Cyber Security Engineer II - Technology Asset Management

ABOUT GENERAL MILLS

We make foodthe world loves: 100 brands. In 100 countries. Across six continents. With iconic brands like Cheerios, Pillsbury, Betty Crocker, Nature Valley, and Hagen-Dazs, we've been serving up food the world loves for 155 years (and counting). Each of our brands has a unique story to tell.

How we make our food is as important as the food we make. Our values are baked into our legacy and continue to accelerate

us into the future as an innovative force for good. General Mills was founded in 1866 when Cadwallader Washburn boldly bought the largest flour mill west of the Mississippi. That pioneering spirit lives on today through our leadership team who upholds a vision of relentless innovation while being a force for good. For more details check out

General Mills India Center (GIC) is our global capability center in Mumbai that works as an extension of our global organization delivering business value, service excellence and growth, while standing for good for our planet and people.

With our team of 1800+ professionals, we deliver superior value across the areas of Supply chain (SC) , Digital & Technology (D&T) Innovation, Technology & Quality (ITQ), Consumer and Market Intelligence (CMI), Sales Strategy & Intelligence (SSI) , Global Shared Services (GSS) , Finance Shared Services (FSS) and Human Resources Shared Services (HRSS).For more details check out

We advocate for advancing equity and inclusion to create more equitable workplaces and a better tomorrow.

JOB OVERVIEW

Function Overview

The Digital and Technology team at General Mills stands as the largest and foremost unit, dedicated to exploring the latest trends and innovations in technology while leading the adoption of cutting-edge technologies across the organization. Collaborating closely with global business teams, the focus is on understanding business models and identifying opportunities to leverage technology for increased efficiency and disruption. The team's expertise spans a wide range of areas, including AI/ML, Data Science, IoT, NLP, Cloud, Infrastructure, RPA and Automation, Digital Transformation, Cyber Security, Blockchain, SAP S4 HANA and Enterprise Architecture. The MillsWorks initiative embodies an agile@scale delivery model, where business and technology teams operate cohesively in pods with a unified mission to deliver value for the company. Employees working on significant technology projects are recognized as Digital Transformation change agents.

The team places a strong emphasis on service partnerships and e mployee engagement with a commitment to advancing equity and supporting communities. In fostering an inclusive culture, the team values individuals passionate about learning and growing with technology, exemplified by the Work with Heart philosophy, emphasizing results over facetime. Those intrigued by the prospect of contributing to the digital transformation journey of a Fortune 500 company are encouraged to explore more details about the function through the following

Purpose of the role

The Cyber Security Technology Asset Management (TAM) Engineer is a key member of the Cyber Security team, responsible for contributing to the strategic planning, execution, monitoring, and continuous improvement of the enterprise Configuration Management Process, with a focus on security and compliance. This role involves working on the architecture, maintenance, and enhancement of the Configuration Management Database (CMDB) within the ServiceNow environment, ensuring data accuracy and completeness to facilitate effective IT asset management. This role requires collaboration with team members and stakeholders, contributing to solution roadmaps and ensuring the successful execution of TAM initiatives. The engineer will also focus on platform development within ServiceNow, including ITOM discovery, integrations, and process automation through scripting, while adhering to security best practices.

