ServiceNow logo
ServiceNow

ServiceNow provides cloud-based services that automate enterprise information technology operations. As an employer, ServiceNow offers a challenging, collaborat

Senior Info Sec Operations Engineer

Security OperationsSecurity OperationsFull TimeRemoteSeniorTeam 29,000Since 2004Company Site

Location

Northern America

Posted

1 day ago

Salary

$161.3K - $274.2K / year

Seniority

Senior

No structured requirement data.

Job Description

Senior Info Sec Operations Engineer

ServiceNow

Role Description What you get to do in this role: - Experience with Okta admin console and REST API (user/group lifecycle, session management, directory integration) - Production experience building Python automation scripts (testing, error handling, logging, observability) - Hands-on experience with SailPoint IIQ connectors (configuration, troubleshooting, custom rule development) - Familiarity with ServiceNow ITSM, workflow automation, and integrations (MCP servers, Flow Designer) - Experience with AI/LLM concepts, prompt engineering, or API-based automation (building chatbots, autonomous agents, or similar) - Exposure to Splunk, Grafana, or similar observability platforms - DevOps/GitOps experience, CI/CD pipeline familiarity, or infrastructure-as-code exposure - CISSP, CISM, or equivalent IAM certification - Background in FedRAMP-compliant environments or similar compliance frameworks - Solid experience in Agile development processes and DevOps culture - Learning mindset and keen interest to build knowledge of User Access Management and AI-native automation Qualifications - Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving. - 4+ years of hands-on IAM experience, including SailPoint IIQ 8.x+ operations in enterprise environments - Deep operational experience with two or more of: Active Directory, Entra ID, LDAP, Okta, PAM (CyberArk/PBUL) - Intermediate-to-advanced proficiency in at least one programming/scripting language (Python preferred, but PowerShell, Bash, or JavaScript acceptable) - Proven experience with RESTful API design and consumption (Okta SDK, SailPoint SDK, or equivalent) - Working knowledge of identity governance concepts: role-based access control (RBAC), access requests, certification workflows - SQL fluency for data analysis and troubleshooting - Familiarity with ITIL practices (incident, problem, change, service request management) - Experience troubleshooting complex account provisioning/deprovisioning workflows in multi-directory environments - Strong documentation and communication skills; ability to translate technical details into executive-ready briefs - Demonstrated ability to work effectively in distributed, asynchronous environments (across timezones) - Comfort operating in FedRAMP-compliant environments with audit trail and compliance considerations - Proven problem-solving and analytical skills with excellent written and verbal communication abilities - Ability to build strong stakeholder relationships across GRC, Legal, Security, and Engineering teams Requirements - Base pay of $161,300 - $274,200, plus equity (when applicable), variable/incentive compensation and benefits. - Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure. - Health plans, including flexible spending accounts, a 401(k) Plan with company match, ESPP, matching donations, a flexible time away plan and family leave programs. Benefits - Flexible and remote work options. Company Description It all started when engineer Fred Luddy wrote code that automated a tedious task for his coworker, Phyllis. She cried tears of joy. That moment inspired Fred to build a company that could do that for everyone—freeing people from busywork so they could focus on meaningful work. Today, ServiceNow is the AI control tower for business reinvention. Our ServiceNow AI platform brings together any AI, any data, and any workflow— helping 85% of the Fortune 500® work smarter, faster, and better. We're building an AI-native culture where technology and talent are unstoppable together. And we're just getting started.

Related Categories

Related Job Pages

More Security Operations Jobs

Director, Security, Risk & Compliance Operations

EDC

Edged is a fast-growing provider of sustainable data centers and energy infrastructure. The company builds and operates a global network of ultra-efficient, AI-ready data centers with waterless cooling for colocation, hyperscale, and build-to-suit customers. The highly differentiated infrastructure platform transforms data center growth into a catalyst for sustainable development. Backed by a deep proprietary technology stack including renewable microgrid systems, ultra-clean generators, and waste-to-fuel solutions. Designed for rapid deployment with more than a dozen new data centers operating or under construction across Europe and North America. A joint venture between one of the largest private multinational corporations and an affiliate of Endeavour. Endeavour is a purpose-driven organization helping innovators develop and launch breakthrough solutions for global challenges.

