Senior Staff Product Security Engineer, ServiceNow

Secure Software Development Lifecycle

Salary not provided
AWS
Kubernetes
GCP
JavaScript
Python
Java
Azure
Golang
Expert level
Remote in Canada, US
ServiceNow

Cloud-based digital workflows for enterprises

Be an early applicant

ServiceNow

Cloud-based digital workflows for enterprises

1001+ employees

B2BEnterpriseInternal toolsProductivitySaaSCloud Computing

Be an early applicant

Salary not provided
AWS
Kubernetes
GCP
JavaScript
Python
Java
Azure
Golang
Expert level
Remote in Canada, US

1001+ employees

B2BEnterpriseInternal toolsProductivitySaaSCloud Computing

Company mission

To transform IT to revolutionise the enterprise.

Role

Who you are

  • 10+ years of experience in software security (AppSec)
  • 6+ years of experience in threat modeling software applications and services
  • Expert-level knowledge in threat modeling methodologies such as STRIDE or PASTA and their applied use in fast-moving, iterative development lifecycles
  • Expert-level knowledge of common web application vulnerabilities (OWASP Top 10)
  • Developer-level proficiency in one or more languages - Python, Java, JavaScript, and Golang preferred
  • Working knowledge of Machine Learning and taxonomies such as BIML that categorize known attacks on machine learning models
  • In-depth knowledge of software design patterns and their security considerations
  • Expertise in authentication and authorization standards including OAuth, OIDC, SAML, JWT, and PASETO
  • Knowledge of symmetric and asymmetric cryptography, digital signatures, PKI, TLS, and cryptographic hash functions
  • Knowledge of cloud native technologies including containers, Kubernetes, and services provided by AWS, GCP, and Azure
  • Knowledge of static analysis (SAST), dynamic analysis (DAST), and software composition analysis (SCA) security tools
  • Knowledge of OWASP ASVS, SCVS, and related verification standards
  • Ability to work collaboratively in a highly distributed team
  • Ability to communicate technical concepts to business stakeholders
  • A passion for security

What the job involves

  • As a Senior Staff Product Security Engineer on the ServiceNow SSDL team, you will collaborate with developers and software architects on highly technical solutions and help the organization build secure and resilient software
  • You will be threat modeling software products and services to identify potential risk and participate in architectural reviews of products in development
  • A key part of this position is to ensure the continued success of a large and growing security champions program
  • You will help mentor security champions and assist them in secure software design
  • As a Senior Staff Product Security Engineer, you will help security champions be successful
  • Work on a wide range of technologies
  • Work on complex architectural and technical challenges
  • Participate in threat modeling activities
  • Mentor and collaborate with development teams to adopt secure coding practices
  • Work on strategic and highly visible security activities across the organization
  • Be an advocate for security and participate in a security champions program

Our take

ServiceNow provides cloud-based solutions that define, structure, manage, and automate services for enterprise operations, transforming old, manual ways of working into modern digital workflows. The company was founded in 2004 with a vision to build a cloud-based platform that would enable regular people to route work effectively through the enterprise.

Much as Salesforce enables a company to manage its external clients by keeping a record of all contacts and interactions, ServiceNow promises an internal system to meet the needs of employees. It has succeeded in claiming half the market, setting itself apart from legacy IT service-management software players like BMC Software, Hewlett Packard Enterprise, Cherwell Software and CA Technologies.

The company's success comes from two product traits: simplicity and customisability. ServiceNow's IT tools don't require the IT department to set them up. Once running, they offer a single collection centre for requests, data points and checklists, all of which can in turn be analysed by algorithms to predict needs, flag concerns and measure efficiency.

The company has more than 7500 customers, including 80% of the Fortune 500 list of the United States' largest corporations. ServiceNow now looks to increase its revenue threefold in upcoming years and has entered into a 5-year partnership plan with Visa, beginning with the launch of a Visa-integrated dispute resolution solution for issuers. The company is prioritising organic growth over mergers and acquisitions, with a target revenue of $15 billion, something which its Visa partnership will no doubt aid in achieving.

Freddie headshot

Freddie

Company Specialist at Welcome to the Jungle

Insights

Top investors

Some candidates hear
back within 2 weeks

16% employee growth in 12 months

Company

Funding (last 2 of 6 rounds)

Mar 2012

$11m

GROWTH EQUITY VC

Feb 2012

$17.9m

GROWTH EQUITY VC

Total funding: $83.8m

Company benefits

  • Commuter benefits
  • Annual learning stipends
  • Work from home opportunities
  • Generous family leave
  • Matched donations
  • Flexible PTO
  • 401(k) matching
  • Paid volunteer time

Company values

  • Win as a team
  • Innovate and execute
  • Stay hungry and humble
  • Deliver customer success

Company HQ

Santa Clara, CA

Leadership

Fred Luddy

(Chairman Of The Board)

Previously Software Developer at Amdahl Corporation for 4 years and CTO at Peregrine Systems for 13 years.

Diversity, Equity & Inclusion at ServiceNow

  • Enabling and empowering our people: We use rich learning programmes to equip employees with inclusive mindsets and skills, and we build equitable processes across our entire talent ecosystem
  • Engaging our communities and allies: We make space to listen, share openly and engage in respectful dialogue. We extend into our communities through civic engagement, digital literacy and non‑profit support
  • Building diverse talent and hiring inclusively: We grow stronger together by developing and advancing individual talent and by improving representation at all levels.

Share this job

View 109 more jobs at ServiceNow