Technical Manager, Threat and Detection Engineering

Guidewire Software·Remote(United States)
Software Development
Programmatic

WFA Digital Insight

As demand for cybersecurity specialists grows by 31% annually, Guidewire seeks a seasoned Technical Manager to spearhead its threat detection engineering team. With the remote work boom, companies are shifting focus towards robust security solutions. Guidewire stands out with its commitment to innovation and employee development. Before applying, candidates should be aware of the evolving threat landscape and the importance of collaborative leadership in this space.

Job Description

About the Role

The Technical Manager, Threat and Detection Engineering, plays a pivotal role in Guidewire's security infrastructure. This hands-on leadership position demands a unique blend of technical proficiency in developing customized security detections and proven experience in managing high-performing teams. The role entails driving the advancement of Guidewire's detection engineering program, fostering a culture of innovation, and ensuring the team's collective success. Guidewire operates in a dynamic environment where security is paramount. As such, the Technical Manager must be adept at identifying attack vectors, cultivating high-fidelity detection signals, and mentoring team members to achieve these goals. The position requires collaboration with cross-functional teams, including Security Engineering and Infrastructure Security, to develop and implement strategic detective and proactive controls across various security technologies.

What You Will Do

  • Lead a lean team in implementing a risk-based security strategy, facilitating the prioritization of crucial security initiatives.
  • Enhance the threat detection program by identifying gaps, mitigating risks, and adopting a threat-informed defense strategy.
  • Engage with Security Engineering and Infrastructure Security teams to develop strategic detective and proactive controls.
  • Develop and deploy tested, validated, and CI/CD-integrated detections following a comprehensive 'detections as code' lifecycle.
  • Cultivate and sustain strong partnerships with stakeholders to deliver detection as a service capability.
  • Participate in Purple Team exercises to discover improvement opportunities.
  • Establish and monitor metrics for the detection engineering process to demonstrate progress and identify deficiencies in detection coverage.

What We Are Looking For

  • Proven experience in developing detections, conducting threat hunting, or responding to incidents across diverse platforms.
  • Proficiency in reviewing, analyzing, and normalizing logging and observability requirements.
  • Familiarity with the risks impacting SaaS products and workstations; SaaS experience is a plus.
  • Commitment to an automation-first approach for scalable security solutions.
  • Experience with development and programmatic data handling in a high-level programming language (e.g., Go, Python).
  • Experience with AWS Cloud provider (or Azure/GCP).
  • A collaborative individual who prioritizes team success.

Nice to Have

  • Experience with cloud security and compliance frameworks.
  • Knowledge of security information and event management (SIEM) systems.
  • Familiarity with Agile development methodologies.

Benefits and Perks

  • Competitive salary range (
    39,000 - $209,000).
  • Benefits that support health and well-being, including health, dental, and vision insurance.
  • Paid time off.
  • Company-sponsored retirement plan.
  • Potential eligibility for annual company bonus plan, commissions, and/or long-term incentive awards.

How to Stand Out

  • Ensure your resume and cover letter highlight specific examples of threat detection and team leadership experience.
  • Be prepared to discuss your approach to developing and deploying detections as well as your experience with cloud providers like AWS.
  • Showcase your understanding of the current threat landscape and how you stay updated with the latest security trends.
  • Prepare examples of how you've collaborated with cross-functional teams to achieve security goals.
  • Consider including certifications like CompTIA Security+ or CISSP in your application to stand out.
  • Practice explaining complex technical concepts in simple terms to demonstrate your communication skills.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.