• Lead and execute the IT SOX program, including annual scoping, risk assessments, control design, testing strategy, and deficiency remediation • Own and continuously improve the IT General Controls (ITGC) framework (Access, Change Management, Operations, SDLC) ensuring alignment with SOX and COSO standards • Serve as the primary liaison to Internal and External Audit, driving efficient audit execution and high-quality outcomes • Partner closely with Finance and Internal Audit to co-develop control narratives, risk assessments, and audit committee materials • Drive the evolution of the Enterprise Risk Management (ERM) program for IT and Cybersecurity risks, including facilitating cross-functional risk workshops and maintaining the enterprise risk register • Translate technical risks into business-relevant insights and provide clear reporting to executive stakeholders, including the CIO and Audit Committee • Lead risk lifecycle activities including risk identification, assessment, mitigation planning, and ongoing monitoring • Establish and track key risk indicators (KRIs) and key performance indicators (KPIs) to measure program effectiveness and inform decision-making • Author and maintain IT and cybersecurity policies, standards, and procedures to ensure compliance with regulatory and industry frameworks • Evaluate and integrate GRC tools, automation, and analytics to enhance control monitoring and reporting capabilities • Review and assess third-party risk through SOC1/SOC2 and other service provider assurance reports • Lead and develop a small team (or provide functional leadership), fostering growth, accountability, and high performance • Drive cross-functional initiatives and special projects that strengthen governance, risk posture, and operational resilience

• Monitor, assess, and manage security risks related to open-source software dependencies, CVEs, and third-party components • Triage and validate vulnerabilities across applications, containers, infrastructure, and dependencies — prioritizing by exploitability, exposure, and business impact • Coordinate patch management initiatives and support automated patch deployment workflows with Release Engineering and DevOps teams • Support and expand the Security Champion program, partnering with developers to improve secure coding awareness and adoption • Integrate security controls into CI/CD pipelines and automate vulnerability scanning, dependency analysis, and security reporting • Develop playbooks, documentation, and educational materials that promote self-service security within engineering teams • Contribute to threat modeling, secure architecture discussions, and continuous improvement of secure SDLC processes

• Define and enforce network security architecture standards • Provide technical leadership and mentorship to security and network engineering teams • Lead network security assessments, including threat modeling and intrusion detection • Develop and deploy advanced security automation and tooling • Collaborate with network engineers to integrate security controls • Participate in incident response efforts for network security incidents • Drive the security review process for network infrastructure changes • Promote security best practices through documentation and collaboration

Role Description The Solution Sales Executive will drive market success for ServiceNow’s Security and Identity solutions, leveraging our leading Service Management platform, with a strong focus on delivering results above plan. This role reports to the Director of Security and Identity Solutions and is responsible for developing and closing complex enterprise software solutions, supporting customers in their digital transformation journey, and partnering with internal teams to deliver clear business value. A career-defining opportunity to help shape ServiceNow’s Security go-to-market strategy from the ground up—well suited for sellers energized by building new markets and unlocking whitespace opportunities. What You Get to Do in This Role - Develop and execute a comprehensive territory plan to generate a robust pipeline of new and expansion opportunities within your assigned region. - Proactively build your own opportunities, leveraging existing relationships, and identifying new prospects aligned with our ideal customer profile. - Demonstrate exceptional discovery and qualification skills to accurately identify customer pain points and opportunities. - Apply deep market expertise in core security focus areas (Identity, SecOps, Data Security, Cloud Security, Application Security) to educate prospective customers on the platform’s business impact. - Collaborate closely with Account Executives and Solution Consultants to develop compelling, tailored solutions that deliver clear business value. - Support territory strategy and planning to improve vertical understanding, account use case targeting, and execution. - Establish, develop, and maintain positive customer and partner relationships to drive both new business and expansion opportunities. - Integrate partners, channels, and alliances into the sales process to increase deal velocity and size. - Present to senior executives both in the field and virtually, supporting marketing events, executive briefings, conferences, and trade shows. - Coach, share best practices, and enable internal sales teams with foundational specialty solution area knowledge. Qualifications - 5+ years of proven success in direct field sales, focusing on acquiring new enterprise clients in Security and Identity domains. - Demonstrated history of delivering results above plan, with consistent quota attainment and a record of driving sustained business growth. - Recent success closing significant sized deals in Identity & Access Management (IGA/PAM), SecOps, Data Security, Cloud Security, or Application Security. - Broad security domain expertise, with experience selling across identity, data security, cloud security, sec ops, or compliance. - Strong executive presence and polish, with excellent listening and presentation skills. - Ability to adapt to high-growth, fast-changing environments. - Demonstrated success in growth-phase environments, with a genuine passion for building from the ground up—energized by shaping what’s next and collaborating on playbooks that enable the team to succeed. - Genuinely curious and proactive in adopting AI and emerging technologies; able to model and assist the team on using new tools to enhance customer engagements, decision making, problem solving, and deal velocity. - Experience with Identity & Access Management (IAM), Identity Governance & Administration (IGA), or Security Operations solutions with a background in enterprise SaaS or platform-based security solutions. - Exceptional track record as an Account Executive or quota-carrying sales role in enterprise software. - Willingness to travel as required (typically 25–50%). Requirements - Exceed FY26 revenue target. - Build and maintain a healthy, well-qualified pipeline that provides strong coverage in support of achieving plan. - Close strategic, large-scale deals that demonstrate platform value. - Earn credibility with Sales leadership and customer security stakeholders. - Drive measurable improvement in pipeline volume, deal size, and conversion rates. Benefits - Play a pivotal role in shaping the identity and security posture of organizations worldwide. - High performers have a clear path to senior IC roles or sales leadership as the team scales. - This is a dynamic, growth-stage team that values ownership, initiative, passion, and adaptability. - A high-performing, sales-driven culture that values accountability, collaboration, and continuous skill development. - Work hands-on with cutting-edge technologies and contribute to innovative solutions that address the industry’s most critical security challenges. - Base pay of $126,350 - $208,500, plus equity (when applicable), variable/incentive compensation and benefits. - Health plans, including flexible spending accounts, a 401(k) Plan with company match, ESPP, matching donations, a flexible time away plan and family leave programs.