Job details

Principal Security Engineer/ Architect - Big Data - San Mateo, CA -

  • Department: Product Development
  • Location: San Mateo, CA, USA
  • Country: USA

Are you passionate about building and securing large scale multi-tenant cloud native data platforms? Do you have prior experience in securing data platform / data lake and analytics SaaS services in public cloud? Do you have expertise in modern Big Data stack (Kafka, Hadoop, Spark, Flink, Hive ..), Java and/or Scala Come join our Data platform and Analytics team. This team owns, builds, and operates Guidewire’s cloud native data platform and analytics SaaS offerings. Guidewire’s data platform is targeted to be best-in-class in enabling our customers with mission critical insights and decision-making capabilities. The platform is designed to support all of our analytics, data science, and data applications. You will work in a highly collaborative environment building next generation platform and services.

Required Skills

  • 10+ years of hands on experience and in-depth knowledge of data governance, data security, and data compliance. 
  • Deep experience with security in cloud environments around GDPR, CCPA, PHI/PII data, data encryption at rest and in transit as well security concepts like tokenization, federated security models and secrets management
  • Expertise in crypto primitives, authentication protocols and authorization standards (e.g SSL/TLS, SAML, OAuth, JWT, OPA)
  • Experience working with data security systems (e.g. Kerberos, Knox, Sentry) and SIEM 
  • Expertise in Microservice security architecture (AuthN, AuthZ architecture and user/service interaction model)
  • Prior experience of building and securing large scale distributed systems and data platforms using Big Data stack (Kafka, Hadoop, Spark, Flink, Hive ..) on AWS
  • J2EE architect with strong experience in core Java and related frameworks
  • Excellent programming skills in Java and/or Scala
  • Expertise in AWS infrastructure and concepts such as VPC, subnets, security groups, S3, RDS, EC2, Glacier, Lambda, IAM, security, encryption, DevOps, replication and disaster recovery
  • Deep understanding of Algorithms, Data Structures, and Performance Optimization Techniques
  • Eager to learn new things and passionate about technology
  • Expertise working with Kubernetes, AWS, Docker, and Terraform
  • Deep technical experience and knowledge in the design and implementation of analytical data platforms and accepted best practices around data movement, meta-data catalogs, data governance, data transformation, data ingestion, data security, data science and data mining in both Cloud, hybrid and on-premise environments
  • You deeply understand Realtime detection engineering lifecycle from ingestion to access

What would you do

  • Develop technology roadmap, architecture and implement data security and compliance for Guidewire Cloud Data Platform.
  • Architect various security engineering aspects such as PII, GDPR, CCPA Right to be forgotten etc . Translate them to data engineering implementation.
  • Collaborate with Open Source communities(Knox, Sentry, etc), Engineering and Infosec and provide technical leadership to develop and maintain compliance with compliances across the world (GDPR).
  • Evangelize security best practices across the whole data org and Guidewire
  • Create Data Quality Metrics and drive ongoing Governance of Data
  • Work with the Data Engineers on remediation strategies for data security issues
  • Hands-on coding 
  • Design, develop and run cloud native data platform and analytics SaaS services
  • Own security architecture and provide technical leadership to multiple teams
  • Do test driven unit and end to end testing of any code you develop.
  • Own Continuous Integration (CI) and Continuous Deployment (CD) for your services
  • Own scalability, availability and data security for your services
  • Own, troubleshoot & resolve code defects
  • Mentor other developers in best practices

What you would need to succeed

  • Prior deep security experience and passion for building large scale multi-tenant cloud native data platforms
  • Hands on experience in managing data access/security related to applications, databases, data warehouses, and big data environments
  • In-depth knowledge and experience in privacy engineering or security engineering
  • Emphasize team wins over individual success
  • Strong technical communication skills
  • Excellent software development skills in one or more of the following languages: Java/Scala
  • Extensive experience with Big Data and distributed systems. Expertise in Spark or Flink, Kafka and Hadoop ecosystem
  • System design skills. Ability to design large scale distributed systems
  • Have developed in more than one language and ready to pivot to any language/framework
  • Understand REST API for data interchange. Understand API-driven system designing
  • Understand micro services architecture patterns pattern like Service Discovery/API Gateway/Domain Driven Design etc
  • Understand Serverless function and their relevant use
  • Ability to work in an agile fast paced environment
  • BS or MS degree (Computer Science or Math)
  • 10+ years relevant work experience
  • Refer to ‘Required Skills’ section more details

Bonus

  • ELK
  • Experience of building SaaS/PaaS on AWS/GCP/Azure..
  • AI/ML

The ideal candidate will share our core values: COLLEGIALITY, INTEGRITY, and RATIONALITY. 

Collegiality - We value strong teams. We work together as professional equals. We strive to continuously improve our processes and make realistic assumptions to maintain a reasonable work-life balance. We are trusted to manage our own time. We value ideas, not titles. We welcome and consider contrary opinions. 

Integrity - We insist on truthful relationships with customers, prospective customers, partners, investors, and each other in everything that we do.

Rationality - We communicate through clear arguments. We decide carefully based on factual evidence. We like calm, systematic, thoughtful solutions. We believe in testing. We never assume that we're building software the "best" way, and constantly seek to improve our processes. 

About Guidewire

Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently.

Guidewire combines core, data, digital, analytics, and AI to deliver our platform as a cloud service. 380 insurers, including the largest and most complex in the world, run on Guidewire.

As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 700+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our marketplace provides hundreds of add-ons that accelerate integration, localization, and innovation.

Guidewire Software Inc. provides equal employment opportunities to all applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.

Guidewire Software Inc. provides equal employment opportunities to all applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.