Full TimeRemoteTeam 51-200

Role Description Edged has an exciting opportunity for someone passionate about sustainability and eager to be part of an innovative company that’s on a journey to transform the world’s data center infrastructure. We are seeking a results-oriented senior leader with a strong track record of operational excellence to act as the Director, Security, Risk & Compliance Operations. This leader will report directly to the VP of Operations, based in the US and be responsible for the Security programs, compliance, and Business Continuity for all Edged Energy facilities in North America. In this role, the candidate will need to drive enterprise strategy into operational execution by defining standards, driving accountability, risk avoidance, and operational readiness. Key Responsibilities include but are not limited to: - Leadership Function - Serve as strategic partner to the Operational function by overseeing all program requirements for physical security, compliance, and business continuity. - Oversee the physical security, compliance, and business continuity team supporting Edged North America. - Set clear expectations and goals for performance and leadership behavior aligned with Edged values, department objectives, driving respect, accountability, and excellence in the department. - Develop operating models, headcount support, performance KPI’s, investment decisions, and operating procedures. - Create multi-year roadmap for the security, risk, and compliance operations across data center and corporate environments. - Define policies, procedures, standards, and operating procedures that reduce risk, drive consistency, meet customer needs, and ensure sites are audit ready. - Establish KPI scorecards metrics for the department and lead monthly and quarterly business reviews. - Oversee risk assessments for the physical security of the sites, closely collaborating with those performing similar functions with cyber security. - Drive standard for the basis of design around physical security systems, including site testing. - Support cross-functional teams such as sales, IT, and Facility operations teams by responding to requests for information related to physical security. - Physical Security Leadership - Evaluate and implement technology to use for access control, CCTV surveillance, audit trails, remote alarm monitoring & response, and directly deploy these technologies with support of the project management and site security team. - Build and execute the enterprise physical security strategy for all data center, offices, and critical infrastructure locations. - Establish and maintain physical security policies, standards, and operating procedures. - Oversee: Access control systems, CCTV and video management, Intrusion detection systems, Visitor management, Security operations and monitoring, Guard force management, Badge administration, Key and asset management. - Conduct security risk assessments for new facilities and existing sites. - Lead investigations involving physical security incidents, theft, workplace violence, unauthorized access, or security policy violations. - Develop executive reporting and security metrics. - Experience setting up and operating a Security operations center that need to work in alignment with the facility operations centers. - Compliance & Risk Management - Own the organization's compliance programs supporting: SOC 2 Type II & ISO/IEC 27001/PCI. - Coordinate annual audits, assessments, and evidence collection. - Partner with Information Security and Internal Audit to maintain audit readiness throughout the year. - Track and ensure all corrective action plans remediation activities. - Maintain security policies, procedures, and control documentation. - Perform enterprise risk assessments and recommend mitigation strategies. - Track compliance KPIs and provide regular reporting to executive leadership. - Maintain a customer and audit ready operating stance across all the data centers. - Business Continuity & Resilience - Develop, implement, and maintain the enterprise Business Continuity Management (BCM) program. - Lead Business Impact Analyses (BIA) across departments. - Develop and maintain: Business Continuity Plans (BCPs), Crisis Management Plans & Emergency Response Procedures. - Disaster Recovery coordination with IT. - Plan and facilitate tabletop exercises and operational simulations. - Coordinate incident response during major operational disruptions. - Drive continuous improvement based on lessons learned. Qualifications - MS/BS degree from a four-year university in business administration, criminal justice, information security, business administration or related fields (Masters preferred). - 8-10+ years of progressive experience in corporate security, physical security operations, data center security, critical infrastructure security or related security leadership roles. - 7+ years of leadership experience managing leaders, multi-site programs and teams in a 24/7 or critical infrastructure environment. - Experience with compliance, risk management or business continuity. - Experience in data center, cloud, critical infrastructure, telecommunications, or highly regulated environments. - Experience leading large scale contract guard force and services across multiple geographies. - Experience with product implementation consulting, training material development, product onboarding, and project and account administration. - Experience leading budget strategy, forecasting and capital investment allocation. - Experience collaborating with facility management & operational teams. - Experience working and presenting to internal and external stakeholders. - Excellent interpersonal skills. - Excellent time management and team delegation and leadership. - Excellent written and verbal communication and presentation skills. Requirements - Ability to manage multiple priorities and drive department strategy in a fast-paced environment. - Technologically savvy with a willingness to independently learn new technical skills. - Ability to effectively respond, verbally or written, to sensitive issues, complex inquiries, or complaints. - Ability to respond to questions from groups of managers, clients, customers, and the public. - Requires a high level of commitment to customer service, whether co-workers or clients. - Ability to manage cost tracking and budgeting for all security projects and operations. - Ability to analyze and solve problems involving several options with limited information. - Ability to interpret a variety of instructions furnished in written, oral, diagram or schedule form and to work independently. - Requires analytical and quantitative skills. - Proven management skills, customer service orientation, and problem-solving knowledge. - Demonstrate ability to work well under pressure with a proactive approach to unusual occurrences. - Requires good organizational skills, attention to detail and an openness to new ideas and procedures. - MSOffice applications (i.e., Outlook, Word, Excel, PowerPoint, Teams, SharePoint) in addition to Blue Beam, Autodesk and Security System applications are beneficial. - Occasional travel will be required for training and meetings. Benefits - Medical, dental, vision, life, and disability insurance. - 401(k) retirement plan. - Flexible spending and HSA accounts. - Paid holidays. - Employee assistance program. - Other company benefits. EEO Statement Edged is an equal opportunities employer. We believe in ensuring equal access to employment opportunities for all. We assess candidate qualifications and make recruiting decisions based on the experience, capabilities, and skills you share with us in your application and applicable materials. Hiring and employment decisions within Edged are not based on religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. All your information will be kept confidential according to EEO guidelines. Contact For inquiries, please reach out to: edcrecruiting@edged.us

