Company Description

It all started when engineer Fred Luddy wrote code that automated a tedious task for his coworker, Phyllis. She cried tears of joy. That moment inspired Fred to build a company that could do that for everyone—freeing people from busywork so they could focus on meaningful work. Today, ServiceNow is the AI control tower for business reinvention. Our ServiceNow AI platform brings together any AI, any data, and any workflow— helping 85% of the Fortune 500® work smarter, faster, and better. We're building an AI-native culture where technology and talent are unstoppable together. And we're just getting started.

Join us to put AI to work for people.

Job Description

About the Role

ServiceNow is seeking a Staff Product Manager to own Integration Security and AI Gateway Security — two of the highest-leverage areas in our platform's security foundation. This is an IC4 role on the IAM team within Platform Security, based in Santa Clara.

As enterprises shift to agentic AI workflows, the products you own become the security backbone for every machine-to-machine interaction: governing how ServiceNow integrates with external systems, how AI agents authenticate and call tools, and how platform teams enforce access control at scale. Your work will directly shape the security posture of thousands of enterprises globally.

Your Product Portfolio

• Integration Security
  • You will own the security layer that governs how ServiceNow connects to the outside world. This spans the protocols, credential frameworks, and trust mechanisms that secure every outbound API call, web service integration, and machine-to-machine interaction — from MCP(Model Context Protocol), REST and SOAP-based integrations to OAuth flows, and mTLS. These capabilities underpin thousands of enterprise integration pipelines running on the ServiceNow platform today.
• AI Gateway Security
  • AI Gateway is ServiceNow's enterprise control plane for agentic AI — the governed, in-path intermediary between AI agents and the tools, APIs, and systems they call. As enterprises build distributed AI workflows spanning ServiceNow and external platforms (Copilot Studio, AWS Bedrock, GCP Vertex AI), AI Gateway ensures every agent interaction is authenticated, authorized, observable, and compliant.
  • You will govern the full lifecycle of MCP (Model Context Protocol) server connections — from onboarding and risk classification to runtime access control and credential mediation — using OAuth 2.1 as the security backbone. You'll build the capabilities that platform teams, security teams, and AI stewards rely on to approve agent access, enforce tool-level policies, and audit every interaction at scale.
  • AI Gateway is deeply integrated with AI Control Tower and AI Agent Studio, and is positioned as the foundational security and governance layer for ServiceNow's enterprise agentic ecosystem.

What you get to do in this role:

• Define and drive the roadmap for Integration Security and AI Gateway Security, balancing near-term customer needs with the long-term agentic AI platform vision.
• Own the security architecture for MCP server governance — onboarding, risk classification, access control, credential mediation, and audit — using OAuth 2.1 as the foundational trust protocol.
• Partner with engineering, design, and documentation teams to deliver secure, developer-friendly capabilities from concept to general availability.
• Engage directly with enterprise customers, security architects, and platform administrators to understand requirements and validate solutions.
• Translate complex security requirements — including compliance mandates and zero-trust principles — into clear, executable product requirements and user stories.
• Analyze customer telemetry, support trends, and security landscape shifts to make informed prioritization decisions.
• Drive cross-functional alignment across Platform Engineering, AI Studio, AI Control Tower, and Workflow Data Fabric to position integration security as a shared platform capability.
• Act as an accountable owner who drives outcomes regardless of organizational boundaries — proactively removing blockers and escalating risks early.
• Represent the product area in customer advisory sessions, community forums, security working groups, and executive briefings.
• Integrate market analysis, usability research, and developer feedback into product requirements to improve adoption and satisfaction.

Qualifications

Required

• 8+ years of experience in integration security, API security, Identity & Access Management, or enterprise platform security — with hands-on involvement across multiple domains.
• Deep protocol expertise: practical knowledge of OAuth 2.0/2.1, mTLS, REST/SOAP web services, credential management, and outbound integration patterns in enterprise SaaS environments.
• AI and agentic AI fluency: experience working with or thinking critically about MCP, A2A, LLM orchestration, AI agent frameworks, or agentic security models — including how to authenticate, authorize, and audit AI-to-tool interactions at scale.
• Strong product execution: proven ability to write product requirements, author user stories, define acceptance criteria, and shepherd features from discovery through GA in an agile environment.
• Customer and developer orientation: ability to understand enterprise security admin and developer needs, translate them into product decisions, and build durable customer relationships.
• Cross-functional leadership: track record of driving alignment across engineering, design, QE, security, and legal without direct authority.
• Clear communication: skilled at conveying product strategy and security trade-offs to both technical implementers and non-technical executives.

Preferred

• Experience with zero-trust security models, service mesh security, or API gateway architectures.
• Familiarity with compliance frameworks (NIST, SOC 2, ISO 27001, FedRAMP) and how they shape enterprise security product design.
• Hands-on experience with ServiceNow platform, Integration Hub, or MID Server architecture.
• Prior PM experience on developer-facing products or platform API products in a SaaS or cloud-native environment.
• Experience building or governing AI agent workflows, including tool-calling security, prompt injection defenses, or agentic access control.
• Familiarity with hyperscaler AI platforms (AWS Bedrock, GCP Vertex AI, Azure OpenAI) and their integration security patterns.

AI Fluency Expectation

This role requires more than awareness of AI — it demands hands-on integration of AI tools into your day-to-day work. You should have experience leveraging AI-powered tools to accelerate discovery, drafting, analysis, and execution. You will be expected to actively apply AI to drive step-function productivity gains across the product lifecycle, and to bring that same mindset to the products you build.

Why This Role

• You'll own products at the security frontier — the exact intersection of enterprise integration, identity, and agentic AI that every major enterprise is navigating right now.
• Your work will govern billions of machine-to-machine interactions across thousands of enterprise deployments.
• You'll have direct influence on ServiceNow's agentic AI strategy — AI Gateway and AI Control Tower are among the highest-priority investments on the platform roadmap.
• You'll join an IAM team that operates with the discipline of a security team and the pace of a product team — mission-driven, technically deep, and globally influential.
• Preferred location is Santa Clara, CA
  
  

For positions in this location, we offer a base pay of $166,500 - $291,400, plus equity (when applicable), variable/incentive compensation and benefits. Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure. Please note that the base pay shown is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location. We also offer health plans, including flexible spending accounts, a 401(k) Plan with company match, ESPP, matching donations, a flexible time away plan and family leave programs. Compensation is based on the geographic location in which the role is located and is subject to change based on work location.

Additional Information

Work Personas

We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here. To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service.

Equal Opportunity Employer

ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, age, disability, gender identity, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements.

Accommodations

We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact [email protected] for assistance.

Export Control Regulations

For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities.

From Fortune. ©2026 Fortune Media IP Limited. All rights reserved. Used under license.