Senior Information Security Engineer
Tools and Detection-Toronto, Canada, Remote
Posted on 3/25/2023
INACTIVE
Recurring revenue software
Company Overview
Guidewire's mission is the be the platform insurers trust to engage, innovate, and grow efficiently. The company is building a data-backed insurance solution.
Data & Analytics
Fintech
Company Stage
Series A
Total Funding
$348.6M
Founded
2001
Headquarters
San Mateo, California
Growth & Insights
Headcount
6 month growth
↑ 0%1 year growth
↑ 3%2 year growth
↑ 10%Locations
Toronto, ON, Canada
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Bash
Kubernetes
Python
Management
Git
Docker
AWS
Perl
REST APIs
CategoriesNew
DevOps & Infrastructure
Software Engineering
Requirements
- Experience administrating Security Orchestration, Automation and Response tool (Swimlane, Demisto, Phantom or similar tools) and coding custom use cases/playbooks within the tool
- Ability to automate solutions to repetitive problems/tasks using scripting languages such as Perl, Python, PowerShell, or Bash
- Knowledge of Identity management. Hands on experience in managing below technologies: AV, DLP, SIEM, EDR, NGFW, Cloud Security Controls
- Broad knowledge of Active Directory, Microsoft Security products, Identity Management, network security, endpoint security, cloud security, vulnerability management, security incident response and malwares
Responsibilities
- Develop and implement SOC (Security Operation Center) and Incident Response systems integrations through automation and orchestration including Rest API and Python in AWS
- Collaborate with IT and Engineering teams globally in designing, assessing, and implementing security controls to improve the overall security posture of our Infrastructure
- Translate analyst and researcher feature requirements and/or PoC (Proof of Concept) scripts and tools into full-fledged features, driving process automation
- Document's security tools and systems, trains Security Operations staff on tool use, and supports the day-to-day SecOps staff in the security mission
- Constantly perform security monitoring gap analysis using MITRE ATT&CK/ similar framework and increase detection coverage. Improving Signal to Noise Ratio, Developing Incident Response Workflow that can be automated & writing SOPs for SOC
- Work with existing deployment infrastructure to regularly deploy releases using modern tools such as git and CI/CD (Docker, Kubernetes)
- Develops and publishes metrics and dashboards demonstrating our security posture, event activity and to drive operational improvements