Location: Canada - Remote
Employment Type: Full-time
Team: Go To Market
Work cross-functionally with colleagues in client-facing roles, data engineering, DevOps, data science/modeling, and product in a growing environment to assess, research, and analyze cyber security risks (vulnerabilities, threats, and attacks on enterprise products and environments) and controls.
Research, evaluate, and understand security controls as they relate to risk management including, but not limited to Anti-Malware, IDS, Content Filter, DNS Security, Vulnerability Management, Endpoint Detection & Response, Mobile Device Management, SIEM and Cloud Security and technology.
Develop hypotheses about cyber risk measurement techniques, and conduct EDA on new data sources, develop metrics and documentation, and make recommendations based on documented assessment of cyber risk implications.
Maintain up-to-date understanding of security threats, countermeasures, and security tools. Collaborate with our engineering team to build our solution capabilities.
Craft and radiate innovative thought-pieces to enhance the brand in the broader risk marketplace.
Support client teams to champion our cyber tools within their organization.
Serve as an expert to support marketing campaigns and sales activities.
Influence and work with senior management and colleagues across Guidewire’s other departments.
10-15 years of experience and bachelor’s or master’s degree in a related field or a recognized industry certificate, with preference for certifications with a practical component (e.g., SANS GIAC, Comp TIA, CEH, ECSA, SSCP).
Broad knowledge of network security, endpoint security, cloud-based and distributed infrastructure security, vulnerability management, enterprise security controls, security incident response, cyber threat intelligence and analysis (TTPs, IOCs). security processes, authentication and security protocols, cryptography and application security, container and multi-tier web applications, security orchestration, large scale data pipelines, and WAF and virtual firewalls.
Working knowledge of at least three of the following areas: secure cloud deployment, application whitelisting, security engineering, incident handling, vulnerability analysis, active adversary threat management, penetration testing, encryption technologies, cyber threat intelligence and analysis.
Strong problem-solving, time management and analytical skills.
Demonstrated ability to quickly pick up new technical concepts and skills.
Understanding of security and risk frameworks such as MITRE ATT&CK, CIS, and VERIS, NIST CSF, NIST SP 800-series.
Commitment to learn from and work with peers to grow and expand your cybersecurity knowledge and expertise.
Strong strategic business acumen married with innate execution focus, detail orientation, and superb communication.
Experience in the Insurance or Financial Services sectors.
Excellent written, oral and presentation skills and the ability to drive to agreement using a combination of persuasion, negotiation and rational judgement.
#cybersecurity #risk #insurance #p&c #propertyandcasualty #riskmanagement #riskassessment #vulerabilitymanagement #nist #networksecurity #endpointsecurity #aws #amazonwebservices #guidewire #thoughtleadership
Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently.
Guidewire combines core, data, digital, analytics, and AI to deliver our platform as a cloud service. More than 400 insurers, including the largest and most complex in the world, run on Guidewire.
As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1000+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of add-ons that accelerate integration, localization, and innovation.
Guidewire Software Inc. provides equal employment opportunities to all applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.