Product Security Engineer

Summary

Join ServiceNow's Product Security team and play a key role in enhancing the security of our platform and applications. You will perform application security testing, identify and remediate vulnerabilities, audit source code, and collaborate with engineering teams. This position requires experience in ServiceNow application development and administration, advanced scripting proficiency, and a passion for secure development. You will also design new test cases, conduct variant hunting, and stay updated on the latest security trends. The ideal candidate will have experience integrating AI into work processes and be comfortable working with various ServiceNow tools and technologies.

Requirements

• Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving. This may include using AI-powered tools, automating workflows, analyzing AI-driven insights, or exploring AI’s potential impact on the function or industry
• A passion for Security and secure application development
• 2+ years of experience in ServiceNow Application Development and Administration
• Designed and developed ServiceNow applications from scratch
• Advanced proficiency in ServiceNow Scripting and Configurations
• Comfortable to code in at least one language: JavaScript, Java, or Python
• Knowledge of Securing ServiceNow Applications such as ACLs, APIs, Scripting and Instance Configuration
• Ability to review and debug ServiceNow Code & Configurations
• Hands-on experience with Flow Designer, Virtual Agent, Service Portal, Domain Separation, ServiceNow Mobile Application, and Integrating ServiceNow with external systems using REST, SOAP, and custom APIs, UI Builder, App Engine Studio, Now Experience Framework
• Familiarity with ServiceNow AI Agents and their implementation

Responsibilities

• Perform application security testing on ServiceNow products
• Identify, communicate, and recommend remediation of Security Vulnerabilities
• Audit source code of the ServiceNow Applications
• Help lead security discussions with the other engineering teams
• Work with the development teams to help create secure products
• Identify and design new test cases for security testing
• Conduct variant hunting to address edge cases and enhance test coverage
• Implement identified test scenarios across various security tools and adapt them into new methodologies to improve system robustness
• Stay updated with the latest security trends and incorporate them into application security strategies