Staff Network Security Engineer - Federal

Company Description

At ServiceNow, our technology makes the world work for everyone, and our people make it possible. We move fast because the world can’t wait, and we innovate in ways no one else can for our customers and communities. By joining ServiceNow, you are part of an ambitious team of change makers who have a restless curiosity and a drive for ingenuity. We know that your best work happens when you live your best life and share your unique talents, so we do everything we can to make that possible. We dream big together, supporting each other to make our individual and collective dreams come true. The future is ours, and it starts with you. 

With more than 7,400+ customers, we serve approximately 80% of the Fortune 500, and we're proud to be one of FORTUNE's 100 Best Companies to Work For® and World's Most Admired Companies® 2022.

Learn more on Life at Now blog and hear from our employees about their experiences working at ServiceNow.

Unsure if you meet all the qualifications of a job description but are deeply excited about the role? We still encourage you to apply! At ServiceNow, we are committed to creating an inclusive environment where all voices are heard, valued, and respected. We welcome all candidates, including individuals from non-traditional, varied backgrounds, that might not come from a typical path connected to this role. We believe skills and experience are transferrable, and the desire to dream big makes for great candidates.

Job Description

As a Staff Network Security Engineer on the Cloud Networking team, you will be responsible for managing and operating the global production network infrastructure as it pertains to security.

The Staff Network Security Engineer will be an integral part of the Cloud Network Services (CNS) Security team and closely partner with other Security and Cloud Network Services (CNS) teams. The role will require a deep technical understanding of network security and the ability to understand ServiceNow Cloud architecture and implementations to support implemented network security as well as improve it.  In addition to supporting the production Cloud network, job duties include vulnerability remediation and troubleshooting, including reviewing scan results, calculating risk analyses to identify true risk within the network environment, then influence or implement remediation and provide reporting where required.

What you get to do in this role:

• Propose and implement firewall design and configurations as well as DDOS attack protection tools
• Monitor, track, respond to, and investigate reported issues, then work with the responsible parties in CNS and other teams to drive timely results and remediation
• Partner with stakeholders to drive down vulnerabilities and develop mitigation strategies
• Create and maintain internal-use and customer VPNs
• Participate in network-related audits by both customers and internal compliance auditors
• Prepare, review, and execute planned changes to CNS Security environment
• Participate in rotating “on-call” schedule with other members of the team
• Partner with other CNS teams to plan and execute software code upgrades and device maintenance
• Where needed, report information upstream in accordance with security requirements

Please Note:  This position will include supporting our US Federal customers.
This position requires passing a ServiceNow background screening, USFedPASS (US Federal Personnel Authorization Screening Standards). This includes a credit check, criminal/misdemeanor check and taking a drug test.  Any employment is contingent upon passing the screening.  Due to Federal requirements, only US citizens, US naturalized citizens or US Permanent Residents, holding a green card, will be considered.

Qualifications

To be successful in this role you have:

• 8+ years experience with the following network security technologies: Next Generation Firewalls (NGFWs), intrusion detection & prevention systems (IDS/IPS), DDoS mitigation solutions, and VPN (virtual private network) gateways
• Hands-on experience with vulnerability management tools and a strong technical understanding for assessing vulnerabilities and identifying weaknesses detected within Cloud Network Services’ assets
• Strong coordination and troubleshooting skills while handling complex network security incidents and escalations
• Experience working with remotely to both physical and cloud-provider (Microsoft Azure) data centers
• Good understanding of and have recent experience with the following network technologies: Load Balancing, BGP, MPLS, OSPF, ISIS and SNMP
• Deep, hands-on experience with TCP/IP (common packet headers, protocol innerworkings, both IPv4 and IPv6)
• Familiarity with PAN-OS, JUNOS and Cisco Nexus operating systems is required; Cisco ASA knowledge and experience strongly desired; Corero Smartwall and Illumio experience is a plus
• Documentable Linux experience as a user; Linux administration is a plus
• Experience with network automation languages and tools such as Ansible and Python is a plus
• In depth knowledge of troubleshooting and monitoring tools like tcpdump & Wireshark highly desired
• The ability to partner with peers and work empathetically with customers who are globally distributed is a key part of this role
• Ability to learn new technology in a fast-paced environment
• Strong communication, both in writing and verbally, and documentation skills are required

For positions in California (outside of the Bay Area), we offer a base pay of $123,750 - $216,450, plus equity (when applicable), variable/incentive compensation and benefits. Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure. Please note that the base pay shown is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies and work location. We also offer health plans, including flexible spending accounts, a 401(k) Plan with company match, ESPP, matching donations, a flexible time away plan and family leave programs (subject to eligibility requirements). Compensation is based on the geographic location in which the role is located, and is subject to change based on work location. For individuals who will be working in the Bay Area, there is a pay enhancement for positions located in that geographical area; please contact your recruiter for additional information.

Additional Information

ServiceNow is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law.

At ServiceNow, we lead with flexibility and trust in our distributed world of work. Click here to learn about our work personas: flexible, remote and required-in-office.

If you require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at talent.acquisition@servicenow.com for assistance.

For positions requiring access to technical data subject to export control regulations, including Export Administration Regulations (EAR), ServiceNow may have to obtain export licensing approval from the U.S. Government for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by the U.S. Government.

Please Note: Fraudulent job postings/job scams are increasingly common. Click here to learn what to watch out for and how to protect yourself. All genuine ServiceNow job postings can be found through the ServiceNow Careers site.

From Fortune. © 2022 Fortune Media IP Limited All rights reserved. Used under license.

Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, ServiceNow.