ServiceNow Platform Data Security Engineering- Manager

Responsibilities

• Security Strategy & Compliance
• Develop and enforce security policies, standards, and best practices for the ServiceNow platform.
• Ensure compliance with industry regulations (e.g., GDPR, HIPAA, NIST, ISO 27001, SOC 2) and internal security policies.
• Establish governance frameworks for secure development, data protection, and risk mitigation.
• Access Control & Identity Management
• Design and manage role-based access control (RBAC), ACLs, and authentication mechanisms in ServiceNow.
• Implement Single Sign-On (SSO), Multi-Factor Authentication (MFA), and identity federation with enterprise IAM solutions.
• Regularly audit and refine user roles to enforce least privilege access principles.
• Security Operations & Incident Management
• Oversee the implementation and optimization of ServiceNow Security Operations (SecOps), including:
• Security Incident Response (SIR) - streamline incident detection, triage, and resolution.
• Vulnerability Response (VR) - automate vulnerability identification and remediation workflows.
• Threat Intelligence - integrate threat feeds and security insights for proactive defense.
• Coordinate with cybersecurity teams to detect, investigate, and respond to threats affecting ServiceNow.
• Data Security & Encryption
• Implement data encryption, tokenization, and masking strategies to protect sensitive information.
• Define and enforce data retention, auditing, and logging policies for compliance and monitoring.
• Monitor access patterns and system activity to identify potential security threats.
• Secure Integrations & Automation
• Design and enforce secure API management for integrations between ServiceNow and third-party security tools (e.g., SIEM, EDR, IAM).
• Leverage IntegrationHub, Automation Engine, and Orchestration to streamline security workflows.
• Ensure secure data exchange and prevent unauthorized access to ServiceNow instances.
• Risk & Compliance Management
• Deploy and manage ServiceNow Governance, Risk, and Compliance (GRC) solutions to assess security risks.
• Conduct regular security audits, risk assessments, and penetration tests on the ServiceNow platform.
• Define and implement security controls to mitigate risks and enhance compliance.
• Required Skills & Qualifications:
• Technical Expertise:
• ServiceNow Security: Deep understanding of SecOps, GRC, RBAC, ACLs, and platform security best practices.
• Cybersecurity & Compliance: Strong knowledge of security frameworks (NIST, ISO 27001, CIS), regulatory compliance, and risk management.
• Access & Identity Management: Expertise in SSO, MFA, OAuth, LDAP, and user authentication.
• Integration & Development: Experience with REST APIs, JavaScript, OAuth, and secure integration practices.
• Cloud Security: Understanding of SaaS security, encryption methods, and cloud-based security models.
• Certifications
• ServiceNow Certifications:
• Certified System Administrator (CSA)
• Certified Implementation Specialist - SecOps or GRC

Requirements

• Experience securing large-scale ServiceNow implementations in regulated industries (finance, healthcare, government).
• Strong problem-solving, analytical, and communication skills to interact with technical and non-technical stakeholders.
• Knowledge of emerging security trends, zero trust architecture, and AI-driven security solutions.
• Cybersecurity Certifications:
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Experience Required:
• 1

Benefits

Additional Information

About Our Company Ameriprise India LLP has been providing client based financial solutions to help clients plan and achieve their financial objectives for 20 years. We are part of Ameriprise Financial Inc., a US financial planning company headquartered in Minneapolis with a global presence and diversified financial services leader with more than $1.5 trillion in assets under management, administration and advisement as of year-end 2024. The firm's focus areas include Asset Management and Advice, Retirement Planning and Insurance Protection. Be part of an inclusive, collaborative culture that rewards you for your contributions, and work with other talented individuals who share your passion for doing great work. You'll also have plenty of opportunities to make your mark at the office and a difference in your community. So, if you're talented, driven and want to work for a strong, ethical company that cares, take the next step and create a career at Ameriprise India LLP. Job Description ServiceNow Security Lead is responsible for ensuring the security, compliance, and governance of the ServiceNow platform. This role focuses on implementing security best practices, managing access controls, integrating security tools, and strengthening risk management processes. The Security Lead collaborates with IT, cybersecurity, and compliance teams to safeguard sensitive data, prevent unauthorized access, and enhance the platform's overall security posture.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at ameriprise? Share your experience