ServiceNow SecOps Architect

Job Description :: Remote with 2 weeks travel to Stamford, CT quarterly

Must Have Technical/Functional Skills

1. 12+ years of hands-on development experience in ServiceNow platform.

2. 5+ years of experience specifically in Security Incident Response (SIR) and Vulnerability Response (VR) implementation.

3. Design, configure and customize ServiceNow SIR & VR module

4. Design and develop workflows, business rules, client scripts, and integrations supporting the SIR & VR lifecycle.

5. Integrate VR with external vulnerability scanners and CMDB (Configuration Management Database) to automate import and correlation of vulnerability data.

6. Configure MID Servers, data sources, and API connections for vulnerability data ingestion.

7. Develop automation for vulnerability assignment, remediation tracking, and exception management.

8. Create custom dashboards, reports, and Performance Analytics indicators for vulnerability KPIs and trends.

9. Strong understanding of SOC operations & Incident response frameworks (NIST, SANS)

10. Experience working with SIEM, SOAR, EDR, and vulnerability tools.

11. Strong understanding of ServiceNow CMDB, Discovery, and ITSM processes.

12. Experience integrating with vulnerability scanners (Qualys, Tenable, Rapid7, Prisma Cloud, etc.).

13. Knowledge of JavaScript, Glide API, Flow Designer, and REST/SOAP integrations.

14. Work with business stakeholders, technical stakeholders, onsite and offshore team to own the delivery of work.