At a Glance
- Tasks: Design and optimise security workflows on the ServiceNow platform for effective incident response.
- Company: Join a forward-thinking tech company focused on security operations.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Other info: Inclusive workplace that values diverse backgrounds and offers career advancement.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge tools and technologies.
- Qualifications: Experience with ServiceNow SecOps modules and strong integration skills.
The predicted salary is between 60000 - 80000 € per year.
A ServiceNow SecOps Engineer designs, implements, and optimizes security operations workflows within the ServiceNow platform. The role bridges security tooling and IT service management, enabling efficient incident response, vulnerability remediation, and threat intelligence handling through automation and orchestration. Working closely with SOC teams, this engineer ensures security events are actionable, traceable, and continuously improved.
Key Responsibilities
- Incident Response
- Configure and manage ServiceNow Security Incident Response (SIR) module
- Integrate SIEM tools (e.g., Splunk) for real‑time alert ingestion
- Develop automated playbooks for triage, containment, and escalation
- Collaborate with SOC analysts to streamline response workflows
- Ensure proper documentation, tracking, and reporting of incidents
- Vulnerability Management
- Implement and maintain ServiceNow Vulnerability Response (VR)
- Integrate vulnerability scanners (e.g., Tenable, Qualys)
- Prioritize vulnerabilities using risk‑based scoring models
- Automate remediation workflows and track SLA compliance
- Provide dashboards and reporting for security posture visibility
- Threat Intelligence
- Configure ServiceNow Threat Intelligence (TI) module
- Ingest and normalize threat feeds from external sources
- Correlate threat intelligence with incidents and vulnerabilities
- Support proactive threat hunting initiatives
- Maintain indicators of compromise (IOCs) and threat libraries
- Security Orchestration & Automation
- Design and implement workflows using ServiceNow Flow Designer and IntegrationHub
- Integrate endpoint security tools (e.g., CrowdStrike) and other security platforms
- Build orchestration playbooks to reduce manual intervention
- Continuously improve automation efficiency and coverage
- Ensure secure and scalable API integrations across systems
Required Skills & Experience
- Strong experience with ServiceNow SecOps modules (SIR, VR, TI)
- Hands‑on integration experience with tools such as Splunk, CrowdStrike, Qualys, or Tenable
- Knowledge of security frameworks (e.g., NIST, ISO 27001)
- Experience with REST APIs, scripting (JavaScript), and automation tools
- Solid understanding of SOC operations and incident lifecycle
- Familiarity with cloud and endpoint security concepts
Preferred Qualifications
- ServiceNow Certified Implementation Specialist – Security Operations
- Experience with SOAR platforms and automation design
- Knowledge of threat intelligence frameworks (e.g., MITRE ATT&CK)
- Background in cybersecurity operations or engineering roles
We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience.
Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.
ServiceNow SecOps Engineer in London employer: LA International
As a leading employer in the cybersecurity sector, we offer our ServiceNow SecOps Engineers a dynamic work environment that fosters innovation and collaboration. Our commitment to employee growth is evident through continuous training opportunities and a culture that values diversity and inclusion, ensuring that every voice is heard. Located in a vibrant tech hub, we provide competitive benefits and a supportive atmosphere that empowers our team to excel in their roles while making a meaningful impact on security operations.
StudySmarter Expert Advice🤫
We think this is how you could land ServiceNow SecOps Engineer in London
✨Network Like a Pro
Get out there and connect with folks in the industry! Attend meetups, webinars, or even online forums related to ServiceNow and cybersecurity. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Show Off Your Skills
When you get the chance to chat with potential employers, make sure to highlight your hands-on experience with ServiceNow SecOps modules and any integrations you've done. Share specific examples of how you've improved workflows or automated processes – it’ll make you stand out!
✨Tailor Your Approach
Before any interview, do your homework! Research the company’s security operations and think about how your skills can help them. Tailoring your responses to their specific needs shows you’re genuinely interested and ready to contribute.
✨Apply Through Our Website
Don’t forget to check out our website for the latest job openings! Applying directly through us not only gives you a better chance but also keeps you in the loop about any updates or new roles that pop up.
We think you need these skills to ace ServiceNow SecOps Engineer in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your experience with ServiceNow SecOps modules and relevant tools like Splunk and CrowdStrike. We want to see how your skills align with the role, so don’t be shy about showcasing your achievements!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re passionate about security operations and how your background makes you a great fit for our team. Keep it engaging and personal – we love to see your personality!
Showcase Your Technical Skills:Don’t forget to mention your hands-on experience with REST APIs, scripting, and automation tools. We’re looking for someone who can hit the ground running, so highlight any projects or achievements that demonstrate your technical prowess.
Apply Through Our Website:We encourage you to apply directly through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to keep track of your application status. Plus, we love seeing applications come in through our own platform!
How to prepare for a job interview at LA International
✨Know Your ServiceNow Inside Out
Make sure you’re well-versed in the ServiceNow SecOps modules, especially SIR, VR, and TI. Brush up on how these modules work together to enhance security operations, as you’ll likely be asked about your experience with them during the interview.
✨Showcase Your Integration Skills
Be prepared to discuss your hands-on experience with tools like Splunk, CrowdStrike, and Tenable. Have specific examples ready that demonstrate how you’ve integrated these tools into workflows or automated processes, as this will highlight your practical knowledge.
✨Understand the Incident Lifecycle
Familiarise yourself with the incident response lifecycle and how it applies to SOC operations. Be ready to explain how you’ve contributed to streamlining response workflows or improving incident tracking in your previous roles.
✨Demonstrate Your Automation Know-How
Since automation is key in this role, think of examples where you’ve designed or implemented automated playbooks. Discuss any scripting or API integration work you’ve done, as this will show your ability to reduce manual intervention and improve efficiency.
