ServiceNow Security Manager

ServiceNow Platform Data Security Engineering- Manager

About Our Company

Ameriprise India LLP has been providing client based financial solutions to help clients plan and achieve their financial objectives for 20 years. We are part of Ameriprise Financial Inc., a US financial planning company headquartered in Minneapolis with a global presence and diversified financial services leader with more than $1.5 trillion in assets under management, administration and advisement as of year-end 2024. The firm’s focus areas include Asset Management and Advice, Retirement Planning and Insurance Protection.

Be part of an inclusive, collaborative culture that rewards you for your contributions, and work with other talented individuals who share your passion for doing great work. You’ll also have plenty of opportunities to make your mark at the office and a difference in your community. So, if you're talented, driven and want to work for a strong, ethical company that cares, take the next step and create a career at Ameriprise India LLP.

Job Description

ServiceNow Security Lead is responsible for ensuring the security, compliance, and governance of the ServiceNow platform. This role focuses on implementing security best practices, managing access controls, integrating security tools, and strengthening risk management processes. The Security Lead collaborates with IT, cybersecurity, and compliance teams to safeguard sensitive data, prevent unauthorized access, and enhance the platform’s overall security posture.

Key Responsibilities

·       Security Strategy & Compliance 

- Develop and enforce security policies, standards, and best practices for the ServiceNow platform. 

- Ensure compliance with industry regulations (e.g., GDPR, HIPAA, NIST, ISO 27001, SOC 2) and internal security policies. 

- Establish governance frameworks for secure development, data protection, and risk mitigation. 

·       Access Control & Identity Management 

- Design and manage role-based access control (RBAC), ACLs, and authentication mechanisms in ServiceNow. 

- Implement Single Sign-On (SSO), Multi-Factor Authentication (MFA), and identity federation with enterprise IAM solutions. 

- Regularly audit and refine user roles to enforce least privilege access principles. 

·       Security Operations & Incident Management 

- Oversee the implementation and optimization of ServiceNow Security Operations (SecOps), including: 

- Security Incident Response (SIR) – streamline incident detection, triage, and resolution. 

- Vulnerability Response (VR) – automate vulnerability identification and remediation workflows. 

- Threat Intelligence – integrate threat feeds and security insights for proactive defense. 

- Coordinate with cybersecurity teams to detect, investigate, and respond to threats affecting ServiceNow. 

·       Data Security & Encryption 

- Implement data encryption, tokenization, and masking strategies to protect sensitive information. 

- Define and enforce data retention, auditing, and logging policies for compliance and monitoring. 

- Monitor access patterns and system activity to identify potential security threats. 

·       Secure Integrations & Automation 

- Design and enforce secure API management for integrations between ServiceNow and third-party security tools (e.g., SIEM, EDR, IAM). 

- Leverage IntegrationHub, Automation Engine, and Orchestration to streamline security workflows. 

- Ensure secure data exchange and prevent unauthorized access to ServiceNow instances. 

·       Risk & Compliance Management 

- Deploy and manage ServiceNow Governance, Risk, and Compliance (GRC) solutions to assess security risks. 

- Conduct regular security audits, risk assessments, and penetration tests on the ServiceNow platform. 

- Define and implement security controls to mitigate risks and enhance compliance. 

Required Skills & Qualifications:

 Technical Expertise: 

- ServiceNow Security: Deep understanding of SecOps, GRC, RBAC, ACLs, and platform security best practices. 

- Cybersecurity & Compliance: Strong knowledge of security frameworks (NIST, ISO 27001, CIS), regulatory compliance, and risk management. 

- Access & Identity Management: Expertise in SSO, MFA, OAuth, LDAP, and user authentication. 

- Integration & Development: Experience with REST APIs, JavaScript, OAuth, and secure integration practices. 

- Cloud Security: Understanding of SaaS security, encryption methods, and cloud-based security models. 

 Certifications

- ServiceNow Certifications: 

- Certified System Administrator (CSA) 

- Certified Implementation Specialist – SecOps or GRC 

   Preferred Qualifications:  

- Experience securing large-scale ServiceNow implementations in regulated industries (finance, healthcare, government).  

- Strong problem-solving, analytical, and communication skills to interact with technical and non-technical stakeholders.  

- Knowledge of emerging security trends, zero trust architecture, and AI-driven security solutions.  

Cybersecurity Certifications: 

- Certified Information Systems Security Professional (CISSP) 

- Certified Information Security Manager (CISM) 

 Experience Required:  

- 15+ years of IT security experience, with 12+ years in ServiceNow security architecture, administration, or operations.  

- Hands-on experience in security automation, incident response, and risk management using ServiceNow.  

- Prior experience working with cybersecurity, risk management, and IT governance teams.  

Location: Hyderabad

Timings:   2 PM till 10:30 PM(IST)

In-Office Collaboration

We are a client-centric, relationship-based business. Working together, in-person, is foundational to how we achieve results. By fostering a culture of face-to-face collaboration, idea sharing, productivity and personal connection, we deliver for our stakeholders — clients, advisors, employees and shareholders. Our employees work in the office at least three (3) days per week, with flexibility to work from home two (2) days per week. Some roles may require additional in-office time or different in-office expectations, and specific requirements will be discussed during the hiring process.

Full-Time/Part-Time

Full time

Timings

(2:00p-10:30p)

India Business Unit

AWMPO AWMP&S President's Office

Job Family Group

Technology

Ameriprise India LLP is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, genetic information, age, sexual orientation, gender identity, disability, military status, veteran status, marital status, pregnancy, family status or any other basis prohibited by law.

We are committed to fostering an inclusive and accessible recruitment process for individuals with disabilities. If you require a reasonable accommodation to participate in the application or interview process, speak to your recruiter to discuss how we can support you.

Experience Level

Mid Level