Senior Security Engineer

Summary

Join Guidewire’s Security team, where our mission is to build a secure, auditable, and governed data environment that protects our customers and enables innovation. We collaborate across the company to implement robust access controls, auditability, and data governance, supporting the secure delivery of data products and analytics. Our culture values teamwork, continuous improvement, and a proactive approach to security in a dynamic, cloud-first environment.
As a Senior Security Engineer, you will play a critical role in strengthening Guidewire’s platform security through hands-on technical leadership and cross-functional partnership. You will drive initiatives that implement role-based access control (RBAC), multi-factor authentication (MFA), and secure cloud infrastructure, directly supporting Guidewire’s mission to deliver trusted, innovative solutions for the world’s P&C insurers. This is an exciting opportunity to shape the future of security at a company that values curiosity, collaboration, and impact.

Job Description

What you’ll do

• Proactively partner with infrastructure, application engineering, and data analytics teams to define, promote, and implement security best practices that improve the security posture of our infrastructure.
• Work closely with business units, product teams, DevOps engineers, and SREs to embed security requirements and controls into DevOps environments and cloud platforms (AWS and GCP).
• Architect, configure, operate, and maintain infrastructure, network, and supporting software related to cloud and application infrastructure.
• Represent the Security Team in Security and Change Management Review Boards, providing expert guidance and technical leadership.
• Act as a hands-on technical Security SME, handling complex technical work to establish and maintain secure cloud environments.
• Lead major initiatives and projects aimed at improving security posture, contributing to the continuous improvement of Guidewire’s security program.
• Mentor and guide junior team members, fostering knowledge sharing and skill development.
• Contribute to advancing security domain knowledge across Guidewire through publications and presentations.
• Provide on-call support and collaborate with the Incident Response Team.
• At Guidewire, we foster a culture of curiosity, innovation, and responsible use of AI—empowering our teams to continuously leverage emerging technologies and data-driven insights to enhance productivity and outcomes.

What you’ll bringRequired

• Demonstrated ability to embrace AI and apply it to your current role as well as data-driven insights to drive innovation, productivity, and continuous improvement.
• 5-7 years of experience building and operating secure infrastructures, with a focus on Information Security and DevSecOps.
• Deep understanding and hands-on experience with secure product development, threat modeling, secure design principles, secure coding, network security, identity management, authentication, encryption, container security (EKS, ECS), penetration testing, code analysis, security testing, risk assessment, and incident response.
• Strong knowledge of attacker tools, techniques, and processes, and a broad array of defenses and mitigations.
• Familiarity with enterprise security controls and best practices for Windows, Linux, and Mac systems.
• Proficiency in core security concepts, including cloud (AWS required, GCP preferred), networking, and architecture.
• Experience collaborating with product and DevOps engineers/SREs on security requirements in DevOps and cloud environments.
• Excellent communication, collaboration, and interpersonal skills, with the ability to articulate complex security concepts in simple business terms.
• Ability to lead major initiatives and projects, collaborate with stakeholders across geographies, and coach junior engineers.

Preferred

• Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent experience.
• Experience with CI/CD tools (TeamCity, CodeBuild, Github Actions, Jenkins).
• Programming experience (Python or Go) for automation.
• Experience with infrastructure as code (Terraform, CloudFormation).
• Experience with configuration management tools (Ansible, Salt, Puppet, Chef).
• Experience with cloud security services (IAM, CloudTrail, GuardDuty, Organizations and Service Control Policies, Shield Advanced).

Your Impact

We believe in clarity and setting you up for success. In your first six months, you will lead the implementation of RBAC and MFA across Guidewire’s cloud environments, partner with engineering teams to embed security controls into new and existing infrastructure, and drive measurable improvements in auditability and access governance. Your work will directly support Guidewire’s platform security, enabling trustworthy platform-level reporting and financial transparency, and ensuring that governed data products and analytics are delivered securely. Over time, your influence will extend across the company, shaping security practices and supporting Guidewire’s mission to transform the insurance industry through innovation and trust.

What’s in it for you

The people we employ give their all, and in return, we offer flexibility wherever we can, such as:

• Flexible work environment
• Health and wellness benefits
• Paid time off programs including volunteer time off
• Market-competitive pay and incentive programs
• Continual development and internal career growth opportunities
• All new hires participate in our in-person orientation process to ensure a strong start at Guidewire.

The US base salary range for this full-time position is $126,000 - $190,000 . Your base pay will depend on your experience, skills, education, training, and location among other factors. All full-time positions or part-time roles working 30 hours or more a week at Guidewire are eligible for benefits that support their health and well-being including health, dental, and vision insurance, paid time off, and a company sponsored retirement plan. In addition, some roles may be eligible for the annual company bonus plan, commissions, and/or long term incentive awards which are contingent on a variety of factors including, but not limited to, company and employee performance.

Disability Accommodations and Guidewire’s Appeals Process. Guidewire provides accommodations to the hiring process to create a fair opportunity for candidates with disabilities to contend for open positions. Accommodation requests should be directed to [email protected]. If things do not go as hoped, we invite you to use our appeals process. Guidewire promises to independently review any denied accommodation and any decision not to offer you the position. The appeals process is the same in either case. Within five business days of receiving a notice of denial of an accommodation, or receiving a notice of your non-selection for a vacancy, e-mail [email protected] to make an appeal. Guidewire will assign a new decision-maker to review the request and/or hiring decision, who will then notify you in writing of a decision within 10 business days.

About Guidewire

Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently. We combine digital, core, analytics, and AI to deliver our platform as a cloud service. More than 540+ insurers in 40 countries, from new ventures to the largest and most complex in the world, run on Guidewire.

As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1600+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of applications that accelerate integration, localization, and innovation.

For more information, please visit www.guidewire.com and follow us on Twitter: @Guidewire_PandC.

Guidewire Software, Inc. is proud to be an equal opportunity and affirmative action employer. We are committed to an inclusive workplace, and believe that a diversity of perspectives, abilities, and cultures is a key to our success. Qualified applicants will receive consideration without regard to race, color, ancestry, religion, sex, national origin, citizenship, marital status, age, sexual orientation, gender identity, gender expression, veteran status, or disability. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.