Technical Manager, Threat and Detection Engineering

Summary

We are seeking a highly skilled and experienced Technical Manager, Threat Detection Engineering, to lead our Threat Detection Engineering team. This position will be a hands-on role requiring a strong technical background in developing customized security detections, conducting threat hunting, and responding to incidents, coupled with proven experience in people management. The ideal candidate will drive the advancement of our detection engineering program, collaborating with cross-functional teams and security experts to identify attack vectors and cultivate high-fidelity detection signals, while also mentoring and guiding team members to achieve collective success.

Job Description

Responsibilities:

• Lead a high-performing, lean team in implementing a risk-based security strategy, thereby facilitating the prioritization of crucial security initiatives.

• Enhance the threat detection program by identifying gaps and mitigating risks through effective detective controls, adopting a threat-informed defense strategy.

• Engage with the Security Engineering and the Infrastructure Security team to develop strategic detective and proactive controls across various security technologies.

• Develop and deploy tested, validated, and CI/CD-integrated detections following a comprehensive "detections as code" lifecycle.

• Cultivate and sustain strong partnerships with stakeholders to deliver detection as a service capability.

• Participate in Purple Team exercises focusing on discovering improvement opportunities.

• Establish and monitor metrics for the detection engineering process to demonstrate progress toward objectives and identify deficiencies in detection coverage.

Requirements:

• Demonstrate ability to collaborate effectively with various security teams and stakeholders to establish and maintain detection capabilities.

• Proven experience in developing detections, conducting threat hunting, or responding to incidents across diverse platforms.

• Proficiency in reviewing, analyzing, and normalizing logging and observability requirements to support detection and response initiatives.

• Familiarity with the risks impacting SaaS products and workstations. SaaS experience would be a plus

• A commitment to an automation-first approach for scalable security solutions.

• Experience with development and programmatic data handling in a high-level programming language (e.g., Go, Python).

• Experience with AWS Cloud provider (or Azure/GCP) is required.

• A collaborative individual who prioritizes the collective success of the team.

The US base salary range for this full-time position is $139,000 - $209,000 . Your base pay will depend on your experience, skills, education, training, and location among other factors. All full-time positions or part-time roles working 30 hours or more a week at Guidewire are eligible for benefits that support their health and well-being including health, dental, and vision insurance, paid time off, and a company sponsored retirement plan. In addition, some roles may be eligible for the annual company bonus plan, commissions, and/or long term incentive awards which are contingent on a variety of factors including, but not limited to, company and employee performance.

Disability Accommodations and Guidewire’s Appeals Process. Guidewire provides accommodations to the hiring process to create a fair opportunity for candidates with disabilities to contend for open positions. Accommodation requests should be directed to [email protected]. If things do not go as hoped, we invite you to use our appeals process. Guidewire promises to independently review any denied accommodation and any decision not to offer you the position. The appeals process is the same in either case. Within five business days of receiving a notice of denial of an accommodation, or receiving a notice of your non-selection for a vacancy, e-mail [email protected] to make an appeal. Guidewire will assign a new decision-maker to review the request and/or hiring decision, who will then notify you in writing of a decision within 10 business days.

About Guidewire

Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently. We combine digital, core, analytics, and AI to deliver our platform as a cloud service. More than 540+ insurers in 40 countries, from new ventures to the largest and most complex in the world, run on Guidewire.

As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1600+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of applications that accelerate integration, localization, and innovation.

For more information, please visit www.guidewire.com and follow us on Twitter: @Guidewire_PandC.

Guidewire Software, Inc. is proud to be an equal opportunity and affirmative action employer. We are committed to an inclusive workplace, and believe that a diversity of perspectives, abilities, and cultures is a key to our success. Qualified applicants will receive consideration without regard to race, color, ancestry, religion, sex, national origin, citizenship, marital status, age, sexual orientation, gender identity, gender expression, veteran status, or disability. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.