Cyber - Strategy and Transformation - Senior Consultant - ServiceNow SecOps VR

Same job available in 4 locations

Bengaluru, Karnataka, India

Chennai, Tamil Nadu, India

Hyderabad, Telangana, India

Pune, Maharashtra, India

Back to search results
Back to search results

Position Summary

Cyber

Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design and technology as we partner with clients to transform finance.

Position Summary

Level: Senior Consultant

Work you’ll do:

  • Define the architecture and design elements for the implementation of ServiceNow SecOps solution (including design data/object models, technical workflow diagrams, access control models, etc.).
  • Integrate ServiceNow with third-party vulnerability scanners (Qualys, Tenable, Rapid7) and validate data mapping, CI matching, and error handling.
  • Build advanced automation using Flow Designer, Integration Hub, and REST APIs to streamline remediation routing and approval workflows
  • Understand the business requirement and define & document epics, user stories, create UI mock-ups and have a roll-up the sleeves approach to make things happen.
  • Facilitate service now training and support team on complex system configuration
  • Conduct discovery workshops with client security, IT, and operations teams to align technical configurations with business risk appetite
  • You will be responsible for end-to-end application design, workflow configurations, and customizations.
  • Must demonstrate good judgment and pragmatic approach to delivering a solution that optimizes architecture activities across company needs, business constraints, and technological realities.

Key Responsibilities (Vulnerability Response)

  • Configure and maintain ServiceNow Vulnerability Response (VR) and Configuration Compliance modules.
  • Configure and administer ServiceNow Vulnerability Response: sources, vulnerability items, state model, assignment, SLAs, notifications, and remediation tasking.
  •  Improve CMDB data quality by mapping scan data to CIs, managing asset ownership, and defining risk criticality.
  • Integrate and maintain ingestion from vulnerability scanners/tools to ServiceNow VR application (e.g., Qualys, Tenable, Rapid7) and validate data mapping, schedules, and error handling.
  • Implement data deduplication rules and manage exception handling within the VR module
  • Build automations with Flow Designer/Integration Hub for routing, enrichment, reminders/escalations, and remediation verification/closure.
  • Partner with IT Ops/app owners to coordinate workflow alignments in ServiceNow for patching/remediation, manage dependencies, and resolve ownership gaps.
  • Define and publish dashboards/KPIs (e.g., vuln aging, SLA compliance, remediation throughput, critical exposure by service/BU) in ServiceNow.
  • Support governance: audit-ready evidence, change/release management, documentation/runbooks, manage update sets and role-based access controls.
  • Provide technical guidance and best practices to junior team members

Optional Responsibilities (Security Incident Response/GRC/IRM)

  • SIR Integration: Support ServiceNow Security Incident Response (SIR) intake/triage workflows.
  • Policy & Compliance: Configure GRC/IRM modules to align with compliance frameworks.
  • App Engine: Develop custom ServiceNow applications to address unique client needs.

The Team:

Cyber Strategy & Transformation teams develop and transform cyber programs in line with a client's strategic objectives, regulatory requirements, and risk appetite. They keep the enterprise a step ahead of the evolving threat landscape and give stakeholders confidence in the organization's cyber posture. Services include the design of cyber organization, governance, and risk assessments. Services also encompass Cybersecurity Assessments and Frameworks, Cyber Transformation Management, Technology Software and Asset Compliance Management, Third Party Risk Management, Cyber Risk and Compliance, Solution Design and Implementation, and Cyber Risk Analytics and Quantification Reporting.

Qualifications:

Must Have Skills/Project Experience/Certifications:

  • 4 -8 years of ServiceNow experience (Admin/Developer/Platform), with at least 3+ years specifically in ServiceNow Security Operations / Vulnerability Response (VR) implementation.
  • Hands-on experience implementing or operating ServiceNow Vulnerability Response with deep understanding of the vulnerability management lifecycle and scanning tools.
  • Strong understanding of vulnerability management lifecycle (scan → triage → prioritize → remediate → verify/close).
  • Experience with CMDB/asset data concepts and how they affect VR accuracy (CI matching, ownership, criticality).
  • Working knowledge of integrations (REST/API; MID Server where applicable) and automation (Flow Designer).
  • Strong scripting experience in JavaScript (Glide Record, Business Rules, Script Includes, UI Policies)

Good to Have Skills/Project Experience/Certifications:

  • ServiceNow CSA (Mandatory), CAD and VR/SecOps-related CIS-certifications.
  • Scripting (ServiceNow JavaScript), performance tuning, and large-scale data ingestion.
  • ServiceNow Certified Application Developer (CAD).
  • Experience with other SecOps modules (Threat Intelligence, Configuration Compliance).

Core Skills

ServiceNow VR and SecOps, CMDB & Asset Mapping, Flow Designer/Integration Hub, Java Script & API development, integrations, reporting/dashboards, vulnerability management, stakeholder coordination, good communication, technical documentation and presentation.

Education: 

  • Bachelor’s/ master’s degree in information technology or related field

Location: 

  • Bengaluru/Hyderabad/Pune/Chennai/Kolkata
Our purpose

Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. 
Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas and perspectives, and bring more creativity and innovation to help solve our clients’ most complex challenges. This makes Deloitte one of the most rewarding places to work.
Professional development

At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India.
Benefits to help you thrive

At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.

Requisition code: 340424