Principal Product Security Engineer

ServiceNow-posted 2 months ago
$212,400 - $371,700/Yr
Full-time • Senior
San Diego, CA
5,001-10,000 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The ServiceNow Security Organization (SSO) delivers world-class, innovative security solutions to reduce risk and protect the company and our customers. We enable our customers to migrate their most sensitive data and workloads to the cloud, accelerating our business so that we are the most trusted SaaS provider. We create an environment where our employees are proud to work and can make a positive impact. The Security Research / Offensive Security team delivers red-team like engagements and produces investigative reports that drive a reduction in operational security risk. As a Principal Product Security Engineer, you'll be responsible for delivering offensive security engagements against ServiceNow public facing and internal products. You’ll also be responsible for security auditing of the ServiceNow product stack and researching nuance of securing SaaS platforms. This will require an in-depth knowledge of various approaches to application auditing including secure code review, debugging, dynamic web application testing, analysis and threat modeling. You’ll work closely with product engineering teams to providing investigative reports to improve platform resiliency and ensure best-in-class security solutions.

  • Work with diverse business and technology owners
  • Participate in offensive security engagements including external adversarial emulation
  • Perform security audits to discover, communicate, and recommend remediation activities for vulnerabilities
  • Work with engineering teams on remediation
  • Create and maintain strategic relationships
  • Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving
  • A passion for security and problem solving
  • Background in software security auditing, computer security and the statistical methods
  • 15+ years of experience performing software security auditing including code review, reverse engineering, thick app analysis, and black-box web application testing or related experience and education
  • Familiarity with NIST 800-53 and similar controls frameworks
  • Developer level proficiency in Python, Java, and JavaScript, including modern client-side JavaScript frameworks
  • Experience writing static code analysis rules a plus
  • Experience with Python data science and machine learning frameworks a plus
  • Network and system security engineering skills a plus
  • Degree in computer science / engineering, informatics, mathematics/statistics, or equivalent work experience
  • Offensive Security OSWE and/or OSCP certification(s) a plus
  • 5+ years of experience with ServiceNow Platform internals
  • 3+ years of experience performing threat modeling for software products
  • Health plans, including flexible spending accounts
  • 401(k) Plan with company match
  • Employee Stock Purchase Plan (ESPP)
  • Matching donations
  • Flexible time away plan
  • Family leave programs
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Principal Engineer Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service