Post Jobs

Senior Information Security Engineer – US Remote Option

Full Time

Website Guidewire Software

We are looking for an experienced, Senior Information Security Engineer who will partner with cross-functional teams in a rapidly growing environment to assess, analyze, and optimize operational tasks. You will work in a highly dynamic environment, along with peers and senior security analysts, to research and assess vulnerabilities, threats, and attacks on enterprise products and environments. The successful candidate will have strong problem-solving, time management and analytical skills. 

Responsibilities

  • Collaborate with IT and Engineering teams globally in designing, assessing, and implementing security controls to improve the overall security posture of our Infrastructure. 
  • Research, evaluate, recommend, configure, maintain, and troubleshoot security infrastructure including, but not limited to Anti-Malware console, IDS, Content Filter, DNS Security, Vulnerability Management, Endpoint Detection & Response, Mobile Device Management, SIEM and Cloud Security. 
  • Document’s security tools and systems, trains Security Operations staff on tool use, and supports the day-to-day SecOps staff in the security mission 
  • Hands-on experience with Amazon Web Services (AWS) in enabling centralized security logging strategy across multiple accounts, onboarding logs, and creating custom parsers for various AWS services. 
  • Constantly perform security monitoring gap analysis using MITRE ATT&CK/ similar framework and increase detection coverage. Improving Signal to Noise Ratio, Developing Incident Response Workflow that can be automated & writing SOPs for SOC 
  • Independent sound decision making skill to review security implications, for change and access requests by discussing with the various stakeholders and generate a consensus on the proposed solution 
  • Develops and publishes metrics and dashboards demonstrating our security posture, event activity and to drive operational improvements 

Requirements

  • Knowledge of Identity management. Hands on experience in one or more of the below: AV, DLP, SIEM, CrowdStrike EDR, Palo Alto firewalls, Cloud Security Controls 
  • Broad knowledge of Active Directory, Microsoft Security products, Identity Management, network security, endpoint security, cloud security, vulnerability management, security incident response and malwares. 
  • In-depth knowledge of security monitoring and incident response. 
  • Ability to automate solutions to repetitive problems/tasks using scripting languages such as Perl, Python, PowerShell, or Bash.
  • Good to have
  • Exposure to incident response of cloud-based and distributed infrastructures are a plus. 
  • Possess any technical security certifications (e.g., SANS, Offensive Security, Azure/AWS Security Engineer, or any other industry standard certifications) is a plus 
Let us apply for you (from 10$)

To apply for this job please visit jobs.lever.co.