Jobs//Developer + Engineer//

Senior Penetration Tester

ServiceNow
| Remote | Hybrid
Sorry, this job was removed at 12:36 p.m. (PST) on Friday, April 16, 2021
View 2011 Jobs
Find out who's hiring in South Bay.
See all Developer + Engineer jobs in South Bay
View 2011 Jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

Company Description

ServiceNow is making the world of work, work better for people. Our cloud‑based platform and solutions deliver digital workflows that create great experiences and unlock productivity for employees and the enterprise. We're growing fast, innovating faster, and making an impact on our customers' and employees' lives in significant and important ways. With over 6,900 customers, we serve approximately 80% of the Fortune 500, and we're on the 2020 list of FORTUNE World's Most Admired Companies.®
 
We're looking for people who are ready to roll up their sleeves and help us build on our incredible momentum, our diverse, engaged workforce, and our purpose to make the world of work, work better.
 
Learn more on Life at Now blog and hear from our employees about their experiences working at ServiceNow.

Job Description

Description

Job Title: Senior Penetration Tester
Location: Remote, CA

Description:

The Senior Penetration Tester is a critical contributor to ServiceNow’s internal offensive security initiatives. The successful candidate knows how to think like an attacker, and is well versed in modern attack vectors and offensive strategy. This individual is an adept communicator, motivated and proactive.

The Senior Penetration Tester will draw from their wide breadth of career experience to perform engagements against a complex attack surface composed of varying technologies, applications and infrastructure. Faced with unfamiliar targets and technology, the candidate will adapt and quickly develop subject matter expertise; they will look for opportunities to use their programming and scripting proficiency to automate tasks.

While the scope of engagements is limited to ServiceNow systems and infrastructure, prior experience in security consulting is an asset. The ideal candidate is collaborative, and adds unique value to the team while also respecting and learning from, or nurturing the development of more junior teammates.

Duties and Responsibilities:

  • Scope, coordinate, lead and execute penetration tests against ServiceNow attack surface from beginning to end.
    • Planning and executing penetration tests based on themes and direction provided by the ServiceNow Red Team and senior leadership, as well as those informed by their developing knowledge of the ServiceNow environment.
    • Meticulously documenting findings including all necessary information required to understand business impact, and engage with systems and infrastructure owners to facilitate remediation.
  • Develop a broad and deep technical understanding of ServiceNow services and products
  • Provide security leadership by communicating and collaborating across the organization with internal security teams, product engineering, IT and other teams as needed.

Qualifications

In order to be successful in this role, we are looking for someone that:

  • Has 4 or more years of experience attacking and defending corporate networks.
    • Demonstrated successful track record in previous penetration testing positions
  • Demonstrated industry leadership, for example:
    • Presented at information security conferences or events
    • Developed open-source security tooling
    • Other extra-curricular contributions to the security community
  • Has significant experience leading and executing web application and network penetration tests across a variety of environments, working with and attacking *nix, MS Windows, and Mac OS operating systems, as well as cloud infrastructure platforms (e.g., AWS, Azure, GCP).
  • Is capable of collaborating with other teams to dig deep into technical issues and help devise compensating controls where more obvious or ideal remediation approaches are infeasible.
  • Is adept at communicating technical security findings across a broad spectrum of audiences including product engineering and executive leadership.
  • Grasps risk management concepts as they apply to offensive security; cautiously balances and avoids unnecessary introduction of risk during engagements.
  • Is comfortable working both independently and as part of a team to execute penetration testing engagements; and able to efficiently manage time and resources across multiple tasks.
  • Is very comfortable using standard industry tools such as Nessus, Qualys, Burp, Nmap, Metasploit etc. as well as quickly getting up to speed on the latest attack tool/technique. Understands what tools and attacks are doing “under the hood”, and is not intimidated by the idea of extending their functionality or writing their own tools.
  • Has proficiency with scripting and programming languages, for example:
    • C#, C, Java, JavaScript, Objective C, Python, Rust, Go, bash and PowerShell.
  • Can use their creativity to discover vulnerabilities in systems and infrastructure that commoditized security testing would miss.
  • Has a deep interest in information security and problem solving; and can potentially draw inspiration and insight from previous career experience or non-attack focused interests such as:
    • programming, reverse engineering, forensics, CTFs, quilting, etc.

Additional Information

ServiceNow is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law.

If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at +1 (408) 501-8550, or [email protected] for assistance.

For positions requiring access to technical data subject to export control regulations, including Export Administration Regulations (EAR), ServiceNow may have to obtain export licensing approval from the U.S. Government for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by the U.S. Government.


Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
    • JavaLanguages
    • JavascriptLanguages
    • ReactLibraries
    • Node.jsFrameworks
    • MariaDBDatabases
    • MongoDBDatabases
    • MySQLDatabases
    • PostgreSQLDatabases

Location

101 2nd St #1400, San Francisco, CA 94105

An Insider's view of ServiceNow

How would you describe the company’s work-life balance?

I am a working mom, and I appreciate the privilege of being able to work from home when I need to adjust my hours. I could be offline for two hours in the middle of the day because there's a school event for my kids. To be able to do so without the pressure of, "Oh my goodness! Now it's going to make me look bad," I don't take that for granted.

Kurdin

Manager, Strategy & Operations

What does your typical day look like?

If I could clarify one thing about being an engineer, we're a lot more collaborative than people think. Engineers can be seen as always sitting by themselves in front of a computer in a dark room and code just streaming down it. However, we work closely with project managers and designers to create the best product for customers.

Viviana

Senior Machine Learning Engineer

How does the company support your career growth?

Since joining ServiceNow, I've built out my leadership team, and 60% are women. My goal for my team is to create opportunities and a platform to showcase the incredible impact that they're having on the business, whether that's having them lead a critical initiative with cross-functional visibility or present during a C-suite meeting.

Vanessa

President, ServiceNow.org

What is your vision for the company?

We want to create a place where people want to come to work every day and do what they enjoy–where they feel challenged, collaborate with colleagues around the globe, and know what they're doing matters. It is really humbling to work with so many hardworking individuals who also want to see each other succeed and who are building something great.

Pat

Chief Technology Officer

What are some things you learned at the company?

Sometimes, we feel a little self-conscious. We may feel intimated or too shy to share our points of view. But in order to make an impact, we need to be able to trust our voice.

Ying

Director, Product Design

What are ServiceNow Perks + Benefits

ServiceNow Benefits Overview

We make work better for people—including our own. From work environments that help us do our best work, to benefits and a culture that encourage employees to stay healthy, happy, engaged, and growing, we keep our people at the center of everything we do.

Culture
Volunteer in local community
Open door policy
Open office floor plan
Flexible work schedule
Remote work program
Diversity
Documented equal pay policy
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity manifesto
Mean gender pay gap below 10%
Diversity employee resource groups
Hiring practices that promote diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Wellness programs
Financial & Retirement
401(K)
401(K) matching
Company equity
Employee stock purchase plan
Performance bonus
Charitable contribution matching
Child Care & Parental Leave Benefits
Childcare benefits
Generous parental leave
Family medical leave
Adoption Assistance
Vacation & Time Off Benefits
Unlimited vacation policy
Generous PTO
Paid volunteer time
Paid holidays
Paid sick days
Office Perks
Commuter benefits
Company-sponsored outings
Free snacks and drinks
Company-sponsored happy hours
Onsite office parking
Onsite gym
Professional Development Benefits
Tuition reimbursement
Lunch and learns
Promote from within
Mentorship program
Online course subscriptions available
View full list of perks + benefits

More Jobs at ServiceNow

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about ServiceNowFind similar jobs like this