KEY ACCOUNTABILITIES

• ServiceNow ITOM: Lead the design, configuration, and continuous optimization of ServiceNow IT Operations Management (ITOM), including Discovery (schedules, credentials, patterns, identification and reconciliation rules), MID Server management (installation, upgrades, clustering, connectivity, and performance tuning), and advanced troubleshooting. Own and enhance Service Mapping to ensure accurate end-to-end service dependency visibility. Configure and maintain Event Management (event rules, alert correlation, noise reduction, and binding logic) to deliver high-quality, actionable alerts integrated with Incident, Problem, and Change processes. Extend discovery and monitoring capabilities to multi-cloud environments, including GCP and Azure, ensuring accurate mapping of cloud services and resources.
• ServiceNow Platform Leadership: Lead the design, development, enhancement, and lifecycle management of ServiceNow solutions, including business rules, scripts, workflows/Flow Designer, UI components, integrations, and reporting. Establish development standards, code governance, and platform best practices. Provide expert-level support for complex defects, upgrades, and performance optimization. Ensure platform extensions accommodate hybrid cloud architectures, including GCP and Azure.
• Automation, Orchestration & Integration: Architect and implement scalable automation and integration solutions to improve CMDB, ITOM, and asset data quality while reducing manual effort. Design and maintain secure integration pipelines between ServiceNow (CMDB, ITOM, Asset) and enterprise platforms such as SSO, SIEM, monitoring tools, OT discovery solutions, and legacy systems using REST APIs, web services, and scripting frameworks. Ensure integrations are resilient, secure, well-documented, and aligned with enterprise data governance standards.
• CMDB Architecture & Governance: Own the enterprise CMDB data model, architecture, and governance framework. Develop and implement a comprehensive CMDB strategy aligned to business and IT objectives. Establish KPIs and health metrics to measure completeness, accuracy, timeliness, and compliance. Ensure adherence to industry's best practices and regulatory standards. Provide mentorship and governance oversight to maintain data integrity at scale.
• Configuration Management Strategy & Execution: Develop and execute the enterprise configuration management roadmap in collaboration with senior stakeholders. Define requirements, technical standards, and onboarding frameworks for cloud, infrastructure, applications, and legacy systems. Ensure infrastructure and application changes are accurately reflected in the CMDB and aligned with change management processes.
• IT and OT Asset Management: Drive enterprise-wide IT and OT asset discovery, normalization, reconciliation, and lifecycle governance across manufacturing plants, operational technology environments, and corporate IT. Integrate multiple inventory and discovery sources into the CMDB, ensuring clear ownership models, lifecycle status accuracy, data quality controls, and alignment with cybersecurity, reliability, and compliance requirements.< /li>
• Strategic Technology Leadership: Partner with enterprise architects, infrastructure leaders, and process owners to align technology asset management (TAM) and ITOM strategies with broader IT transformation goals. Contribute to strategic planning and roadmap development. Evaluate emerging technologies and assess their impact on service visibility, automation maturity, and CMDB governance.
• Process Improvement & Innovation: Identify, lead, and implement continuous improvement initiatives to enhance CMDB accuracy, automation maturity, and asset lifecycle governance. Introduce innovative solutions to increase operational efficiency and data reliability. Stay current with platform advancements and evolving industry best practices.
• Problem Solving & Operational Support: Troubleshoot and resolve complex issues related to discovery failures, integration breakdowns, CMDB data discrepancies, releases and upgrades, and cloud environments (GCP, Azure). Conduct root cause analysis and implement preventive controls to strengthen platform stability and data integrity.
• Collaboration & Knowledge Sharing: Collaborate across Infrastructure, Security, Cloud, OT Engineering, and Application teams to strengthen configuration data ownership and accountability. Provide training, mentorship, and guidance on CMDB governance and ServiceNow development standards. Promote a culture of shared accountability and continuous improvement.

MINIMUM QUALIFICATIONS

• Education - Full time graduation from an accredited university (Mandatory- Note: This is the minimum education criteria which cannot be altered)
• 7-9 years of experience with ServiceNow's ITAM and ITOM suite (CMDB, Discovery, Service Mapping, Event Management, Workflows, CSDM), with at least 3 years in senior technical roles.
• Proven experience leading the design and implementation of complex ServiceNow integrations, automation projects, and multi-cloud environments (GCP, Azure).
• Hands-on experience troubleshooting and resolving complex issues related to horizontal discovery, pattern creation, and cloud resource mapping.
• Proficiency in multiple scripting languages (e.g., JavaScript, Python) and data formats (XML, JSON), regular expressions (REGEX), and database connectivity (JDBC, ODBC).
• Understanding of networking concepts (routers, switches, firewalls, NAT, load balancing), cloud platforms (GCP, Azure), and security best practices.
• Excellent communication, collaboration, presentation, and problem-solving skills.
• Proficiency with Microsoft Office Suite (Word, Excel, PowerPoint, Teams).

PREFERRED QUALIFICATIONS

• ServiceNow certifications (Certified System Administrator (CSA), Certified Implementation Specialist - Discovery, Certified Implementation Specialist - Service Mapping, and other relevant ServiceNow certifications).
• Experience with IT asset management tools such as NetBrain, ScienceLogic, TrueSight, or Infoblox.
• Experience with Agile development methodologies.
• Familiarity with common audit, compliance, and regulatory standards related to Configuration Management and CIs (e.g., SOX, HIPAA, PCI DSS).
• Experience with ITIL framework.
• Proven track record of successfully leading and delivering complex IT projects.
• Experience with security frameworks such as NIST Cybersecurity Framework, ISO 27001, etc.
• Experience with security tools and technologies (e.g., SIEM, vulnerability scanners, intrusion detection systems).
• Experience with security incident response and vulnerability management.