Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

Sr. Info Security & Compliance Engineer - PCI Compliance

ServiceNow

Sr. Info Security & Compliance Engineer - PCI Compliance

Vienna, VA +3 locations
Full Time
Paid
  • Responsibilities

    Job Description

    Company Description ServiceNow is making the world of work, work better for people. Our cloud‑based platform and solutions deliver digital workflows that create great experiences and unlock productivity for employees and the enterprise. We're growing fast, innovating faster, and making an impact on our customers' and employees' lives in significant and important ways. With over 6,900 customers, we serve approximately 80% of the Fortune 500, and we're on the 2020 list of FORTUNE World's Most Admired Companies.® We're looking for people who are ready to roll up their sleeves and help us build on our incredible momentum, our diverse, engaged workforce, and our purpose to make the world of work, work better. Learn more on Life at Now blog and hear from our employees about their experiences working at ServiceNow.

    Job Description PLEASE NOTE: In this role you will be part of our Federal Regulated Markets team supporting US Federal Government customers.

    “THIS POSITION REQUIRES THE PUBLIC TRUST POSITION (PTP) TIER 2 LEVEL SUITABILITY ADJUDICATION. IF OFFERED EMPLOYMENT, YOU MUST BE WILLING TO COMPLETE AND SUCCESSFULLY PASS THE ADJUDICATION PROCESS. ANY EMPLOYMENT IS CONTINGENT UPON OBTAINING THE REQUIRED ADJUDICATION.”

    TEAM

    In this role you will be a part of the Governance, Risk and Operations Compliance (G-ROC) Team who are responsible for our Global Cloud Services compliance. We collaborate across the organization to streamline cloud compliance activities to ensure compliance intent is met, is effective, is efficient and builds trust with all stakeholder. We are a high energy team with a passion for breathing Compliance into the organization’s DNA.

    ROLE

    We’re looking for a highly motivated, collaborative and technically experienced Security and Compliance Engineer with a background in compliance, cloud operations and technology to socialize compliance requirements, analyze design for regulatory compliance alignment and support compliance risk and remediation efforts.

    The successful candidate must be reliable, resourceful, have a “can-do” attitude, demonstrate the ability to analyze difficult problems, think out-of-box, recommend pragmatic solutions and most importantly be able to clearly communicate with all stakeholders.

    WHAT YOU GET TO DO IN THIS ROLE:

    You will drive regulatory compliance onboarding and significant change request process to ensure compliance control framework alignment at change onset. If a non-compliance is identified, you will provide pragmatic solutions and lead remediation/mitigation conversations.

    You will support the evangelization of compliance controls to drive control owner awareness and education to ensure regulatory compliance controls are implemented, maintained and compliant.

    In this role you will also participates in external audit activities, including evidence preparation and associated response activities. This role will also support risk discussions to rate or status risk.

    Additionally, this role will collaborate across operations in support of building and executing a world-class Global Cloud Service compliance program while utilizing the ServiceNow platform. This role will report to the Sr. Director of Global Cloud Service Operations Compliance and have the following responsibilities:

    • Translate regulatory requirements for internal stakeholders in support of design and maintenance activities
    • Perform regulatory compliance analysis of infrastructure designs and subsequent changes
    • Lead remediation/mitigation conversations for regulatory compliance gaps
    • Develop regulatory requirements collateral in support of awareness and education activities
    • Provide input to identify, rate and status regulatory compliance risk
    • Review and provide feedback for compliance control implementation/narrative documentation
    • Provide input into configuration and continued improvement of all compliance process and tools

    Qualifications

    • 7+ years working in the field of security, compliance or audit
    • Demonstrated understanding of PCI standards, FedRAMP and a strong understanding of any of the following DOD SRG, Australia ISMS, Singapore MTCS, German C5, France HDS and S. Korea K-ISMS
    • Demonstrated ability to understand the intent of compliance requirements and our architecture to perform a regulatory compliance review.
    • Demonstrated technical experience with system configuration and architecture review to support remediation and mitigation activities.
    • Demonstrated ability to interface successfully with engineering teams in critical and challenging conversations.
    • Excellent verbal and written communication skills
    • Self-motivated, self-directed, and able to thrive in a fast-paced environment with a passion to make an impact
    • Prior experience at a SaaS, PaaS or IaaS Cloud company.
    • Willing to travel up to 25% is required.

    Additional Information ServiceNow is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law.

    If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at +1 (408) 501-8550, or talent.acquisition@servicenow.com for assistance.

    For positions requiring access to technical data subject to export control regulations, including Export Administration Regulations (EAR), ServiceNow may have to obtain export licensing approval from the U.S. Government for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by the U.S. Government.

  • Locations
    Santa Clara, CA • San Diego, CA • Vienna, VA • Kirkland, WA