Job Description

We are seeking a highly experienced Senior Cloud Security Engineer to collaborate with cross-functional teams within a rapidly expanding environment. The ideal candidate must possess demonstrable expertise in the design, development, and maintenance of secure cloud infrastructure technologies. This role involves partnering with teams across the wider Security Organization to build robust tooling and workflows that significantly improve our overall Guidewire security posture.

Responsibilities
● The engineer will be responsible for embedding robust security measures throughout the entire technology stack, ranging from infrastructure-as-code to the live cloud environment.
● This role requires the individual to lead projects, provide guidance to engineering teams, conduct in-depth investigations into escalated security events, perform incident triage, and determine root causes.
● Direct cloud security initiatives through collaboration with engineering, product development, and infrastructure teams is a core responsibility.
● Integrating security controls and testing methodologies into Continuous Integration/Continuous Deployment (CI/CD) pipelines is essential to facilitate the early identification and mitigation of vulnerabilities.
● Management of vulnerability discovery and remediation workflows utilizing cloud security tools is required.
● Investigating emerging security threats and developing appropriate detections and proactive controls to secure infrastructure.

Requirements
● A minimum of five years of experience in security engineering, with a specialized focus on cloud and infrastructure security, is mandatory.
● The ideal candidate must possess hands-on experience with cloud-native security tools (e.g., Wiz, Orca, Prisma Cloud), practical application of DevSecOps methodologies, and adherence to established compliance frameworks such as NIST 800-53 and CIS Controls.
● Must have hands-on practical experience with major public cloud infrastructure (AWS/GCP)
● Experience in identifying cloud misconfigurations, performing Infrastructure-as-Code (IaC) scanning, and implementing secure software development lifecycle (SSDLC) practices is required.
● Experience with container and orchestration security mechanisms (e.g., Kubernetes, Docker).
● Prior experience in the design and deployment of detection logic, security controls, and automated guardrails.
● Proficiency in at least one scripting or programming language (e.g., Python, Go, etc.) is required, along with experience in deploying and managing cloud resources via Infrastructure as Code.

Good to have:

● Certifications from SANS, Offensive Security, ISC2, AWS, Azure, or GCP are considered advantageous.

About Guidewire

Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently. We combine digital, core, analytics, and AI to deliver our platform as a cloud service. More than 540+ insurers in 40 countries, from new ventures to the largest and most complex in the world, run on Guidewire.

As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1600+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of applications that accelerate integration, localization, and innovation.

For more information, please visit www.guidewire.com and follow us on Twitter: @Guidewire_PandC.

Guidewire Software, Inc. is proud to be an equal opportunity and affirmative action employer. We are committed to an inclusive workplace, and believe that a diversity of perspectives, abilities, and cultures is a key to our success. Qualified applicants will receive consideration without regard to race, color, ancestry, religion, sex, national origin, citizenship, marital status, age, sexual orientation, gender identity, gender expression, veteran status, or disability. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.