Vulnerability Management Engineer

India - Bengaluru

Guidewire Software

Elevate your P&C insurance with Guidewire's industry-leading software! Streamline workflows, enhance customer experience, and drive growth. Learn more today!

View company page

We are looking for a Security Engineer on our Threat and Vulnerability Management Team. What we are looking for is someone who can navigate complex threat scenarios and remain committed to decreasing the overall attack surface of the company. Vulnerability Management remains a top priority at Guidewire, and you will be responsible for implementing and managing infrastructure vulnerability tools and processes in a cloud environment. This includes identifying and evaluating vulnerabilities and supporting remediation activities.

Responsibilities:

  • Ensure vulnerability scans / assessments are run periodically in line with policies and standards across Guidewire Infrastructure
  • Review vulnerability assessments and security audits to identify security risks and drive improvements necessary to mitigate those risks
  • Perform technical analysis of vulnerabilities and support in the development of corrective action plans
  • Review results of vulnerability assessments and informs management of vulnerabilities, risks and mitigations
  • Provide technical expertise to the vulnerability assessment team responsible for the testing, validating, and the security of the company's applications, servers, and networks
  • Drive remediation by working with various teams in a collaborative manner with always providing them the context
  • Support incident response activities and reporting
  • Ensure security leadership is aware of current and emerging threats and vulnerabilities
  • Supports the end-to-end vulnerability process, including reporting of vulnerabilities and escalation of critical vulnerabilities
  • Document security guidance, process and policy around the vulnerability management program

Requirements:

  • Experience required 2-4 Years
  • Prior experience with managing and configuring any vulnerability management tool such as Rapid 7, Tenable, Qualys, etc.
  • Persuasive mindset with strong relationship management skills to work with various stakeholders proactively on vulnerability assessment and remediation
  • Good understanding of enterprise security controls, network protocols and operating system (Windows/Linux environments)
  • Hands on experience handling vulnerability management operations for cloud workloads at scale in AWS/Azure
  • Ability to conduct thorough analysis and recommend data driven actions
  • Results-oriented, high energy, self-motivated and love for a team environment.

Nice to have:

  • Ability to automate solutions to repetitive problems/tasks using scripting languages such as Perl, Python, PowerShell or Bash.
  • Certifications from SANS, Offensive Security, ISC2, AWS is a plus.
About Guidewire
Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently. We combine digital, core, analytics, and AI to deliver our platform as a cloud service. More than 450 insurers, from new ventures to the largest and most complex in the world, run on Guidewire.
As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1000+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of add-ons that accelerate integration, localization, and innovation.
For more information, please visit www.guidewire.com and follow us on Twitter: @Guidewire_PandC.
Guidewire Software Inc. provides equal employment opportunities to all applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Tags: Analytics Audits AWS Azure Bash C Cloud Incident response Linux Offensive security Perl PowerShell Python Qualys R&D SANS Scripting Vulnerabilities Vulnerability management Vulnerability scans Windows

Region: Asia/Pacific
Country: India
Job stats:  9  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.