• Perform security assessments, control effectiveness review, and cyber incident response • Build and write scripts/queries to assess the security posture of CIS infrastructure • Provide regular reporting on the status of the information security program to senior staff • Ensure continued compliance of the security and privacy programs with all applicable laws and regulations • Assist with security incidents and events to protect corporate information assets, including IP, data, and company reputation • Develop and monitor continuous audit and assessment practices; Support the implementation and maintenance of current laws, regulations, and industry best practices • Maintain a current understanding of the Cyber threat landscape • Communicate best practices and risks across the organization • Assist with internal Phishing engagements and vulnerability management • Other tasks and responsibilities as assigned

• Lead major cybersecurity incidents from detection through containment, eradication, recovery, and post-incident review; including participating in on-call rotation. • Serve as the top escalation point for complex, high-severity incidents, ensuring rapid and effective resolution. • Develop, maintain, and optimize incident response playbooks, runbooks, and escalation procedures. • Oversee enterprise-wide monitoring of networks, cloud, and endpoints for threats, vulnerabilities, and anomalous activity. • Advance detection capabilities using EDR, SIEM, and behavioral analytics aligned with MITRE ATT&CK. • Act as subject matter expert on EDR and SIEM. • Design and implement automation frameworks (Python, PowerShell, AWS Lambda) to streamline response workflows and reduce manual effort. • Integrate AI/ML models into security monitoring and response processes for enhanced detection accuracy and prioritization. • Conduct forensic investigations and threat hunting to identify root causes and emerging threat patterns. • Collaborate cross-functionally with infrastructure, application, and network teams to enforce secure configurations and compliance. • Mentor and guide incident response analysts, fostering technical growth and operational excellence. • Communicate effectively with executives and technical teams during and after incidents, producing clear reports and recommendations. • Drive continuous improvement in detection, response, and prevention strategies to strengthen enterprise security posture.

About the Role Abnormal AI is looking for a Senior Software Engineer, Data Security, to help define and build the next generation of our security and privacy platform. In this role, you’ll be a key technical leader on the Data Security team, designing and scaling the systems that keep our customers’ most sensitive data safe as we grow into new products, regions, and ecosystems. You will own and evolve the customer data security and privacy platform services that power Abnormal’s platform, from policy and enforcement to observability and analytics. You’ll collaborate closely with Security, Product, and Platform teams to design solutions that are secure by default, highly scalable, and intuitive for engineers to build on. This is a high-impact opportunity for someone who wants to shape how an AI-forward-thinking company like Abnormal thinks about data governance, privacy-by-design, and secure-by-default engineering over the coming years. Who You Are - You bring a practical security mindset and can identify potential security flaws at any step of the software development lifecycle, proposing reasonable solutions that balance risk and business needs. - You can translate Security & Privacy requirements into clear technical requirements and drive projects end to end, from design through rollout and ongoing ownership. - You are excited about the opportunity to grow into a leadership position on the team, setting, owning, and delivering key Multi-Product Platform initiatives with cross-divisional impact. What you will do - Design and build core Data Security platform services that enforce Security & Privacy standards across Abnormal’s products, infrastructure, and customer-facing integrations. - Own, lead, and deliver large, multi-quarter initiatives that enable Abnormal to expand into new geographies, verticals, and product lines while maintaining world-class security and privacy guarantees. - Develop secure, scalable data governance platform services and tooling that integrate Abnormal’s platform with external ecosystems such as Salesforce, Slack, GitHub, Zoom, and more—making Data Security and Privacy “on” by default. - Translate security and privacy requirements into clear technical designs, balancing risk, usability, and cost while enabling product teams to move quickly and safely. - Partner with Platform and Security leaders to define the vision, architecture, and roadmap for Abnormal’s Data Security platform, reconciling long-term strategy with near-term business needs. - Elevate the engineering bar by driving best practices in threat modeling, authz/authn, secure data access patterns, and observability for security-sensitive systems. - Mentor and grow engineers on the team, providing guidance on technical design, system ownership, and practical security thinking. Must Haves - BS degree in Computer Science, Electrical Engineering, Computer Engineering, or related field, or equivalent practical experience. - 5+ years of experience as a Software Engineer building and operating backend or distributed systems. - Strong software development and system design skills, with a deep understanding of reliability, scalability, and tradeoffs in distributed systems (e.g., consistency, availability, CAP theorem). - Hands-on experience with Authentication, Authorization, and/or Network Security, including common attack vectors, best practices, and modern security technologies. - Pragmatic security mindset with the ability to differentiate must-have vs. nice-to-have Security & Privacy requirements and make clear, well-reasoned tradeoffs. - Proven track record of leading complex projects end-to-end, from problem definition and design through implementation, rollout, and ongoing ownership. - Experience with Golang and Python, or strong experience in similar languages with a readiness to work in Go and Python day-to-day. Nice to Have - Ability to convert ambiguous business and compliance requirements (e.g., customer asks, regulatory needs) into crisp technical problems, milestones, and deliverables. - Strong product sense and prioritization skills, including the ability to articulate tradeoffs, cut scope intelligently, and ship the highest-impact work first. - Experience leading small teams or technical workstreams on multi-quarter platform or security initiatives. - Experience with data governance, privacy, or compliance domains (e.g., GDPR, CCPA, SOC 2, ISO 27001) and how they translate into engineering systems. #LI-NT1 Actual compensation will be determined based on several non-discriminatory factors including skills, experience, qualifications, and geographic location. In addition to base salary, this role may be eligible for bonus or incentive compensation, equity, and a comprehensive benefits package. Base salary range: $179,800—$258,500 USD Abnormal AI is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by law. For our EEO policy statement please click here. If you would like more information on your EEO rights under the law, please click here.

