Sr Staff Software Engineer - Product Security
Sr Staff Software Engineer - Product Security
Requirements
Qualifications
To be successful in this role you have:
- 12+ years of progressive software engineering experience, with a track record of designing and building complex systems at enterprise scale.
- Bachelor’s degree in Computer Science, Engineering, or a related technical field.
- Strong hands-on production experience with Python and Java. You are a builder who writes code daily, not an architect who only draws diagrams.
- Deep expertise in distributed systems, scalability, high availability, and performance engineering in cloud environments.
- Experience with security-related engineering — application security, infrastructure security, identity systems, fraud prevention, or trust & safety. You bring a security mindset to everything you build.
- Familiarity with AI/ML systems, GenAI, or Agentic AI technologies. You don’t need to be an ML researcher, but you should understand how these systems work and how to build tooling around them.
- Experience contributing to large-scale product codebases in a collaborative engineering environment. You know how to earn trust with product engineering teams through code quality and delivery.
- Strong technical communication skills — ability to articulate architecture decisions, write clear design documents, and influence technical direction across teams.
Preferred
- Experience with container and Kubernetes security, runtime security, OPA policy enforcement, or service mesh security.
- Background in building security products or features that ship as part of a commercial platform.
- Experience with AI-powered automation, LLM integration, or agentic frameworks in a production context.
- Familiarity with enterprise security frameworks (NIST, SSDLC) and their translation into engineering requirements.
- Experience working in a globally distributed engineering team across multiple time zones.
Benefits
Additional Information
Work Personas
We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here. To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service.
Equal Opportunity Employer
ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements.
Accommodations
We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact globaltalentss@servicenow.com for assistance.
Export Control Regulations
For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities.
From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license.
Original Advert
Company Description
It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today - ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone.
Job Description
ServiceNow's Product Security organisation is building a dedicated Security R&D function. This software engineering team builds security capabilities with the same rigour, CI/CD discipline, and quality standards as ServiceNow's product engineering organisation. We are looking for a Sr. Staff Security Engineer to serve as the technical anchor on this team.
Security R&D operates in two complementary modes: open contribution to product engineering - writing code alongside product teams where security expertise adds value - and developing its own security capabilities, including internal tooling, externally facing product features, AI-powered security automation, and third-party integrations.
This is a new team being stood up in Petah Tikva, Israel, co-located with ServiceNow's AI Security Research team. You will be one of the senior technical leaders shaping the team's engineering culture, architecture decisions, and technical direction from its inception.
This role reports to the Sr. Engineering Manager, Security R&D.
What You Will Do
Lead Technical Design and Architecture
- Drive architecture and design decisions for Security R&D's capabilities, ensuring systems are built for enterprise scale, reliability, and maintainability.
- Lead technical design reviews and serve as the senior engineering voice on security tooling, automation, and platform services built by the team.
- Define technical standards, code quality expectations, and engineering best practices for the Security R&D team.
- Evaluate and integrate third-party security services alongside in-house AI-powered capabilities to maximise security review coverage.
Build Security Capabilities at Platform Scale
- Design and develop security tooling, automation, and platform-native services - both for internal use and as externally facing product features.
- Contribute code directly into ServiceNow product engineering codebases where security domain expertise accelerates delivery and improves security outcomes.
- Leverage ServiceNow's unique platform advantages - Agent Framework runtime, ACL enforcement, data layer, and workflow engine - to build capabilities that external vendors cannot replicate.
- Collaborate with the AI Security Research team on AI agent security tooling, bringing production engineering discipline to an emerging domain.
Mentor and Elevate the Team
- Mentor junior and mid-level engineers, raising the technical bar across the team through code reviews, design guidance, and hands-on pairing.
- Represent Security R&D in cross-functional discussions with product engineering leadership, demonstrating technical credibility as an engineering peer.
- Contribute to hiring by helping define the technical interview bar and participating in candidate evaluations.
What Makes This Role Unique
- Builder-led culture: Security R&D is defined by engineering output, not advisory reviews. We build production security capabilities with the same discipline as product engineering.
- Dual operating model: The team both contributes directly to product engineering and develops its own security products and services.
- Platform advantage: ServiceNow owns the entire stack - runtime, ACLs, data layer, workflow engine. You will build security capabilities that no external vendor can replicate.
- Founding team: This is a new team being built from scratch. You will shape its engineering culture, technical standards, and identity from day one.
- AI intersection: The role sits alongside the AI Security Research team, placing you at the frontier of securing AI systems at enterprise scale.
Application managed by ServiceNow