching best practices for securing SaaS platforms.

Requirements

• 12+ years of overall product security experience
• A passion for security and problem solving
• Background in software security auditing, computer security and the statistical methods
• 3+ years of experience with ServiceNow Platform internals
• 5+ years of experience performing software security auditing including code review, thick app analysis, and black-box web application testing
• 3+ years of experience performing threat modeling for software products
• Familiarity with NIST 800-53 and similar controls frameworks
• Developer level proficiency in Python, Java, and JavaScript, including modern client-side JavaScript frameworks

Benefits

• Work with diverse business and technology owners
• Participate in instance hardening management activies, including reviewing new product settings to build security recommendations and documenting these settings in order to ensure ServiceNow instance owners can ensure highest level of security of their instances.
• Maintain the set of hardening settings to ensure their relevance and accuracy
• Perform security audits to discover, communicate, and recommend remediation activities for vulnerabilities
• Work with engineering teams on platform roadmap planning
• Create and maintain strategic relationships