Senior Information Security Engineer
Tools and Detection-Toronto, Canada, Remote
Posted on 3/25/2023
INACTIVE
Guidewire

1,001-5,000 employees

Recurring revenue software
Company Overview
Guidewire's mission is the be the platform insurers trust to engage, innovate, and grow efficiently. The company is building a data-backed insurance solution.
Data & Analytics
Fintech

Company Stage

Series A

Total Funding

$348.6M

Founded

2001

Headquarters

San Mateo, California

Growth & Insights
Headcount

6 month growth

0%

1 year growth

3%

2 year growth

10%
Locations
Toronto, ON, Canada
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Bash
Kubernetes
Python
Management
Git
Docker
AWS
Perl
REST APIs
CategoriesNew
DevOps & Infrastructure
Software Engineering
Requirements
  • Experience administrating Security Orchestration, Automation and Response tool (Swimlane, Demisto, Phantom or similar tools) and coding custom use cases/playbooks within the tool
  • Ability to automate solutions to repetitive problems/tasks using scripting languages such as Perl, Python, PowerShell, or Bash
  • Knowledge of Identity management. Hands on experience in managing below technologies: AV, DLP, SIEM, EDR, NGFW, Cloud Security Controls
  • Broad knowledge of Active Directory, Microsoft Security products, Identity Management, network security, endpoint security, cloud security, vulnerability management, security incident response and malwares
Responsibilities
  • Develop and implement SOC (Security Operation Center) and Incident Response systems integrations through automation and orchestration including Rest API and Python in AWS
  • Collaborate with IT and Engineering teams globally in designing, assessing, and implementing security controls to improve the overall security posture of our Infrastructure
  • Translate analyst and researcher feature requirements and/or PoC (Proof of Concept) scripts and tools into full-fledged features, driving process automation
  • Document's security tools and systems, trains Security Operations staff on tool use, and supports the day-to-day SecOps staff in the security mission
  • Constantly perform security monitoring gap analysis using MITRE ATT&CK/ similar framework and increase detection coverage. Improving Signal to Noise Ratio, Developing Incident Response Workflow that can be automated & writing SOPs for SOC
  • Work with existing deployment infrastructure to regularly deploy releases using modern tools such as git and CI/CD (Docker, Kubernetes)
  • Develops and publishes metrics and dashboards demonstrating our security posture, event activity and to drive operational improvements