United States + 1 moreAll locations: United States | Canada
Full TimeRemoteTeam 10,001+Since 1933H1B No Sponsor

• Responsible for planning and implementing security measures to protect computer systems, networks, and data. • Handle higher level security investigations and incidents. • Monitor network traffic for security events and perform triage analysis to identify security incidents. • Receive incidents and perform deep analysis; correlate with threat intelligence to identify the threat actor, nature of the attack and systems or data affected. • Define and execute on strategy for containment, remediation, and recovery. • Deliver cyber intelligence services and material to information technology and business leaders. • Identify new threat tactics, techniques and procedures used by cyber threat actors. • Publish actionable threat intelligence for business and technology management. • Participate in threat hunting activities to proactively search for threats in the enterprise environment. • Create and maintain use cases for recurring investigation/incident triggers in support of the 24/7 Cyber Threat Operations and Cyber Threat Management program. • Act as coordinator in the event of escalated cyber threats/incidents for Tier 1 analysts. • Assist in escalated computer security incidents and cyber investigations including computer forensics, network forensics, root cause analysis and malware analysis.

Florida
$85K - $95K / year
Sun King logo

Security Operations Center Analyst

Sun King

Powering access to brighter lives in Africa, Asia, and beyond.

Full TimeRemoteTeam 1,001-5,000Since 2009H1B No Sponsor

• Monitor, triage, and investigate security events across AWS, endpoint security platforms, Google Workspace, identity providers, and other enterprise security solutions. • Review and analyze threat intelligence feeds, Indicators of Compromise (IOCs), Indicators of Attack (IOAs), and MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs) to validate detections, improve monitoring, and enhance detection use cases. • Enrich security investigations using OSINT, domain intelligence, and threat intelligence sources to identify malicious activity and support attribution. • Correlate telemetry from endpoints, networks, cloud environments, identity platforms, SIEM, EDR, and other security tools to build comprehensive investigation context and identify threats. • Design, develop, maintain, and optimize SIEM/SOAR detection rules, playbooks, dashboards, and alerts. Onboard and validate new log sources to ensure complete and normalized visibility. • Perform proactive threat hunting and endpoint/cloud forensics to identify previously undetected threats, determine scope and root cause, and provide evidence to support incident response. • Lead end-to-end incident response activities, including triage, investigation, containment, eradication, recovery, root cause analysis (RCA), reporting, and maintenance of incident response playbooks and standard operating procedures. • Monitor and recommend security improvements across AWS services, including CloudTrail, GuardDuty, Security Hub, IAM, VPC Flow Logs, CloudWatch, and AWS Config, to detect suspicious activity and misconfigurations. • Investigate identity-related threats using authentication logs, privileged account activity, and collaboration platform audit logs. • Administer, integrate, and perform health checks for SIEM, SOAR, EDR, and related security technologies to ensure reliable security operations. • Develop and maintain security automation, internal tools, and integrations using Python, PowerShell, Bash, APIs, and webhooks to improve investigation and response efficiency. • Maintain and optimize threat intelligence repositories, IOC watchlists, enrichment workflows, and dashboards, translating intelligence into improved detections and alert tuning. • Support vulnerability management by reviewing findings, validating remediation efforts, and contributing to risk-based prioritization. • Prepare clear and concise incident reports, root cause analysis documents, threat intelligence summaries, executive updates, and SOC performance metrics. • Collaborate with Infrastructure, Cloud, IT, and Engineering teams to implement security controls, strengthen detections, and coordinate incident response activities. • Evaluate and implement AI-assisted security workflows to improve threat detection, alert triage, investigations, and incident response. • Continuously assess and enhance SOC architecture, monitoring strategy, KPIs/KRIs, automation, and overall SOC maturity in alignment with industry best practices.

India
It4us Cyber Security logo

Information Security Analyst

It4us Cyber Security

Garantindo a Cyber Segurança de nossos amigos e clientes !

Full TimeRemoteTeam 51-200Since 2010H1B No Sponsor

• Implement and configure Google SecOps environments. • Onboard log sources using BindPlane, Syslog, APIs and other integration methods. • Configure and manage collectors and log ingestion pipelines. • Integrate different technologies. • Configure parsers, normalization (UDM), enrichment and validation of collected events. • Develop and tune detection rules and use cases. • Execute acceptance and validation testing of the platform. • Produce technical implementation documentation and operational procedures. • Collaborate with client technical teams throughout all phases of the project. • Support troubleshooting, adjustments and post-deployment optimizations.

Brazil