Sr Information Security Engineer, SAAS Security

It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today — ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone.

Team:

This position reports to the Senior Manager, Security Engineering. The Enterprise Security Engineering team targets building state-of-the-art technology that will help reduce the risk surrounding the sensitive assets of the company with the least impact possible on operations, acts as guidance and facilitator to the security operations teams and helps shifting Security perception from blocker to enabler by building a relationship of trust with the other teams.

Role:

The Senior Information Security Engineer will be part of the endpoint security team and will be responsible for ensuring the integrity and security of the organization's information systems by managing and enhancing endpoint and network security measures.

What you get to do in this role:

 

• Implement and maintain advanced security measures for endpoints and networks, ensuring robust protection against unauthorized access and cyber threats.
• Develop, enforce, and monitor network access control policies to regulate who and what devices can access the organization's network.
• Conduct continuous and detailed inspection of network traffic to identify and mitigate potential security threats, anomalies, and vulnerabilities.
• Design and enforce security protocols, conduct regular security audits, and ensure compliance with industry standards and regulatory requirements.
• Implement and manage security solutions to enhance the organization's overall security posture, ensuring secure and efficient remote access and internet security.
• Monitor user activities and enforce security policies to prevent data leakage and ensure compliance with organizational security standards

To be successful in this role you have:

• Master's degree in computer science; engineering, or information technology or equivalent industry experience
• Strong practical exposure to SaaS Security controls across CASB, SSPM, DSPM, and API-based DLP solutions.
• Ability to evaluate SaaS application security posture — misconfigurations, risky permissions, external sharing, and unmanaged third-party integrations.
• Experience in identifying and controlling Shadow IT — discovery, risk scoring, business justification workflows, and application rationalization.
• Familiarity with authentication and access standards such as SAML, OAuth, SCIM, MFA, and SSO in SaaS environments.
• Skilled in interpreting complex SaaS, network, and identity logs to detect insider activity, DLP violations, and data exfiltration attempts.
• Hands-on understanding of Zero Trust principles applied to SaaS and identity-centric security enforcement.
• Knowledge of data classification and governance controls in collaboration and storage platforms like M365, Google Workspace, Box, Salesforce, etc..
• Experience integrating SaaS platforms with IAM, SIEM/SOAR, EDR/MDM, and Email Security tools for automated enforcement and response.
• Strong collaboration with Network Security, Endpoint Security, and IT Operations teams to drive remediation outcomes.
• Ability to create documentation, SOPs, runbooks, and playbooks to enhance operational maturity.
• Continuous learning mindset with awareness of emerging SaaS threats, AI-driven risks, and cloud application trends.

Work Personas

We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here. To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service.

Equal Opportunity Employer

ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements. 

Accommodations

We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact [email protected] for assistance. 

Export Control Regulations

For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities. 

From Fortune. 2025 Fortune Media IP Limited. All rights reserved. Used under license.