Job Summary:The Senior ServiceNow SecOps Engineer is responsible for leading the design, implementation, and maintenance of the Security Operations (SecOps) module within the ServiceNow platform. This role requires a deep understanding of security operations and ServiceNow capabilities to enhance and optimize security processes, incident response, and threat intelligence.
Key Responsibilities:Design and Implementation:Lead the design and implementation of ServiceNow SecOps modules, including Security Incident Response (SIR), Vulnerability Response (VR), Threat Intelligence, and Security Operations Center (SOC) workflows.Customize and configure the ServiceNow platform to integrate with existing security tools and systems.Process Optimization:Develop and enhance security incident response processes, ensuring they align with industry best practices.Implement automation scripts to streamline and optimize security operations.Collaboration:Work closely with security teams to understand their requirements and translate them into technical solutions within ServiceNow.Collaborate with IT and development teams to ensure seamless integration and deployment of SecOps solutions.Implementation ExperienceHands on SecOps Implementation project experience with at least 4 end to end implementations.Maintenance and Support:Provide ongoing support and maintenance for the ServiceNow SecOps modules, including troubleshooting and resolving issues.Perform regular system audits and security assessments to ensure the integrity and security of the platform.Training and Documentation:Develop and deliver training sessions for security team members on the use of ServiceNow SecOps.Create and maintain detailed documentation for configurations, processes, and workflows.
Required Qualifications:Experience:8+ years of experience in IT security operations, with at least 5 years of hands-on experience with ServiceNow SecOps.Proven track record of successfully implementing and managing ServiceNow SecOps modules. Technical Skills:Expertise in ServiceNow platform, including customization, scripting (JavaScript, Glide), and integration capabilities.Strong understanding of security frameworks (NIST, ISO 27001, MITRE ATT&CK) and incident response methodologies.Experience with security tools such as SIEM, EDR, and vulnerability management systems.
Certifications:ServiceNow Certified System Administrator (CSA) required.ServiceNow Certified Application Developer (CAD)ServiceNow Certified Implementation Specialist - Security Incident ResponseServiceNow Certified Implementation Specialist - Vulnerability ResponseRelevant security certifications (CISSP, CISM, CEH) are a plus. But optional.
Soft Skills:Excellent problem-solving and analytical skills.Strong communication and interpersonal skills.Ability to work independently and as part of a team.
Advanced Knowledge: Familiarity with cloud security and DevSecOps practices. Experience with agile methodologies and project management.