Vulnerability Management Engineer

Job Description

Summary We are looking for a Security Engineer on our Vulnerability Management Team. What we are looking for is someone who can navigate complex threat scenarios and remain committed to decreasing the overall attack surface of the company. Vulnerability Management remains a top priority at Guidewire, and you will be responsible for implementing and managing infrastructure vulnerability tools and processes in a cloud environment. This includes identifying and evaluating vulnerabilities, cloud misconfigurations and supporting remediation activities. Job Description Responsibilities Ensure vulnerability scans / assessments are run periodically in line with policies and standards across Guidewire Infrastructure Review vulnerability assessments and security audits to identify security risks and drive improvements necessary to mitigate those risks Provide security guidance to Cloud Engineering teams encompassing perimeter, misconfigurations, asset visibility, policies, container, patching cadence, and vulnerability scanning. Provide technical expertise to the vulnerability assessment team responsible for the testing, validating, and the security of the companys applications, servers, and networks Improve and mature vulnerability reporting to key stakeholders, and drive remediation efforts by communicating, clearly articulating, and prioritizing risk and impact to all stakeholders to convey the urgency and need to remediate a vulnerability/cloud misconfiguration. Support incident response activities and reporting Ensure security leadership is aware of current and emerging threats and vulnerabilities Supports the end-to-end vulnerability process, including reporting of vulnerabilities and escalation of critical vulnerabilities Document security guidance, process and policy around the vulnerability management program Requirements 5 years of relevant experience Prior experience with managing and configuring any vulnerability management tool such as Rapid 7, Qualys, Orca, Prisma, Wiz, etc. Persuasive mindset with strong relationship management skills to work with various stakeholders proactively on vulnerability assessment and remediation Ability to automate solutions to repetitive problems/tasks using scripting languages Good understanding of enterprise security controls, network protocols and operating system (Windows/Linux environments) Hands on experience handling vulnerability management operations for cloud workloads at scale in AWS/Azure Ability to conduct thorough analysis and recommend data driven actions Results-oriented, high energy, self-motivated and love for a team environment. Nice to have: Certifications from SANS, Offensive Security, ISC2, AWS is a plus.