ServiceNow Security Administrator with SAP BTP IAS

Job Title: IT Security Analyst T5 – ServiceNow & SAP BTP IAS

Location: Herndon, VA (Remote or Onsite Option)

Travel: 0–10%

• Within 30-mile radius: 3 days/week onsite
• Within 60-mile radius: 1 day/week onsite
• May increase based on business needs

Work Arrangement: Remote / Hybrid

Employment Type: Contract (Potential conversion to full-time after 1 year)

Must be a U.S. Citizen only (No dual citizenship permitted)

Position Overview

We are seeking a Senior ServiceNow Security Administrator with SAP BTP IAS expertise to support high-security environments. This role combines ServiceNow platform administration with Identity & Access Management (IAM) ownership, focusing on secure integration with SAP BTP Identity Authentication Service (IAS) and Identity Provisioning Service (IPS).

Key Responsibilities

ServiceNow Platform Administration

• Administer and maintain ServiceNow instances (cloud & on-prem)
• Manage Update Sets, configuration migrations, and instance cloning
• Perform system upgrades, patching, and environment synchronization
• Administer users, roles, groups, and permissions aligned with security policies
• Support secure API onboarding:
• Create/manage integration users
• Assign secure roles
• Maintain and rotate credentials/secrets
• Monitor system performance, stability, and compliance
• Maintain CMDB data integrity (as applicable)
• Provide Level 2/3 support for platform and access issues
• Document processes, workflows, and configurations
• Collaborate with developers and architects on complex issues
• Participate in governance, audit, and compliance activities
• Provide user training and platform guidance

Identity & Access Management (Primary Ownership)

• Own ServiceNow integration with SAP BTP IAS/IPS
• Design and manage user provisioning/deprovisioning workflows
• Administer full user lifecycle (onboarding → offboarding)
• Enforce RBAC and least-privilege principles
• Configure SSO and identity federation (SAML, OAuth, OIDC)
• Conduct access reviews, certifications, and audits (IL5 compliance)
• Identify and remediate security gaps and access risks
• Maintain security documentation (access matrices, architecture, compliance evidence)
• Implement automated access controls and monitoring
• Act as SME for ServiceNow security & IAS integrations
• Support incident response related to IAM

Required Qualifications

ServiceNow Administration

• ServiceNow Certified System Administrator (required)
• 3–7 years of ServiceNow administration experience
• Experience with self-hosted ServiceNow environments (required)
• Strong knowledge of:
• User/role/group management
• Security best practices
• Update Sets and instance management
• Familiarity with integrations, MID Servers, and secure connectivity
• Experience supporting API onboarding (setup level)
• Working knowledge of ITIL processes

Identity & Access Management

• Hands-on experience with SAP BTP IAS and IPS (required)
• Experience in IL4 / IL5 or similar high-security environments
• 3+ years in:
• Identity federation & SSO
• Authentication protocols (SAML, OAuth, OIDC)
• Strong understanding of:
• RBAC
• User lifecycle management
• Segregation of Duties (SoD)
• Experience with enterprise IAM platforms
• Knowledge of compliance frameworks:
• NIST 800-53
• FedRAMP
• DoD IL5

Preferred Qualifications

• ITIL Foundation Certification
• Security+ or equivalent
• SAP BTP Certification
• ServiceNow advanced certifications (e.g., Security Operations)
• Experience with CMDB administration
• Experience in Federal/DoD environments

Work Experience

• 3–7 years as a ServiceNow Administrator
• 3+ years with SAP BTP IAS/IPS
• Experience in high-security (FedRAMP/IL5) environments
• Strong experience in:
• Access governance
• Role design
• Identity integration
• Proven ability to support audits and compliance activities
• Strong communication and cross-team collaboration skills

We are an Equal Opportunity Employer and make employment decisions without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, age, disability, veteran status, or any other protected class under applicable law.