ServiceNow Lead Security Engineer

Job Title:

ServiceNow Lead Security Engineer Job Category:

Information Technology Time Type:

Full time Minimum Clearance Required to

Start:

None Employee Type:

Regular Percentage of Travel Required:

None Type of Travel:

None •

The Opportunity:

CACI is seeking a ServiceNow Lead Security Engineer to join our team. Our Lead Security Engineer will report to the ServiceNow Program Manager and work closely with a team of ServiceNow Platform Team. The ideal candidate is a security engineer with

RMF/NIST

expertise, strong cloud security and ServiceNow experience, excellent documentation and communication skills, and the ability to lead in a complex environment.

Responsibilities:

• Oversee and perform cybersecurity risk management activities using

NIST RMF

(800-53, 800-171) across multiple systems and environments

• Coordinate and support 3rd-party assessments (3PAO), including preparation, evidence review, and remediation tracking
• Lead and standardize security engineering processes across all ATOs and systems in multi-cloud (AWS, Azure, GCP), on-prem, and SaaS environments
• Define and enforce security architecture standards and baselines, including cloud security, network security, and endpoint protection
• Oversee implementation and operation of enterprise security capabilities:
• SOC operations and SIEM (Splunk)
• Endpoint detection and response (EDR/XDR)
• Threat intelligence and threat hunting
• IAM and PAM solutions
• Zero Trust architecture and access controls
• Application security (SAST, DAST, IaC scanning)
• Direct incident response and continuous monitoring activities, ensuring issues are identified, prioritized, and remediated
• Lead governance and assurance activities to maintain compliance with NIST 800-53, RMF, and FedRAMP
• Oversee control selection, tailoring, implementation, and validation across systems
• Ensure effective operation of POA&M management processes across all systems and teams
• Oversee development and quality of ATO packages, including SSPs, procedures, and supporting artifacts
• Coordinate with SCAs, ISSOs, System Owners, engineers, and developers to ensure consistent implementation of security controls
• Oversee enterprise vulnerability management programs using tools such as Wiz and Tenable
• Ensure timely remediation or risk-based mitigation of vulnerabilities and compliance findings across environments
• Oversee configuration management and baseline enforcement, including STIGs, CIS benchmarks, and hardened images (AMIs)
• Review and approve security architecture designs, system changes, and risk acceptance decisions
• Establish and track security metrics and reporting, including POA&M status, vulnerability trends, and incident metrics
• Lead planning and execution of security tool deployments and upgrades across multiple environments
• Ensure compliance with logging and monitoring requirements, including centralized log management and retention policies
• Oversee access control and identity governance processes, including account reviews and privileged access controls
• Guide DevSecOps practices, ensuring security is integrated into CI/CD pipelines and system development lifecycles
• Use threat intelligence to guide security priorities, improve detection capabilities, and support threat hunting efforts
• Provide direction during security incidents, including escalation, coordination, and reporting
• Support training and knowledge sharing across engineering and security teams

Qualifications:

Required:

• Ability to obtain Department of Homeland Security (DHS) Entry On Duty (EOD)
• B.A./B.S. or equivalent + 15 years of relevant experience
• Experience supporting ServiceNow development
• Understanding of

NIST SP 800

53, RMF, FedRAMP, and federal security control frameworks.

• Hands-on experience supporting ATO packages, SSP development, control implementation statements, and evidence collection.
• Experience performing security assessments, vulnerability analysis, risk assessments, and remediation tracking.

Desired:

• Any of the following certifications is highly desired: CISSP, CCSP, CEH, CySA+, AWS/Azure security certs.

-

What You Can Expect:

A culture of integrity. At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation. An environment of trust. CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality. A focus on continuous growth. Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.

Pay Range:

There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. The proposed salary range for this position is: $120,800 - $265,800 CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.