Senior Information Security Analyst

We are looking for an experienced, Senior Information Security Analyst to join our team. As a member of Cyber Security Incident Response Team (CSIRT), the successful candidate will need to apply their forensics, log analysis and malware triage skills to solve complex intrusion alerts. You will be responsible for interpreting, analyzing, and correlating complex security events from a distributed and global environment to keep Guidewire secured. You will also work closely and collaborate with internal and external groups to conduct investigation and resolve security alerts from cloud security perspective.

Responsibilities:

• Provide technical, hands-on incident investigation and support and serve as a primary point of contact with management.
• Participate in the incident response and investigation process for identified and escalated security events. Additionally, track, document and close post incident response action items. 
• Perform network and system forensics in response to security alerts both in on-prem and cloud (AWS and Azure).
• Optimize and customize security-monitoring tools in order to improve detection.
• Understanding of the tactics, techniques and procedures of advanced attackers, to hunt for signs of APT activities.
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences.
• Evaluates projects to ensure proper security requirements and work actively with stakeholders on corporate-wide information security project planning and documentation
• Lead and train junior incident responders in the steps to take to investigate and resolve computer security incidents.

Requirements:

• Minimum 5-7 years of hands-on experience in cybersecurity incident response, threat detection or related role.
• Expertise in incident response tools (SIEM, EDR, IDS/IPS, Firewalls etc.)
• Strong knowledge of attack vectors, threat hunting etc (Good to have:  malware analysis and digital forensics)
• Deep understanding of operating systems (Windows, Linux, macOS) and their associated security mechanisms.
• Experience with cloud security and incident response in environments such as AWS and Google Cloud.
• Solid understanding of network protocols and architecture.
• Ability to automate solutions to repetitive problems/tasks using scripting languages such as Perl, Python, PowerShell or Bash.
• Ability to leverage multiple forms of communication to articulate complex concepts to both technical and non-technical staff, including senior management.
• Great interpersonal skills and love for a team environment.

Nice to have:

• Exposure to incident response of cloud-based and distributed infrastructures are a plus.
• Certifications from SANS, Offensive Security, ISC2 is a plus.

#LI_Remote#LI-PN1#feature#incidentresponse #saas #aws #applicationsecurity #threatdetection
About Guidewire
Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently. We combine digital, core, analytics, and AI to deliver our platform as a cloud service. More than 540+ insurers in 40 countries, from new ventures to the largest and most complex in the world, run on Guidewire.
As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1600+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of applications that accelerate integration, localization, and innovation.
For more information, please visit www.guidewire.com and follow us on Twitter: @Guidewire_PandC.
Guidewire Software, Inc. is proud to be an equal opportunity and affirmative action employer. We are committed to an inclusive workplace, and believe that a diversity of perspectives, abilities, and cultures is a key to our success. Qualified applicants will receive consideration without regard to race, color, ancestry, religion, sex, national origin, citizenship, marital status, age, sexual orientation, gender identity, gender expression, veteran status, or disability. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.
Disability Accommodations and Guidewire’s Appeals Process. Guidewire provides accommodations to the hiring process to create a fair opportunity for candidates with disabilities to contend for open positions. Accommodation requests should be directed to Accommodations@guidewire.com. If things do not go as hoped, we invite you to use our appeals process. Guidewire promises to independently review any denied accommodation and any decision not to offer you the position. The appeals process is the same in either case. Within five business days of receiving a notice of denial of an accommodation, or receiving a notice of your non-selection for a vacancy, e-mail Accommodations@guidewire.com to make an appeal. Guidewire will assign a new decision-maker to review the request and/or hiring decision, who will then notify you in writing of a decision within 10 business days.