Senior Cybersecurity Engineer

Job Description

Joining Amex Tech means discovering and shaping your contribution to something big. Here, you can work alongside talented tech teams and build a unique career with the Powerful Backing of American Express. With a range of opportunities to work with the latest technologies, and a commitment to back the broader engineering community through open source, our mission is to power your success. Because Amex Tech is powered by our technology, our culture, and our colleagues.

The Technology organization enables and accelerates the company’s growth strategies, delivering global capabilities and services in support of Amex’s customers and colleagues, while maintaining 24/7 servicing and availability to ensure an uninterrupted, high-quality customer experience. Technology provides the foundation for everything we do in the company while driving differentiation through building and leveraging innovative technology and data insights.

At American Express, our mission is to deliver the world’s best customer experience every day. At the heart of this mission is our Information Security organization, enabling exceptional experiences built on a foundation of trust, service, and security. We leverage advanced technologies and data-driven insights to stay ahead of an evolving threat landscape. We foster a culture of passion, curiosity, and courage—empowering you to innovate, grow, and help shape the future of a Fortune 100 company.

Trust. Service. Security.

How will you make an impact in this role?

We are seeking a driven and detail-oriented Senior Cybersecurity Engineer to join our IT Asset Management (ITAM) and Security Engineering team. This role blends ServiceNow platform administration, cloud asset visibility, and product ownership, with a strong emphasis on integrating public cloud inventory into the Configuration Management Database (CMDB) to enhance enterprise security posture.

This is an ideal opportunity for a mid-career professional to deepen expertise in cybersecurity, cloud governance, and ServiceNow product ownership while driving asset transparency and risk reduction across a complex enterprise environment.

Responsibilities

Cloud Asset Visibility & CMDB Engineering

• Lead the integration of public cloud inventory (AWS, Azure, GCP) into ServiceNow CMDB using Service Graph Connectors and cloud-native APIs.
• Design, implement, and optimize automated discovery pipelines to ensure near real-time visibility of cloud and on-prem infrastructure assets.
• Ensure data normalization, reconciliation, and deduplication across multiple asset sources to maintain a trusted CMDB.
• Partners with cloud and security teams to map cloud resources to business services, enabling improved risk identification and incident response.
• Identify and remediate shadow IT and unmanaged cloud assets, ensuring full asset lifecycle governance and security coverage.
  
  

ServiceNow Platform Administration & Optimization

• Administer and enhance the ServiceNow ITSM and ITAM platform, ensuring scalability, performance, and secure configurations.

Looking to advance your Cyber Security career with relocation support? Explore Cyber Security Jobs with Relocation Packages that include comprehensive packages to help you move and settle in your new role.

• Manage and optimize Service Graph Connectors, Discovery, and Agent Client Collector (ACC) for comprehensive asset ingestion.
• Define and enforce CMDB data standards, mandatory attributes, and governance policies to improve data quality and audit readiness.
• Continuously improve CMDB health metrics (completeness, accuracy, timeliness) through automation and monitoring.
  
  

Cybersecurity & Risk Alignment

• Align asset inventory with cybersecurity use cases such as vulnerability management, threat detection, and incident response.
• Support identification of security gaps due to incomplete or inaccurate asset data and drive remediation.
• Translate technical asset data into risk insights aligned with NIST, ISO, and enterprise security frameworks.
• Contribute to security assessments, control validation, and audit readiness
  
  

Product Ownership & Agile Delivery

• Act as a Product Owner/SME for ServiceNow ITAM and CMDB capabilities, partnering with stakeholders across security, cloud, and infrastructure teams.
• Define and refine user stories, acceptance criteria, and backlog priorities aligned to cybersecurity and asset management goals.
• Lead sprint planning, backlog grooming, and release validation for platform enhancements.
• Drive roadmap initiatives focused on cloud visibility, automation, and data governance maturity.
  
  

Data Governance, Compliance & Reporting

• Establish and maintain data governance controls for asset lifecycle management, including onboarding, updates, and decommissioning.
• Ensure compliance with ITIL, NIST, and regulatory requirements, with emphasis on asset traceability and auditability.
• Develop and deliver metrics, dashboards, and reports on CMDB health, asset coverage, and security risk exposure.
• Create and maintain technical documentation, runbooks, and knowledge articles to support operational excellence.
  
  

Qualifications

Education & Experience

• Bachelor’s degree in information technology, Computer Science, Cybersecurity, or a related field (or equivalent practical experience).
• 4–6 years of experience in cybersecurity engineering, technology risk, or ServiceNow ITAM/CMDB administration within large, regulated enterprises.
• Hands-on experience with ServiceNow (ITSM, ITAM, CMDB), including asset onboarding, data modeling, and lifecycle management.
• Experience managing Agile workflows and tools (e.g., Rally, Jira), including creation and ownership of user stories through the full lifecycle.
• Proven experience working with public cloud environments (AWS, Azure, GCP), particularly in asset discovery, inventory management, or cloud governance.
• Strong data analysis capabilities, including use of tools such as Excel, Python, or similar for data validation, reporting, and automation.
• Experience with Service Graph Connectors, Discovery, CMDB, ITAM, or ITOM modules strongly preferred.
• ServiceNow certifications (e.g., CSA, CIS-ITSM/ITOM) and/or cloud certifications (AWS, Azure, GCP) are highly preferred.
  
  

Interested in relocating to United State? Check out our comprehensive Relocation Jobs in United State page with detailed relocation packages and benefits.

Technical Skills

• Solid understanding of ServiceNow platform administration, including configuration, scripting (JavaScript), and integrations.
• Experience with cloud asset ingestion and reconciliation, including APIs, connectors, and agent-based discovery tools (e.g., ACC).
• Strong knowledge of infrastructure components (servers, storage, networking, operating systems, virtualization, and cloud-native services).
• Understanding of cybersecurity principles, including asset visibility, vulnerability management dependencies, and shadow IT detection.
• Familiarity with CMDB data modeling, data governance frameworks, and IT asset lifecycle management.
• Working knowledge of ITIL practices and service management processes.
  
  

Soft Skills

• Strong ability to translate technical concepts and risks into business-relevant insights for stakeholders.
• Excellent analytical, problem-solving, and communication skills, with experience handling complex, cross-functional initiatives.
• Highly organized and detail-oriented, with the ability to manage competing priorities in a fast-paced environment.
• Collaborative mindset with the ability to partner across cybersecurity, cloud, and infrastructure teams.
• Demonstrates ownership, accountability, and a continuous improvement mindset, particularly around data quality and process optimization.
  
  

Depending on factors such as business unit requirements, the nature of the position, cost and applicable laws, American Express may provide visa sponsorship for some positions.