Senior Information Security Engineer, Tools and Detection- Toronto, Canada (Remote)
Canada - Toronto
Applications have closed
Guidewire Software
Elevate your P&C insurance with Guidewire's industry-leading software! Streamline workflows, enhance customer experience, and drive growth. Learn more today!Responsibilities
- Develop and implement SOC (Security Operation Center) and Incident Response systems integrations through automation and orchestration including Rest API and Python in AWS.
- Collaborate with IT and Engineering teams globally in designing, assessing, and implementing security controls to improve the overall security posture of our Infrastructure.
- Translate analyst and researcher feature requirements and/or PoC (Proof of Concept) scripts and tools into full-fledged features, driving process automation
- Document’s security tools and systems, trains Security Operations staff on tool use, and supports the day-to-day SecOps staff in the security mission
- Constantly perform security monitoring gap analysis using MITRE ATT&CK/ similar framework and increase detection coverage. Improving Signal to Noise Ratio, Developing Incident Response Workflow that can be automated & writing SOPs for SOC
- Work with existing deployment infrastructure to regularly deploy releases using modern tools such as git and CI/CD (Docker, Kubernetes)
- Develops and publishes metrics and dashboards demonstrating our security posture, event activity and to drive operational improvements
Requirements
- Experience administrating Security Orchestration, Automation and Response tool (Swimlane, Demisto, Phantom or similar tools) and coding custom use cases/playbooks within the tool.
- Ability to automate solutions to repetitive problems/tasks using scripting languages such as Perl, Python, PowerShell, or Bash.
- Knowledge of Identity management. Hands on experience in managing below technologies: AV, DLP, SIEM, EDR, NGFW, Cloud Security Controls
- Broad knowledge of Active Directory, Microsoft Security products, Identity Management, network security, endpoint security, cloud security, vulnerability management, security incident response and malwares.
Good to have
- Exposure to incident response of cloud-based and distributed infrastructures are a plus.
- Possess any technical security certifications (e.g., SANS, Offensive Security, Azure/AWS Security Engineer, or any other industry standard certifications) is a plus
Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently. We combine digital, core, analytics, and AI to deliver our platform as a cloud service. More than 450 insurers, from new ventures to the largest and most complex in the world, run on Guidewire.
As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1000+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of add-ons that accelerate integration, localization, and innovation.
For more information, please visit www.guidewire.com and follow us on Twitter: @Guidewire_PandC.
Guidewire Software Inc. provides equal employment opportunities to all applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Analytics APIs Automation AWS Azure Bash C CI/CD Cloud Docker EDR Endpoint security Incident response Kubernetes MITRE ATT&CK Monitoring Network security NGFW Offensive security Perl PowerShell Python R&D REST API SANS Scripting SecOps SIEM SOC Vulnerability management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs