List of ServiceNow Security Operations Customers
ServiceNow
2225 Lawson Lane,
Santa Clara, 95054, CA,
United States
Santa Clara, 95054, CA,
United States
1 408-501-8550
Professional Services
29187
$13.3B
Since 2010, our global team of researchers has been studying ServiceNow Security Operations customers around the world, aggregating massive amounts of data points that form the basis of our forecast assumptions and perhaps the rise and fall of certain vendors and their products on a quarterly basis.
Each quarter our research team identifies companies that have purchased ServiceNow Security Operations for Incident Management from public (Press Releases, Customer References, Testimonials, Case Studies and Success Stories) and proprietary sources, including the customer size, industry, location, implementation status, partner involvement, LOB Key Stakeholders and related IT decision-makers contact details.
Companies using ServiceNow Security Operations for Incident Management include: Danske Bank, a Denmark based Banking and Financial Services organisation with 20203 employees and revenues of $8.80 billion, Nsk, a Japan based Manufacturing organisation with 24057 employees and revenues of $5.32 billion, Yokogawa Electric, a Japan based Professional Services organisation with 17670 employees and revenues of $4.01 billion, Scandinavian Airlines, a Sweden based Transportation organisation with 8099 employees and revenues of $3.93 billion, Avanade, a United States based Professional Services organisation with 56000 employees and revenues of $2.00 billion and many others.
Contact us if you need a completed and verified list of companies using ServiceNow Security Operations, including the breakdown by industry (21 Verticals), Geography (Region, Country, State, City), Company Size (Revenue, Employees, Asset) and related IT Decision Makers, Key Stakeholders, business and technology executives responsible for the software purchases.
The ServiceNow Security Operations customer wins are being incorporated in our Enterprise Applications Buyer Insight and Technographics Customer Database which has over 100 data fields that detail company usage of software systems and their digital transformation initiatives. Apps Run The World wants to become your No. 1 technographic data source!
Apply Filters For Customers
| Logo | Customer | Industry | Empl. | Revenue | Country | Vendor | Application | Category | When | SI | Insight |
|---|---|---|---|---|---|---|---|---|---|---|---|
 |
Avanade | Professional Services | 56000 | $2.0B | United States | ServiceNow | ServiceNow Security Operations | Incident Management | 2020 | n/a |
In 2020, Avanade implemented ServiceNow Security Operations on the Now Platform alongside Governance, Risk, and Compliance to centralize Incident Management and improve GRC-driven security response. The implementation was executed with support from Accenture and aligned with Avanade’s requirements to demonstrate compliance with ISO, GDPR, HIPAA, CCPA, and SSAE 18 across its professional services operations and 56000 employees.
The deployment included ServiceNow Security Operations and the ServiceNow Policy and Compliance module, configured to manage policy lifecycle and control mappings. Avanade implemented 63 policies and mapped 93 authority documents representing 1,348 controls, and configured linkage between security incidents, policy exceptions, and CMDB records so that asset ownership and exception status are visible during incident handling.
ServiceNow Security Operations was integrated with existing ServiceNow IT Service Management and with external sources of security telemetry and compliance reference data including the company SIEM platform and the Unified Compliance Framework. These integrations consolidated security alerts, configuration and asset data, and regulatory mappings on a single platform, extending operational coverage to security operations, compliance teams, ITSM, and executive reporting.
Governance and workflow changes replaced spreadsheet-driven processes with automated compliance updates and queryable mappings, giving executives up-to-date visibility of compliance status and reducing manual workload. Explicit outcomes reported include faster regulatory mapping, with queries that previously took months now taking minutes, and a reduction in time to determine asset owners and exceptions during incidents from days to hours or minutes.
|
 |
Danske Bank | Banking and Financial Services | 20203 | $8.8B | Denmark | ServiceNow | ServiceNow Security Operations | Incident Management | 2019 | n/a |
In 2019, Danske Bank implemented ServiceNow Security Operations to consolidate security processes and strengthen Incident Management across its IT estate. The deployment formed part of a broader initiative to standardise IT operations on the Now Platform and provide a single system of record for IT, security, and service management functions.
The implementation extended ServiceNow Security Operations alongside core Now Platform capabilities including IT Service Management, an enriched configuration management database enhanced by service mapping, and embedded asset management for automatic provisioning into digital workflows. Service mapping was used to make applications service aware by automatically detecting dependencies and identifying root causes of service disruptions, and Security Operations was configured to automate remediation workflows and to capture precise efficiency measurements for security processes.
