Advertisement

Product Security Architect (SSDL)

| Chicago | Remote | Hybrid
Sorry, this job was removed at 3:30 p.m. (CST) on Monday, March 1, 2021
Find out who's hiring in Chicago.
See all Cybersecurity + IT jobs in Chicago
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

Company

Work matters. It’s where we spend a third of our lives. And the workplace of the future is going to be a great place. We’re dedicated to bringing that to life for people everywhere. That’s why we put people at the heart of everything we do.

People matter. Our people have a passion for learning, building, and innovating. Whether you’re an engineer, a sales professional, a finance professional, or anything in-between, our roles aim to provide each person with meaningful impact and plenty of space to grow.

Team

Product Security is Shifting Everywhere and holistically improving the maturity of the security program. The Secure Software Development Lifecycle (SSDL) team helps the organization measure and improve security activities. The team leads product threat modeling, measures and recommends BSIMM behaviors, and manages a highly visible security champions program.

Role

As a Product Security Architect on the ServiceNow SSDL team, you will be working on strategic and technical solutions to improve the maturity of the security program. You will be responsible for measuring BSIMM behaviors across multiple business units. You will interact with internal stakeholders, development teams, and security champions to identify areas for improvement.

You will be threat modeling products and services to identify risk and participate in architectural reviews of products in development.

A key part of this position is to ensure the continued success of a large and growing security champions program. You will develop automated processes of continuously measuring training needs and objectives. As a Product Security Engineer, you will help security champions be successful. 

What you get to do in this role:

  • Work on a wide range of technologies
  • Integrate and aggregate data from different systems into consolidated dashboards
  • Work on architectural and technical challenges
  • Participate in threat modeling activities
  • Mentor and collaborate with development teams to adopt secure coding practices
  • Work on strategic and highly visible BSIMM activities across the organization
  • Be an advocate for security and participate in a security champions program
  • Create, measure, and refine metrics used to measure program success

In order to be successful in this role, we need someone who has:

  • 10+ years of overall product security experience is required
  • 4+ years of experience in threat modeling and threat modeling tools is required
  • In-depth knowledge of common web application vulnerabilities (OWASP Top Ten) is required
  • Proficiency in at least one language - Python, Java, or JavaScript is required
  • Knowledge of static, dynamic, and component analysis security tools is required
  • Knowledge of the Software Development Lifecycle (SDLC) is required
  • Knowledge of OWASP ASVS, SCVS, and related verification standards is required
  • Knowledge of BSIMM, OWASP SAMM, or similar maturity models is required
  • Ability to communicate technical concepts to both non-technical business users as well as technical stakeholders is required
  • A passion for security is required

 

 

ServiceNow is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, age, disability, gender identity, or veteran status. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at [email protected] for assistance.

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
    • JavaLanguages
    • JavascriptLanguages
    • ReactLibraries
    • Node.jsFrameworks
    • MariaDBDatabases
    • MongoDBDatabases
    • MySQLDatabases
    • PostgreSQLDatabases

Location

176 N Racine Ave, Chicago, IL 60607

An Insider's view of ServiceNow

What’s the vibe like in the office?

The culture at this company is to take people's uniqueness, their superpowers — who they are at their core — and figure out how to raise them up for their benefit and the company's benefit.

Christine

Vice President of AMS Solution Consulting

What does your typical day look like?

If I could clarify one thing about being an engineer, we're a lot more collaborative than people think. Engineers can be seen as always sitting by themselves in front of a computer in a dark room and code just streaming down it. However, we work closely with project managers and designers to create the best product for customers.

Viviana

Senior Machine Learning Engineer

How does the company support your career growth?

My experience with Launchpad was humbling and eye-opening. I connected with many other early career individuals and discussed imposter syndrome. Being able to voice that and not feel alone in that feeling, I was like, "Wow. I don't have to know everything." There's still room for me to grow, and there's grace there.

Alexander

Diversity and Inclusion Analyst

How do your team's ideas influence the company's direction?

In this expanding hybrid world, people conduct millions of transactions on a regular basis, creating more data and processes to manage. So, continuing to offer new solutions, while scaling to the expectations of the modern world, is a challenge we are excited to take on. We are driving new levels of productivity, automation, and innovation.

Pat

Chief Technology Officer

What does career growth look like on your team?

Since joining ServiceNow, I've built out my leadership team, and 60% are women. My goal for my team is to create opportunities and a platform to showcase the incredible impact that they're having on the business, whether that's having them lead a critical initiative with cross-functional visibility or present during a C-suite meeting.

Vanessa

President, ServiceNow.org

What are ServiceNow Perks + Benefits

ServiceNow Benefits Overview

We make work better for people—including our own. From work environments that help us do our best work, to benefits and a culture that encourage employees to stay healthy, happy, engaged, and growing, we keep our people at the center of everything we do.

Culture
Volunteer in local community
Open door policy
Open office floor plan
Flexible work schedule
Remote work program
Diversity
Documented equal pay policy
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity manifesto
Mean gender pay gap below 10%
Diversity employee resource groups
Hiring practices that promote diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Wellness programs
Financial & Retirement
401(K)
401(K) matching
Company equity
Employee stock purchase plan
Performance bonus
Charitable contribution matching
Child Care & Parental Leave Benefits
Childcare benefits
Generous parental leave
Family medical leave
Adoption Assistance
Vacation & Time Off Benefits
Unlimited vacation policy
Generous PTO
Paid volunteer time
Paid holidays
Paid sick days
Office Perks
Commuter benefits
Company-sponsored outings
Free snacks and drinks
Company-sponsored happy hours
Onsite office parking
Onsite gym
Professional Development Benefits
Tuition reimbursement
Lunch and learns
Promote from within
Mentorship program
Online course subscriptions available

More Jobs at ServiceNow

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about ServiceNowFind similar jobs like this