.svg)
ServiceNow
Staff Product Security Engineer
Join ServiceNow in Petah Tikva as a Staff Product Security Engineer. Leverage your AppSec and threat modeling skills to enhance secure software development.
The Mothership
Senior
ServiceNow Role Type:
Application Developer
ServiceNow Modules:
DevOps
Predictive Intelligence
ServiceNow Certifications (nice to have):
Job description
Posted on:
August 14, 2025
ServiceNow is seeking a Staff Product Security Engineer to join their Secure Software Development Lifecycle (SSDL) team. The role involves threat modelling, secure coding practices, and mentoring developers to build secure software. This position is critical for ensuring the success of the security champions program.
Requirements
- 6+ years of experience in software security (AppSec)
- 3+ years of experience in threat modelling software applications and services
- Proficient in threat modelling methodologies such as STRIDE or PASTA
- In-depth knowledge of common web application vulnerabilities (OWASP Top 10)
- Developer-level proficiency in Python, Java, JavaScript, and Golang (preferred)
- In-depth knowledge of machine learning and BIML (preferred)
- In-depth knowledge of software design patterns and security considerations
- Knowledge of authentication and authorisation standards (OAuth, OIDC, SAML, JWT, PASETO)
- Knowledge of symmetric and asymmetric cryptography, digital signatures, PKI, TLS, and cryptographic hash functions
Requirements Summary
6+ years in AppSec, 3+ in threat modelling. Proficiency in STRIDE/PASTA, and ML/BIML knowledge are required. Requires coding skills in Python/Java/JS/Golang