Operational scope covered IT operations, service desk teams, security operations and the broader employee population through a new ServiceNow based self service portal that reduced classification complexity to approximately 250 categories. Danske Bank also pursued tighter alignment between security and operational processes, and planned integrations with HR systems and ServiceNow Customer Service Management to extend cross organisational collaboration and service lifecycle visibility.
Governance was strengthened through an integrated risk management programme that improved control and decision making by removing information silos and centralising data on the Now Platform. ServiceNow Security Operations and the platform-wide consolidation contributed to rapid, measurable outcomes reported by the bank, including a 93% reduction in high priority incidents, a 6x improvement in time to restore services alongside a reported median time to restore services reduction of 79%, and a 90% employee adoption rate of the new portal within two weeks.
|
 |
Finastra US | Banking and Financial Services | 3100 | $842M | United States | ServiceNow | ServiceNow Security Operations | Incident Management | 2021 | n/a |
In 2021, Finastra implemented ServiceNow Security Operations to strengthen Incident Management across its IT operations and security workflows. This deployment builds on an existing ServiceNow IT Service Management foundation and aligns Security Operations with earlier ITOM work including Discovery, Service Mapping, and Event Management.
The implementation emphasizes asset and service visibility, with Discovery rolled out across 115 Finastra locations worldwide, covering physical data centers, Microsoft Azure cloud instances, and regional offices. Service Mapping was used to create end to end service topology tied to uptime and outage data, and the CMDB was populated and reconciled to achieve 100% of IT assets identified and fully audited, improving asset inventory and vulnerability context through an earlier deployment of ServiceNow Vulnerability Response.
Operational architecture spans on premises infrastructure and Microsoft Azure cloud, with Event Management integrated into existing monitoring tooling including AppDynamics, Site24x7, and SolarWinds for Microsoft Azure to surface events and drive incident prioritization. ServiceNow Security Operations and ITOM modules are coordinated to support incident triage, vulnerability linkage, and cloud migration planning, enabling teams to locate root causes and decommission physical elements once cloud equivalents are validated.
Governance and process changes focused on instrumenting the CMDB and service maps to enable proactive incident workflows and clearer compliance reporting across IT and security functions. Outcomes called out by the program include faster reaction times to IT issues, visibility across 115 office locations, and an explicit annual cost reduction of $350K attributed to ServiceNow solutions.
|
 |
Nsk | Manufacturing | 24057 | $5.3B | Japan | ServiceNow | ServiceNow Security Operations | Incident Management | 2020 | n/a |
In 2020 NSK implemented ServiceNow Security Operations as its Incident Management platform to consolidate security incident workflows across the Information Security Department and overseas offices. The deployment targeted SecOps use cases that support NSK’s role in automotive supply chains, enabling centralized tracking and compliance reporting for customer and manufacturer regulations.
NSK rolled out the Vulnerability Response feature in October 2020, followed by Security Incident Response two months later. ServiceNow Security Operations was configured to ingest automatic notifications from security and monitoring applications, assign identification numbers to incidents, prioritize responses based on business impact, and automatically capture incident history into a searchable knowledge base.
Operational coverage spans domestic operations in Japan and NSK’s overseas sites, with alerts from remote locations surfaced to the Japan team for coordinated response. The implementation leverages identification number tracking to assign cases to IT teams and to ensure end to end visibility through to resolution, and the company later launched a dedicated internal security inquiry portal using ServiceNow functionality in September 2022 to streamline employee reporting.
Governance changes included establishing a single point of contact for security inquiries, standardizing incident response procedures into the ServiceNow workflow, and delegating routine, lower risk tickets to less experienced personnel or contractors while preserving skilled analysts for complex analysis. The platform oriented processes around traceable incident records and automated knowledge capture to support regulatory evidence needs.