Company Description Who we are Moveworks is the Agentic AI Assistant platform that empowers the entire workforce. Our platform enables employees to converse with all of their business systems through natural language to quickly find answers and automate tasks. Powered by the world's most advanced LLMs, our proprietary models, and a sophisticated Agentic AI platform, we're transforming how work gets done by allowing AI to take initiative, streamline complex workflows, and continuously learn and adapt. Moveworks is trusted by over 5.5 million employees at more than 350 of the world’s largest companies, including 10% of the Fortune 500, to automate everyday tasks and streamline business operations. Recognized on the Forbes Cloud 100 and AI 50 lists, Moveworks was also named one of Fast Company’s 2025 Most Innovative Companies and Inc’s Best in Business, in the Best in Innovation category. Moveworks was also recognized at Microsoft’s 2025 Partner of the Year and in 2024, received the AI Breakthrough Award. In December 2025, Moveworks was acquired by ServiceNow, marking a pivotal milestone in our journey to create a single front door to work for all business systems. By combining ServiceNow’s leading workflow automation with Moveworks’ Reasoning Engine and natural language capabilities, we deliver the AI platform for every person and every workflow. Built to go beyond basic summaries to deliver meaningful business impact. Together, our AI acts across enterprise systems to turn conversations into completed work. By joining our team, you’ll be at the forefront of the AI transformation, backed by the global scale of ServiceNow and the agility of a high-growth company. We are looking for world-class talent to help us extend agentic AI to every employee across every corner of the business. Come join us! ServiceNow It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today — ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone. Job Description What you get to do in this role: - Build and maintain automation for FedRAMP Continuous Monitoring (ConMon) and reporting. - Develop cloud-based solutions using AWS, Terraform, and Python to collect and track Key Security Indicators (KSIs) across tools like Tenable, Wiz, and AWS Security Hub. - Work with DevOps and Engineering to embed compliance into the CI/CD pipeline, automating checks before deployment. - Leverage AI and scripting to reduce manual effort in recurring security tasks such as user access reviews, audit preparation, evidence collection and ConMon reporting - Contribute to data-driven compliance innovations, including automated POAM/OSCAL/eMass generation and KSI feeds. - Participate in FedRAMP working groups and community initiatives. Qualifications To be successful in this role you have: - U.S. Citizenship - Secret Clearance (or eligibility to obtain) - 5+ years of experience in software development or scripting, with a focus on automation of Governance, Risk Management and Compliance (GRC) - Proficiency in Python, AWS services, Kubernetes (EKS), Linux, and Terraform - Experience with vibe-coding with Claude Code - Experience with one or more common compliance programs, Federal compliance program experience preferred - A Bachelor’s degree in Computer Science or a related field — or equivalent experience/certifications - A collaborative mindset with the ability to thrive in a fast-paced, growth-focused environment Additional Information Work Personas We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here. To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service. Equal Opportunity Employer ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements. Accommodations We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact [email protected] for assistance. Export Control Regulations For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities. From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license. - Employee Type: Regular - Region: AMS - North America and Canada - Work Persona: Flexible or Remote