Staff Product Manager – Integration Security & AI Gateway
ServiceNow is seeking a Staff Product Manager to own Integration Security and AI Gateway Security — two of the highest-leverage areas in our platform's security foundation. This is an IC4 role on the IAM team within Platform Security, based in Santa Clara.
As enterprises shift to agentic AI workflows, the products you own become the security backbone for every machine-to-machine interaction: governing how ServiceNow integrates with external systems, how AI agents authenticate and call tools, and how platform teams enforce access control at scale. Your work will directly shape the security posture of thousands of enterprises globally.
Your Product Portfolio
- Integration Security You will own the security layer that governs how ServiceNow connects to the outside world. This spans the protocols, credential frameworks, and trust mechanisms that secure every outbound API call, web service integration, and machine-to-machine interaction — from MCP(Model Context Protocol), REST and SOAP-based integrations to OAuth flows, and mTLS. These capabilities underpin thousands of enterprise integration pipelines running on the ServiceNow platform today.
- AI Gateway Security AI Gateway is ServiceNow's enterprise control plane for agentic AI — the governed, in-path intermediary between AI agents and the tools, APIs, and systems they call. As enterprises build distributed AI workflows spanning ServiceNow and external platforms (Copilot Studio, AWS Bedrock, GCP Vertex AI), AI Gateway ensures every agent interaction is authenticated, authorized, observable, and compliant.
What you get to do in this role:
- Define and drive the roadmap for Integration Security and AI Gateway Security, balancing near-term customer needs with the long-term agentic AI platform vision.
- Own the security architecture for MCP server governance — onboarding, risk classification, access control, credential mediation, and audit — using OAuth 2.1 as the foundational trust protocol.
- Partner with engineering, design, and documentation teams to deliver secure, developer-friendly capabilities from concept to general availability.
- Engage directly with enterprise customers, security architects, and platform administrators to understand requirements and validate solutions.
- Translate complex security requirements — including compliance mandates and zero-trust principles — into clear, executable product requirements and user stories.
- Analyze customer telemetry, support trends, and security landscape shifts to make informed prioritization decisions.
- Drive cross-functional alignment across Platform Engineering, AI Studio, AI Control Tower, and Workflow Data Fabric to position integration security as a shared platform capability.
- Act as an accountable owner who drives outcomes regardless of organizational boundaries — proactively removing blockers and escalating risks early.
- Represent the product area in customer advisory sessions, community forums, security working groups, and executive briefings.
- Integrate market analysis, usability research, and developer feedback into product requirements to improve adoption and satisfaction.
Qualifications
Required
- 8+ years of experience in integration security, API security, Identity & Access Management, or enterprise platform security — with hands-on involvement across multiple domains.
- Deep protocol expertise : practical knowledge of OAuth 2.0/2.1, mTLS, REST/SOAP web services, credential management, and outbound integration patterns in enterprise SaaS environments.
- AI and agentic AI fluency : experience working with or thinking critically about MCP, A2A, LLM orchestration, AI agent frameworks, or agentic security models — including how to authenticate, authorize, and audit AI-to-tool interactions at scale.
- Strong product execution : proven ability to write product requirements, author user stories, define acceptance criteria, and shepherd features from discovery through GA in an agile environment.
- Customer and developer orientation : ability to understand enterprise security admin and developer needs, translate them into product decisions, and build durable customer relationships.
- Cross-functional leadership : track record of driving alignment across engineering, design, QE, security, and legal without direct authority.
- Clear communication : skilled at conveying product strategy and security trade-offs to both technical implementers and non-technical executives.
Preferred
- Experience with zero-trust security models, service mesh security, or API gateway architectures.
- Familiarity with compliance frameworks (NIST, SOC 2, ISO 27001, FedRAMP) and how they shape enterprise security product design.
- Hands-on experience with ServiceNow platform, Integration Hub, or MID Server architecture.
- Prior PM experience on developer-facing products or platform API products in a SaaS or cloud-native environment.
- Experience building or governing AI agent workflows, including tool-calling security, prompt injection defenses, or agentic access control.
- Familiarity with hyperscaler AI platforms (AWS Bedrock, GCP Vertex AI, Azure OpenAI) and their integration security patterns.
AI Fluency Expectation
This role requires more than awareness of AI — it demands hands-on integration of AI tools into your day-to-day work. You should have experience leveraging AI-powered tools to accelerate discovery, drafting, analysis, and execution. You will be expected to actively apply AI to drive step-function productivity gains across the product lifecycle, and to bring that same mindset to the products you build.
Why This Role
- You'll own products at the security frontier — the exact intersection of enterprise integration, identity, and agentic AI that every major enterprise is navigating right now.
- Your work will govern billions of machine-to-machine interactions across thousands of enterprise deployments.
- You'll have direct influence on ServiceNow's agentic AI strategy — AI Gateway and AI Control Tower are among the highest-priority investments on the platform roadmap.
- You'll join an IAM team that operates with the discipline of a security team and the pace of a product team — mission-driven, technically deep, and globally influential.
- Preferred location is Santa Clara, CA
For positions in this location, we offer a base pay of $166,500 - $291,400, plus equity (when applicable), variable/incentive compensation and benefits.Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure.Please note that the base pay shown is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location.We also offer health plans, including flexible spending accounts, a 401(k) Plan with company match, ESPP, matching donations, a flexible time away plan and family leave programs.
Compensation is based on the geographic location in which the role is located and is subject to change based on work location.
