At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation.
Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.
F5 is seeking a visionary and results-driven Principal ServiceNow IRM Solution Architect to join our team and shape the future of enterprise risk and compliance at scale. In this highly influential role, you will serve as the senior-most technical authority for our ServiceNow Integrated Risk Management (IRM) and Governance, Risk & Compliance (GRC) ecosystem - designing forward-thinking solutions that protect the business, satisfy global regulators, and empower leadership with real-time risk intelligence.
This is more than an architecture role. You will be a strategic partner to Enterprise Risk, Global Security, Internal Audit, Legal, and Privacy leaders, a trusted mentor to a talented engineering team, and the driving force behind a multi-year vision to automate, modernize, and intelligently evolve our GRC program. From Business Continuity and Disaster Recovery planning to AI-driven risk prediction, your work will directly shape how we identify, manage, and respond to risk across the enterprise.
If you are a seasoned GRC technologist who thrives at the intersection of deep technical expertise, enterprise strategy, and cross-functional leadership and you are passionate about building resilient, compliant, and future-ready organizations — we want to hear from you.
Responsibilities
Enterprise IRM Architecture
Serve as the authoritative solution architect for the ServiceNow IRM/GRC platform, leading the end-to-end design and delivery of scalable solutions across Policy & Compliance Management, Risk Management, Audit Management, and Third-Party/Vendor Risk Management to align with enterprise risk strategy.
Business Continuity & Disaster Recovery Design
Own the architectural blueprint for ServiceNow's Business Continuity Management (BCM) and Disaster Recovery (DR) modules, ensuring deep integration between risk assessment workflows and operational recovery planning to strengthen organizational resilience.
Strategic Technology Roadmap
Develop and champion a multi-year GRC technology roadmap, identifying opportunities to automate, modernize, and evolve the platform including the adoption of AI and machine learning capabilities to enable predictive and proactive risk management.
Platform Standards & Governance
Define and enforce engineering standards, configuration best practices, and governance guardrails for the ServiceNow IRM/GRC platform, ensuring long-term scalability, maintainability, upgrade readiness, and security posture.
Regulatory & Cross-Functional Alignment
Collaborate closely with Global Security, Legal, Privacy, and Compliance stakeholders to architect technical controls that address complex regulatory requirements across jurisdictions, including GDPR, SOC 2, ISO 27001, and FedRAMP.
Technical Leadership & Mentorship
Provide hands-on technical leadership and mentorship to senior and staff engineers within the GRC Center of Excellence (COE/POD), cultivating a high-performance culture driven by innovation, engineering rigor, and continuous improvement.
Qualifications
12+ years of progressive experience in Cybersecurity GRC, Information Security, or a closely related field, including a minimum of 5 years in a senior technical architecture or platform leadership role.
Deep, hands-on expertise in ServiceNow IRM/GRC modules (Policy & Compliance, Risk Management, Audit Management, Vendor Risk) and the ServiceNow BCM application suite.
Demonstrated success of architecting and delivering enterprise-scale GRC solutions integrated with complex, multi-cloud ecosystems (e.g., Workday, Azure, AWS, Okta).
Extensive experience designing and automating Business Continuity Management (BCM) and Disaster Recovery (DR) programs within large, globally distributed enterprises.
Comprehensive understanding of global risk and compliance frameworks, including NIST CSF, ISO 27001, SOC 2, GDPR, and FedRAMP.
Proven ability to leverage data platforms such as Snowflake and visualization tools such as Tableau (or equivalent BI solutions) to build risk and compliance reporting pipelines, analytics models, and executive-level dashboards.
Highly preferred certifications include:
ServiceNow Certified Implementation Specialist – Risk and/or Compliance, CISSP, CRISC, CISA
The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.
Please note that F5 only contacts candidates through F5 email address (ending with @f5.com) or auto email notification from Workday (ending with f5.com or @myworkday.com).
Equal Employment Opportunity
It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting [email protected].
Skills Required
- 12+ years of progressive experience in Cybersecurity GRC, Information Security, or related field.
- 5 years in a senior technical architecture or platform leadership role.
- Deep expertise in ServiceNow IRM/GRC modules (Policy & Compliance, Risk Management, Audit Management, Vendor Risk).
- Experience delivering enterprise-scale GRC solutions integrated with multi-cloud ecosystems.
- Hands-on experience designing Business Continuity Management and Disaster Recovery programs.
- Understanding of global risk and compliance frameworks.
- Proven ability to leverage data platforms for analytics models and reporting.
- Highly preferred certifications include: ServiceNow Certified Implementation Specialist, CISSP, CRISC, CISA.
F5 Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about F5 and has not been reviewed or approved by F5.
-
Equity Value & Accessibility — Equity grants and an employee stock purchase plan are positioned as meaningful parts of total compensation, with RSUs and a discount ESPP commonly included. Pay packages for many technical roles are considered competitive when equity is taken into account.
-
Leave & Time Off Breadth — Paid vacation that increases with tenure, sick time, paid holidays, and paid family leave are prominently featured. Additional programs like volunteer time and periodic wellness long weekends are highlighted as part of the time-off ecosystem.
-
Inclusive Benefits Coverage — Health plans include travel support for specific care (such as reproductive and gender‑affirming services) and mental health resources, alongside comprehensive medical, dental, and vision coverage. These elements are presented as part of a broad, inclusive approach to healthcare.
F5 Insights
What We Do
F5 application services ensure that applications are always secure and perform the way they should—in any environment and on any device. F5 (NASDAQ: FFIV) powers applications from development through their entire life cycle, across any multi-cloud environment, so our customers – enterprise businesses, service providers, governments, and consumer brands—can deliver differentiated, high-performing, and secure digital experiences.
.jpg)
.png){kind=logo}
