Summary

We are looking for an experienced, Senior Information Security Analyst to join our team. As a member of Cyber Security Incident Response Team (CSIRT), the successful candidate will need to apply their forensics, log analysis and malware triage skills to solve complex intrusion alerts. You will be responsible for interpreting, analyzing, and correlating complex security events from a distributed and global environment to keep Guidewire secured. You will also work closely and collaborate with internal and external groups to conduct investigation and resolve security alerts from cloud security perspective.

Job Description

Responsibilities:

• Provide technical, hands-on incident investigation and support and serve as a primary point of contact with management.
• Participate in the incident response and investigation process for identified and escalated security events. Additionally, track, document and close post incident response action items. 
• Perform network and system forensics in response to security alerts both in on-prem and cloud (AWS and Azure).
• Optimize and customize security-monitoring tools in order to improve detection.
• Understanding of the tactics, techniques and procedures of advanced attackers, to hunt for signs of APT activities.
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences.
• Evaluates projects to ensure proper security requirements and work actively with stakeholders on corporate-wide information security project planning and documentation
• Lead and train junior incident responders in the steps to take to investigate and resolve computer security incidents.

Requirements:

• Minimum 5-7 years of hands-on experience in cybersecurity incident response, threat detection or related role.
• Expertise in incident response tools (SIEM, EDR, IDS/IPS, Firewalls etc.)
• Strong knowledge of attack vectors, threat hunting etc (Good to have:  malware analysis and digital forensics)
• Deep understanding of operating systems (Windows, Linux, macOS) and their associated security mechanisms.
• Experience with cloud security and incident response in environments such as AWS and Google Cloud.
• Solid understanding of network protocols and architecture.
• Ability to automate solutions to repetitive problems/tasks using scripting languages such as Perl, Python, PowerShell or Bash.
• Ability to leverage multiple forms of communication to articulate complex concepts to both technical and non-technical staff, including senior management.
• Great interpersonal skills and love for a team environment.

Nice to have:

• Exposure to incident response of cloud-based and distributed infrastructures are a plus.
• Certifications from SANS, Offensive Security, ISC2 is a plus.

The Canadian CAD base salary range for this full-time position is $107,000 - $134,000 . Your base pay will depend on your experience, skills, education, training, and location among other factors. All full-time positions or part-time roles working 30 hours or more a week at Guidewire are eligible for benefits that support their health and well-being including health, dental, and vision insurance, paid time off, and a company sponsored retirement plan. In addition, some roles may be eligible for the annual company bonus plan, commissions, and/or long term incentive awards which are contingent on a variety of factors including, but not limited to, company and employee performance.

About Guidewire

Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently. We combine digital, core, analytics, and AI to deliver our platform as a cloud service. More than 540+ insurers in 40 countries, from new ventures to the largest and most complex in the world, run on Guidewire.

As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1600+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of applications that accelerate integration, localization, and innovation.

For more information, please visit www.guidewire.com and follow us on Twitter: @Guidewire_PandC.

Guidewire Software, Inc. is proud to be an equal opportunity and affirmative action employer. We are committed to an inclusive workplace, and believe that a diversity of perspectives, abilities, and cultures is a key to our success. Qualified applicants will receive consideration without regard to race, color, ancestry, religion, sex, national origin, citizenship, marital status, age, sexual orientation, gender identity, gender expression, veteran status, or disability. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.