• US Citizen

• Green Card

• Corp-Corp

• Contract to Hire

• Consulting/Contract

• UG :- - Not Required

• PG :- - Not Required

• No of position :- ( 1 )

• Post :- 11th Nov 2022

Please find below the criteria for the expected resource:

n  8+ years’ working experience in ServiceNow.

n  5+ years’ working experience in ServiceNow SecOps VR.

n  Previous working experience in implementing ServiceNow SecOps VR for at least one customer with 50K+ systems.

n  Expert knowledge on the internals of the ServiceNow platform.

n  Proficient skills in developing customized scripts inside ServiceNow.

n  Proficient skills in using APIs of security tools (e.g., Rapid7 InsightAppSec and Prisma Cloud) for data retrieval and setting up integration with ServiceNow.

n  3+ years of hands-on experience developing and maintaining multiple ServiceNow instances

n  Knowledge and previous experience in implementing ServiceNow ITSM and ITOM is desirable.

n  Knowledge of information security concepts is desirable.

The scope of work that a vendor is expected to perform include:

n  Integrate ServiceNow SecOps VR with WBG Vulnerability Scanning tools in different environments including Production.

n  Import vulnerability scan findings from WBG Vulnerability Scanning tools to ServiceNow SecOps VR

n  Implement the WBG Vulnerability Risk Assessment Framework in ServiceNow SecOps VR.

n  Implement workflows that are consistent with WBG Threat and Vulnerability Management (TVM) processes and procedures in ServiceNow SecOps VR.

n  Provide trainings on ServiceNow SecOps VR to different groups in WBG.

n  Upgrade ServiceNow applications that are related to ServiceNow SecOps VR, including major releases, minor releases, and patch releases.

n  Provide semi-annual presentations on new ServiceNow releases and highlight new features and applications that are related to ServiceNow SecOps VR.

n  When there is any change in WBG TVM process/procedure, identify the relevant native/customized components that need to be updated accordingly and complete the implementation so that it is consistent with the new WBG Vulnerability Management process/procedure.