Role Summary:
We are seeking a forward-thinking ServiceNow SecOps Architect to lead the design and implementation of our security operations capabilities on the ServiceNow platform. In this critical role, you'll architect and deliver enterprise-scale SecOps solutions that help secure and strengthen the cyber and operational resilience of one of the UK's largest and most innovative energy companies.
You'll work at the intersection of security, technology, and energy operations, driving a platform that underpins the protection of vital infrastructure, renewable energy assets, and millions of customers.
Your responsibilities:
Design and own the architecture for ServiceNow SecOps modules - including Security Incident Response, Vulnerability Response, Threat Intelligence, and Configuration Compliance.
Lead integration of ServiceNow with key cybersecurity tools: SIEM, SOAR, EDR, CMDB, threat intelligence platforms, and OT/ICS systems.
Collaborate across cybersecurity, IT, engineering, and energy operations to define secure workflows and automation for vulnerability and incident response.
Shape the roadmap and best practices for our ServiceNow platform across multiple business units.
Champion platform governance, scalability, reuse, and alignment with ServiceNow and enterprise architecture standards.
Mentor and guide development and implementation teams, ensuring quality and alignment with strategic goals.
Essential skills/knowledge/experience:
Proven experience as a ServiceNow Architect with strong delivery experience across SecOps and/or IRM modules.
Deep understanding of security operations, incident response, vulnerability life cycle, and integration of third-party cybersecurity tools.
Hands-on technical expertise with ServiceNow workflows, Scripting, CMDB, Discovery, and integrations (REST/SOAP, MID Server).
Experience working in or supporting critical infrastructure sectors, preferably energy, utilities, or OT/ICS environments.
Strong stakeholder engagement skills - comfortable interfacing with security leaders, business executives, and technical teams.
Familiarity with security frameworks (NIST, ISO 27001), regulatory requirements (eg, NIS2), and resilience mandates.
ServiceNow certifications (eg, Certified Implementation Specialist - SecOps).
Desirable skills/knowledge/experience:
Operational Technology (OT) Security Knowledge - Experience working with or understanding OT/ICS environments and industrial protocols (eg, Modbus, DNP3, IEC 61850) to enhance integration between IT and OT security operations.
Cloud Security & DevSecOps Familiarity - Awareness of cloud-native security practices and experience integrating security controls into CI/CD pipelines, helping support ongoing digital transformation and automation initiatives.
AI/ML in Security Operations - Exposure to leveraging artificial intelligence or machine learning techniques to improve threat detection, incident analysis, or automated response capabilities within SecOps.