Senior ServiceNow Security Administrator (518)

Citizenship: Must be a US Citizen and hold ONLY US citizenship – no dual citizenship

Type: Contract, possible convert to hire after 1 year

Summary

We are seeking a Senior ServiceNow Security Administrator with hands-on expertise in SAP BTP Identity Authentication Service (IAS) and Identity Provisioning Service (IPS). This role is responsible for the administration of ServiceNow instances across cloud and on-premise environments, as well as primary ownership of identity and access management within high-security security boundaries. The ideal candidate brings deep experience in enterprise IAM, identity federation, and compliance frameworks such as NIST 800-53, FedRAMP, and DoD IL5.
RequirementsServiceNow Administration
• ServiceNow Certified System Administrator – required.
• 3–7 years of hands-on ServiceNow administration experience in multi-instance environments (cloud and on-prem).
• Experience managing self-hosted ServiceNow instances – required.
• Experience managing Update Sets, configuration migration, and instance clone activities.
• Strong understanding of user, group, and role administration, including security best practices.
• Basic working knowledge of integration concepts, MID Servers, credentials, and secure connection principles.
• Experience supporting customer onboarding for external API connectivity (setup only; not development).
• Familiarity with ITIL processes and ServiceNow governance standards.
• ITIL Foundation certification – preferred.
• Experience with ServiceNow CMDB administration – preferred.
• Experience administering and maintaining an on-premise ServiceNow instance – preferred.
• Strong documentation and communication skills to support cross-team collaboration.
Identity & Access Management (BTP IAS Security)
• Hands-on experience with SAP BTP Identity Authentication Service (IAS) and Identity Provisioning Service (IPS) – required.
• Experience managing identity and access within security boundary environments such as IL4 and IL5 – required.
• 3+ years of experience with identity federation, SSO, and enterprise authentication protocols (SAML, OAuth, OIDC).
• Strong knowledge of user lifecycle management, role-based access control (RBAC), and least-privilege principles.
• Understanding of segregation of duties (SoD) concepts and access governance frameworks.
• Experience with IAM platforms such as SAP IDM, BTP IAS/IPS, or similar.
• Deep understanding of security policies, standards, and compliance requirements in high-security environments.
• Experience integrating enterprise applications with centralized identity services.
• Knowledge of security compliance frameworks including NIST 800-53, FedRAMP, and DoD IL5.
Preferred Certifications
• Security+ or equivalent security certification.
• SAP BTP certification.
• ServiceNow Security Operations or other advanced ServiceNow certifications.
ResponsibilitiesServiceNow Platform Administration
• Perform daily administration and operational maintenance of ServiceNow instances (cloud and on-prem).
• Manage Update Sets to migrate configuration changes across instances.
• Coordinate and perform system upgrades, patches, clones, and environment sync activities.
• Manage user accounts, groups, roles, and permissions in alignment with governance and security policies.
• Support customer onboarding for secure external API connectivity, including creating and managing integration user accounts, assigning secure roles and permissions, and maintaining and rotating API credentials and secrets.
• Monitor and maintain platform performance, stability, and compliance.
• Ensure configuration alignment and synchronization between cloud-hosted and on-prem ServiceNow environments.
• Support administration of CMDB data integrity where applicable.
• Maintain accurate documentation of administrative procedures, update sets, migrations, and API access workflows.
• Provide Level 2/3 support for configuration, user access, instance performance, and basic integration onboarding.
• Collaborate with Developers and Architects to escalate and resolve complex technical issues.
• Participate in governance, audit, and compliance activities.
• Stay current with ServiceNow releases and recommend opportunities to leverage new platform capabilities.
• Provide training and guidance to end users and stakeholders on platform changes as needed.
Identity & Access Management (Primary Ownership)
• Own and manage the integration between ServiceNow and SAP BTP IAS/IPS for centralized identity management within NS2 security boundaries.
• Design, implement, and maintain user provisioning and deprovisioning workflows across ServiceNow and connected SAP cloud platforms.
• Administer end-to-end user lifecycle activities including onboarding, role assignment, access modification, and deprovisioning.
• Implement and enforce role-based access controls (RBAC) aligned with security policies, compliance requirements, and least-privilege principles.
• Configure and maintain identity federation and SSO between ServiceNow and enterprise identity providers such as SAP BTP IAS, Okta, and Microsoft Entra.
• Lead access reviews, certification campaigns, and audit activities to ensure compliance with IL5 security requirements.
• Monitor, identify, and remediate access control gaps, security vulnerabilities, and policy violations within ServiceNow.
• Collaborate with Security Application Specialists to ensure consistent access governance across all enterprise platforms.
• Maintain security documentation including access control matrices, integration architecture, and compliance evidence.
• Implement and manage automated security controls, access policies, and compliance monitoring within NS2 security boundaries.
• Serve as subject matter expert for ServiceNow security and BTP IAS integration questions.
• Participate in security incident response and remediation activities related to identity and access management.
Experience & Qualifications
• 3–7 years of experience as a ServiceNow Administrator.
• 3+ years of hands-on experience with SAP BTP IAS/IPS administration and integration.
• Proven experience managing self-hosted ServiceNow instances in high-security environments (IL4/IL5 or FedRAMP High).
• Proven experience managing Update Sets, configuration migration, and multi-instance synchronization.
• Hands-on experience with user, role, and group administration and security controls.
• Experience supporting customers with secure API onboarding and access management.
• Experience working with ITIL processes and platform governance.
• Strong experience in user provisioning, role design, and enterprise access governance.
• Experience integrating ServiceNow with external identity providers and SAP cloud platforms.
• Experience with identity federation, SSO configuration, and authentication protocol implementation.
• Demonstrated ability to work within DoD or Federal high-security environments.
• Strong collaboration and communication skills, working effectively with both technical and non-technical stakeholders.
• Experience supporting security audits, compliance reviews, and access certification campaigns.
• Minimum 4-year university degree or equivalent work experience.
• Fluent English required.