ServiceNow Security Engineer

Job Title: ServiceNow Security Engineer

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: None

Employee Type: Regular

Percentage of Travel Required: None

Type of Travel: None

* * *

The Opportunity:

CACI is seeking a ServiceNow Security Engineer to join our team. Our Security Engineer will report to the ServiceNow Program Manager and work closely with a team of ServiceNow Platform Team. The ideal candidate is a security engineer with RMF/NIST expertise, strong cloud security and ServiceNow experience, excellent documentation and communication skills, and the ability to lead in a complex environment.

Responsibilities:

•              Perform governance and assurance activities to ensure alignment with NIST SP 800-53, RMF, and FedRAMP requirements
•              Define, document, and assess security requirements for systems; support control selection, tailoring, and implementation
•              Build, configure, and enforce AWS and Azure security controls, including IAM, logging, network security, and guardrails
•              Configure and operate Splunk SIEM for monitoring, correlation, alerting, and incident detection across cloud and on-prem environments
•              Support continuous monitoring (NIST CA-7) including control validation, evidence collection, and ongoing assessment activities
•              Manage the POA&M lifecycle: document findings, assign ownership, track milestones, validate remediation, and close items
•              Develop and maintain ATO documentation, including SSPs, security procedures, control implementation statements, and evidence artifacts
•              Support security assessments and audits; coordinate with SCAs, auditors, and 3PAOs during assessment activities
•              Work with System Owners, ISSOs, administrators, and developers to implement security controls and remediate findings
•              Perform vulnerability management using tools such as Wiz and Tenable: scanning, analysis, prioritization, and remediation tracking
•              Validate and enforce patch management and configuration baselines (e.g., STIGs, CIS benchmarks)
•              Assist with incident response activities, including triage, investigation, containment, and reporting
•              Perform log review and analysis to identify suspicious activity and ensure logging requirements (e.g., OMB M-21-31) are met
•              Support account management and access control reviews (e.g., AC-2), including periodic user access recertifications
•              Maintain asset inventory and system categorization in accordance with RMF requirements
•              Develop and maintain security documentation, including diagrams, procedures, and standard operating guides
•              Create and maintain project plans for deploying and maintaining security tools and capabilities
•              Perform risk assessments and impact analysis for system changes, vulnerabilities, and exceptions
•              Support DevSecOps integration, including participation in CI/CD security scanning (SAST/DAST/IaC) and secure configuration validation
•              Use threat intelligence to support threat hunting, improve detection use cases, and enhance incident response
•              Track and report security metrics (e.g., vulnerability remediation timelines, POA&M status, incident trends)

Qualifications:

Required:
•              Ability to obtain Department of Homeland Security (DHS) Entry On Duty (EOD)
•              B.A./B.S. or equivalent + 15 years of relevant experience
•              Experience supporting ServiceNow development
•              Understanding of NIST SP 800 53, RMF, FedRAMP, and federal security control frameworks.
•              Hands-on experience supporting ATO packages, SSP development, control implementation statements, and evidence collection.
•              Experience performing security assessments, vulnerability analysis, risk assessments, and remediation tracking.

Desired:

•              Any of the following certifications is highly desired: CISSP, CCSP, CEH, CySA+, AWS/Azure security certs.

-

What You Can Expect:

 A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.

Pay Range:

There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.

The proposed salary range for this position is:

$120,800 - $265,800