Principal Product Security Engineer

Company Description

It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today — ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone.

Job Description

The ServiceNow Security Organization (SSO) delivers world-class, innovative security solutions to reduce risk and protect the company and our customers. We enable our customers to migrate their most sensitive data and workloads to the cloud, accelerating our business so that we are the most trusted SaaS provider. We create an environment where our employees are proud to work and can make a positive impact.

What you get to do in this role:

• Assisting in the design, execution and reporting of Red Team campaigns at ServiceNow.
• Creating adaptable and detailed attack plans.
• Thoroughly documenting timelines of events and attack path narratives.
• Meticulously documenting findings including all necessary information required to understand business impact, and enable the defensive teams (e.g. Blue Team and product engineering) to act upon them appropriately.

Focus on strong collaboration and partnership with:

• Team peers, fostering mutual respect and team collaboration.
• ServiceNow Blue Team to enable improvements to threat detection, response, and mitigation.
• Act as a mentor to junior teammates and as a security leader within ServiceNow.
• Provide security leadership by communicating and collaborating across the organization with internal security teams, product engineering, I.T. and other teams as needed.
• Develop a broad and deep technical understanding of ServiceNow services and products

Qualifications

To be successful in this role you have:

• Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving. This may include using AI-powered tools, automating workflows, analyzing AI-driven insights, or exploring AI's potential impact on the function or industry.
• 12 to 15 or more years of experience attacking and defending corporate networks.
• Demonstrated successful track record in a Red Team position.
• Experience attacking environments with next-gen antivirus (NGAV) or endpoint detection and response (EDR) agents.
• Experience performing social engineering, physical security, and application security reviews.
• Strong understanding of operational security concepts.
• Adept in messaging highly technical security findings to product engineering and executive leadership.
• Proficient in scripting and programming languages, for example: C#, C, Java, JavaScript, Objective C, Python, Rust, Go, bash and PowerShell.
• Expert in *nix, Mac OS, and Microsoft Windows operating systems, including:
  • Experience developing covert C2 payloads.
  • Understanding of forensic footprint or IOCs left by common tactics, techniques and procedures.
• Shown industry leadership. For example:
  • Presented novel material at information security conferences.
  • Developed open source security tooling.
  • Other extra-curricular contributions to the security community.

#SecurityJobs

Additional Information

Work Personas

We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest Servic.