ServiceNow SecOps Developer

ServiceNow SecOps Developer - £650-£750 per day - Inside IR35 - 6 Months initial contract - Primarily remote with 1 day a month in central London.

Our client, one of the largest retailers in the UK, is looking for a highly experienced ServiceNow Security Operations Developer to join them on a contract basis.

This specialist role requires someone with strong technical and analytical skills to deliver high-quality solutions. If you are passionate about security operations and ServiceNow development, and have experience setting up SecOps in a greenfield environment, this could be the role for you.

Key Responsibilities:

• ServiceNow Implementation: Implement Security Incident Response, Vulnerability Response, Threat Intelligence, and Configuration Compliance modules from the ground up.
• ITSM Modules: Experience with Incident, Problem, Change, CMDB, and Asset modules is advantageous.
• Catalogue Items & Record Producers: Implement catalogue items and record producers.
• Security Incident Response: Configure Security Incident Response applications and build custom integrations with SIEM and threat intelligence enrichment tools.
• Email Integration: Develop email integrations for importing suspicious emails as security incidents (Phishing use case).
• Vulnerability Response: Configure Vulnerability Response applications and integrate with vulnerability scanner tools.
• Service Requests: Build and manage service requests from customer requirements using workflows.
• Scripting & Automation: Utilise scripting tools and ServiceNow functionality to automate tasks and workflows.
• Integrations & Process Automation: Perform integrations and process automation using ServiceNow Orchestration.
• Data Management: Load, manipulate, and maintain data between ServiceNow and other systems.
• Testing & Monitoring: Perform system and integration testing monitor the health, usage, and compliance of the platform.
• Design & Development: Hands-on experience in designing, developing, and deploying solutions on the ServiceNow platform.

Required Skills and Experience:

• Proven experience in setting up ServiceNow SecOps from the ground up in a greenfield environment.
• Experience configuring Splunk Enterprise for Security Incident Response (SIR) integration.
• Experience enabling and configuring SIR Workspace.
• Strong hands-on experience with Security Operations modules: Security Incident Response, Vulnerability Response, Threat Intelligence, and Configuration Compliance.
• Proficiency in JavaScript, HTML, XML, AJAX, and other scripting languages.
• Experience with web services, SOAP, email, MID server, and other third-party integrations.
• Knowledge of Glide and Jelly Scripting.
• Experience with CMDB, Discovery, and external integrations.
• Experience working in an Agile environment.

Desirable:

• Experience with ITSM modules such as Incident, Problem, Change, CMDB, and Asset.
• ServiceNow Certified Application Developer.
• Ability to hold discussions with clients to identify the best solutions.