Outcomes recorded by NSK include time to resolve low and medium risk incidents in Japan being almost halved, about an 80 percent reduction in routine workload for highly skilled SecOps staff, and zero major security incidents in fiscal year 2021. ServiceNow Security Operations helped NSK advance its missions of responding to cybersecurity threats, managing information assets appropriately, and building trust with customers and affiliated organizations.
|
 |
Scandinavian Airlines | Transportation | 8099 | $3.9B | Sweden | ServiceNow | ServiceNow Security Operations | Incident Management | 2022 | n/a |
In 2022, Scandinavian Airlines implemented ServiceNow Security Operations to centralize cyber incident handling and strengthen its Incident Management practice, consolidating six separate systems into a single security operations platform. The deployment was positioned against a digital ecosystem of more than 350 systems, and it aligns Scandinavian Airlines ServiceNow Security Operations with enterprise cyber security incident management across an airline that operates in 34 countries and serves over 28 million passengers annually.
ServiceNow Security Operations was configured to manage the lifecycle of security threats, providing Security Incident Response capabilities, centralized dashboards, and reporting. Functional modules and capabilities implemented include incident ingestion and orchestration, automated remediation workflows, performance monitoring for business critical systems, threat hunting support, and automated ticketing that removed many manual tasks. The platform enabled SAS to register cyber threats in under 60 seconds, contain incidents in less than 10 minutes, and analyze events within the hour as part of its operational playbooks.
Operationally the ServiceNow implementation supports SAS business functions across security operations, IT visibility, and compliance, and it was framed to protect critical national transport infrastructure and passenger data including four million loyalty members. The program specified integration requirements with logistics systems, financial payments, and regulatory interfaces to support a connected operational ecosystem, reflecting the airline need to tie security incident workflows to adjacent enterprise systems.
Governance and process changes emphasized bringing security management functionality in house to increase control and insight, enabling SAS teams to own dashboards and KPI reporting such as availability of business critical systems. The rollout included automation of routine triage tasks, a shift toward cloud based SaaS workflows, and planning to extend ServiceNow usage into HR and finance as well as exploratory work on biometric access for ground staff, positioning ServiceNow Security Operations as central to SAS cyber security incident management.
|
 |
|
Leisure and Hospitality | 8000 | $1.6B | Australia | ServiceNow | ServiceNow Security Operations | Incident Management | 2017 | n/a |
|
|
|
|
Professional Services | 17670 | $4.0B | Japan | ServiceNow | ServiceNow Security Operations | Incident Management | 2022 | n/a |
|
Showing 1 to 7 of 7 entries
Buyer Intent: Companies Evaluating ServiceNow Security Operations
ARTW Buyer Intent uncovers actionable customer signals, identifying software buyers actively evaluating ServiceNow Security Operations. Gain ongoing access to real-time prospects and uncover hidden opportunities. Companies Actively Evaluating ServiceNow Security Operations for Incident Management include:
- Talan, a France based Professional Services organization with 7100 Employees
Discover Software Buyers actively Evaluating Enterprise Applications
| Logo | Company | Industry | Employees | Revenue | Country | Evaluated |
|---|---|---|---|---|---|---|
 |
Talan | Professional Services | 7100 | $971M | France | 2025-05-20 |
FAQ - APPS RUN THE WORLD ServiceNow Security Operations Coverage
ServiceNow Security Operations is a Incident Management solution from ServiceNow.
Companies worldwide use ServiceNow Security Operations, from small firms to large enterprises across 21+ industries.
Organizations such as Danske Bank, Nsk, Yokogawa Electric, Scandinavian Airlines and Avanade are recorded users of
ServiceNow Security Operations for Incident Management.
Companies using ServiceNow Security Operations are most concentrated in Banking and Financial Services, Manufacturing and Professional Services, with adoption spanning over 21 industries.
Companies using ServiceNow Security Operations are most concentrated in Denmark, Japan and Sweden, with adoption tracked across 195 countries worldwide. This global distribution highlights the popularity of ServiceNow Security Operations across Americas, EMEA, and APAC.
Companies using ServiceNow Security Operations range from small businesses with 0-100 employees - 0%, to mid-sized firms with 101-1,000 employees - 0%, large organizations with 1,001-10,000 employees - 42.86%, and global enterprises with 10,000+ employees - 57.14%.
Customers of ServiceNow Security Operations include firms across all revenue levels — from $0-100M, to $101M-$1B, $1B-$10B, and $10B+ global corporations.
Contact APPS RUN THE WORLD to access the full verified ServiceNow Security Operations customer database with detailed Firmographics such as industry, geography, revenue, and employee breakdowns as well as key decision makers in charge of Incident Management.