Application Security Researcher

| West Suburbs

This position reports to:  Sr. Manager, Product Security

ServiceNow is changing the way people work. With a service-orientation toward the activities, tasks and processes that make up day-to-day work life, we help the modern enterprise operate faster and be more scalable than ever before. 

 

We’re disruptive.  We work hard but try not to take ourselves too seriously.  We are highly adaptable and constantly evolving.  We are passionate about our product, and we live for our customers.  We have high expectations and a career at ServiceNow means challenging yourself to always be better. 

 

What you get to do in this role:

As an Application Security Researcher, you will be a member of the Product Security Team, helping managed the ServiceNow Product Secure Development lifecycle. You will work with internal development teams to review source code and perform dynamic analysis of the ServiceNow platform. In this role you will be responsible for identifying new platform vulnerabilities, managing vulnerability detection processes, coordinating vendor testing efforts and developing automations to assist in vulnerability management. A key part of this position is understanding and documenting common web application vulnerabilities in addition to vulnerabilities specific to the Service Now platform.

 

In order to be successful in this role, we need someone who has:

  • An analytical mind for problem solving, abstract thought, and offensive security tactics.
  • Strong interpersonal skills (written and oral communication)
  • Operating System Security knowledge including Linux/Unix/Darwin and Windows
  • Direct experience coding in one or more of the following languages:
    • JavaScript including: Redux/Redax, jQuery, Angular
    • Java
    • Python
    • ServiceNow’s Glide API
  • High level of language reading comprehension for Java and C++
  • Experience with build and dependency management software
  • Experience working with data science and operational analytics tools is a plus
  • Experiencing performing source code reviews for Security issues
  • Experience performing binary analysis, reverse engineering and exploit development
  • Advanced knowledge and experience in Pentesting:
    • Custom web applications
    • Complex cloud environments
    • Web services (REST & SOAP)
  • In-depth experience with exploiting OWASP Top 10 application vulnerabilities, such as deserialization and injection attacks.
  • Experience with dynamic web application scanners, software composition analysis and static analysis tools
  • Experience with mobile malware analysis, the Android Security Model and app-to-app attacks on mobile platforms.
  • Experience performing Threat Modeling and design analysis
  • Ability to articulate complex issues to executives and customers.
  • Ability to pass a practical examination
  • 3+ years experience working in Product Security or as an Application Security Consulting
  • 2+ years experience working as a developer and writing/maintaining applications
  • Bachelor’s degree in Computer Science/Engineering or equivalent experience.

 

We provide competitive compensation, generous benefits and a professional atmosphere. This is a very collaborative and inclusive work environment where individuals strong on aptitude and attitude will have an opportunity to grow their professional careers through working with some of the most advanced technology and talented developers in the business.

 

 

ServiceNow is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, age, disability, gender identity, or veteran status. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at (408) 501-8550, or [email protected] for assistance.

 

Read Full Job Description

Technology we use

  • Engineering
  • Product
    • JavaLanguages
    • JavascriptLanguages
    • RubyLanguages
    • SqlLanguages
    • jQueryLibraries
    • ReactLibraries
    • AngularJSFrameworks
    • Maria DBDatabases
    • MySQLDatabases
    • OracleDatabases
    • Google AnalyticsAnalytics
    • PiwikAnalytics
    • Adobe AnalyticsAnalytics
    • BalsamiqDesign
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • ServiceNowManagement

Location

In addition to having neighbors such as Google and McDonald’s new global HQ, the West Loop is home to Chicago’s “Restaurant Row."

An Insider's view of ServiceNow

What’s the vibe like in the office?

You make decisions every day that help people. My work makes a big difference, and that’s satisfying.

Medha

Senior application developer

What projects are you most excited about?

I wanted to work at a growing company. We're focused, customer-centric, and you can't beat the platform.

Olum

Project manager

What are some things you learned at the company?

Our purpose is empowering. The company's putting a lot into the culture, the employees - they're investing in us.

Marina

Creative director

What is your vision for the company?

Amazing products that create great employee and customer experiences and make work, work better, is our passion.

CJ

Chief product officer

What is your vision for the company?

Taking a long-range view, we've got the spirit of a start-up and the resources to deliver with high quality.

Preetam

Software engineer

What are ServiceNow Perks + Benefits

ServiceNow Benefits Overview

At ServiceNow, we believe that a life well-worked is critical to a life well-lived. And we believe in the power of the individual to achieve amazing things.

Our employees are united in the desire to be part of a company that has a long-lasting, positive, global impact. They get their voices heard and have the satisfaction of seeing their hard work brought to life.

Come build something awesome. We’ve got all the benefits you’d expect, and all the opportunities you want.

Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Onsite Gym
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Starting in 2019
Company Equity
Employee Stock Purchase Plan
Purchase company stock at a 15% discount semi-annually
Performance Bonus
Child Care & Parental Leave Benefits
Generous Parental Leave
Starting in 2019 - 20 weeks for birthing parent, 12 weeks for non-birthing parent
Vacation & Time Off Benefits
Unlimited Vacation Policy
Generous PTO
Paid Volunteer Time
Starting in 2019 - 20 hours a year starting in 2019
Paid Holidays
Paid Sick Days
Perks & Discounts
Beer on Tap
With an in house craft beer geek procuring
Casual Dress
Commuter Benefits
Pre-tax contribution plan for commuter expenses - transit and parking
Company Outings
Site social activities periodically
Free Daily Meals
Free breakfast offered daily
Game Room
Shuffle board, pool table, table games and more!
Stocked Kitchen
Some Meals Provided
Happy Hours
Every Thursday!
Pet Friendly
Dog and cat friendly!
Professional Development Benefits
Job Training & Conferences
LinkedIn Learning access, numerous internal training programs, conference attendance options
Tuition Reimbursement
Up to $5,250 reimbursed annually for qualified expenses
More Jobs at ServiceNow23 open jobs
All Jobs
Finance
Dev + Engineer
Marketing
Operations
Product
Project Mgmt
Sales