Staff Product Manager – Integration Security & AI Gateway
ServiceNow is seeking a Staff Product Manager to own Integration Security and AI Gateway Security — two of the highest-leverage areas in our platform's security foundation. This is an IC4 role on the IAM team within Platform Security, based in Santa Clara.
As enterprises shift to agentic AI workflows, the products you own become the security backbone for every machine-to-machine interaction: governing how ServiceNow integrates with external systems, how AI agents authenticate and call tools, and how platform teams enforce access control at scale. Your work will directly shape the security posture of thousands of enterprises globally.
Your Product Portfolio
- Integration Security You will own the security layer that governs how ServiceNow connects to the outside world. This spans the protocols, credential frameworks, and trust mechanisms that secure every outbound API call, web service integration, and machine-to-machine interaction — from MCP(Model Context Protocol), REST and SOAP-based integrations to OAuth flows, and mTLS. These capabilities underpin thousands of enterprise integration pipelines running on the ServiceNow platform today.
- AI Gateway Security AI Gateway is ServiceNow's enterprise control plane for agentic AI — the governed, in-path intermediary between AI agents and the tools, APIs, and systems they call. As enterprises build distributed AI workflows spanning ServiceNow and external platforms (Copilot Studio, AWS Bedrock, GCP Vertex AI), AI Gateway ensures every agent interaction is authenticated, authorized, observable, and compliant.
What you get to do in this role:
- Define and drive the roadmap for Integration Security and AI Gateway Security, balancing near-term customer needs with the long-term agentic AI platform vision.
- Own the security architecture for MCP server governance — onboarding, risk classification, access control, credential mediation, and audit — using OAuth 2.1 as the foundational trust protocol.
- Partner with engineering, design, and documentation teams to deliver secure, developer-friendly capabilities from concept to general availability.
- Engage directly with enterprise customers, security architects, and platform administrators to understand requirements and validate solutions.
- Translate complex security requirements — including compliance mandates and zero-trust principles — into clear, executable product requirements and user stories.
- Analyze customer telemetry, support trends, and security landscape shifts to make informed prioritization decisions.
- Drive cross-functional alignment across Platform Engineering, AI Studio, AI Control Tower, and Workflow Data Fabric to position integration security as a shared platform capability.
- Act as an accountable owner who drives outcomes regardless of organizational boundaries — proactively removing blockers and escalating risks early.
- Represent the product area in customer advisory sessions, community forums, security working groups, and executive briefings.
- Integrate market analysis, usability research, and developer feedback into product requirements to improve adoption and satisfaction.
Qualifications
Required
- 8+ years of experience in integration security, API security, Identity & Access Management, or enterprise platform security — with hands-on involvement across multiple domains.
- Deep protocol expertise : practical knowledge of OAuth 2.0/2.1, mTLS, REST/SOAP web services, credential management, and outbound integration patterns in enterprise SaaS environments.
- AI and agentic AI fluency : experience working with or thinking critically about MCP, A2A, LLM orchestration, AI agent frameworks, or agentic security models — including how to authenticate, authorize, and audit AI-to-tool interactions at scale.
- Strong product execution : proven ability to write product requirements, author user stories, define acceptance criteria, and shepherd features from discovery through GA in an agile environment.
- Customer and developer orientation : ability to understand enterprise security admin and developer needs, translate them into product decisions, and build durable customer relationships.
- Cross-functional leadership : track record of driving alignment across engineering, design, QE, security, and legal without direct authority.
- Clear communication : skilled at conveying product strategy and security trade-offs to both technical implementers and non-technical executives.
Preferred
- Experience with zero-trust security models, service mesh security, or API gateway architectures.
- Familiarity with compliance frameworks (NIST, SOC 2, ISO 27001, FedRAMP) and how they shape enterprise security product design.
- Hands-on experience with ServiceNow platform, Integration Hub, or MID Server architecture.
- Prior PM experience on developer-facing products or platform API products in a SaaS or cloud-native environment.
- Experience building or governing AI agent workflows, including tool-calling security, prompt injection defenses, or agentic access control.
- Familiarity with hyperscaler AI platforms (AWS Bedrock, GCP Vertex AI, Azure OpenAI) and their integration security patterns.
AI Fluency Expectation
This role requires more than awareness of AI — it demands hands-on integration of AI tools into your day-to-day work. You should have experience leveraging AI-powered tools to accelerate discovery, drafting, analysis, and execution. You will be expected to actively apply AI to drive step-function productivity gains across the product lifecycle, and to bring that same mindset to the products you build.
Why This Role
- You'll own products at the security frontier — the exact intersection of enterprise integration, identity, and agentic AI that every major enterprise is navigating right now.
- Your work will govern billions of machine-to-machine interactions across thousands of enterprise deployments.
- You'll have direct influence on ServiceNow's agentic AI strategy — AI Gateway and AI Control Tower are among the highest-priority investments on the platform roadmap.
- You'll join an IAM team that operates with the discipline of a security team and the pace of a product team — mission-driven, technically deep, and globally influential.
- Preferred location is Santa Clara, CA
For positions in this location, we offer a base pay of $166,500 - $291,400, plus equity (when applicable), variable/incentive compensation and benefits.Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure.Please note that the base pay shown is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location.We also offer health plans, including flexible spending accounts, a 401(k) Plan with company match, ESPP, matching donations, a flexible time away plan and family leave programs.
Compensation is based on the geographic location in which the role is located and is subject to change based on work location.
