Technical Program Manager, Guidewire Security

Summary

Guidewire seeks a Technical Program Manager, Guidewire Security for the Security organization. This role is crucial for executing key security programs aligned with the overall enterprise security strategy, with a specific emphasis on Enterprise Security (i.e., IAM/Zero Trust) and Product Security Initiatives (i.e., SSDL, Threat Modeling).

The Technical Program Manager, Guidewire Security, reporting to the Director of Program Management, Security, will drive essential enterprise security initiatives. This role requires close collaboration with IT, Infrastructure, and Security Engineering teams and various stakeholders. The successful candidate must have a robust grasp of enterprise security risks, including authentication and authorization concepts, identity lifecycle processes, data protection, process efficiency, and best practices in product security (SSDL) and threat modeling. Crucially, the ability to communicate effectively with both technical and non-technical audiences is a must-have skill.

Responsibilities

• Manage complex enterprise-scale technical security programs focusing on Enterprise Security and Product Security initiatives to meet Guidewire’s business objectives.
• Define and lead roadmap execution for critical security functions and programs.
• Develop strong partnerships and feedback loops with leaders and stakeholders across the organization (e.g., IT, HR, Infrastructure).
• Lead with data and promote a culture of metrics driven decision-making, while holding stakeholders accountable.

Requirements

• You are a pragmatic enterprise security expert and a hands-on technical program manager.
• You understand emerging and tried and tested enterprise security technology, specifically within the Enterprise Security and Product Security domains.
• You evangelize proactive security within the organization, educating and influencing stakeholders in building a secure and compliant enterprise environment.
• You enjoy working on hard problems with no clear answers and can work with SMEs to design, scope, and iterate to create prototypes to demonstrate value.
• You have experience driving Security Programs for a global enterprise company and their practical applications.
• You understand the value of efficient processes and constantly look to improve them for productive scaling.
• You are data driven, analytical, and can turn information into action.
• At Guidewire, we foster a culture of curiosity, innovation, and responsible use of AI—empowering our teams to continuously leverage emerging technologies and data-driven insights to enhance productivity and outcomes.

Qualifications

• B.S. degree in Computer Science, Engineering, or other relevant technical fields is a nice to have.
• 5+ years of experience documenting processes, security requirements, and managing complex enterprise-scale technical security programs for a global company.
• 4+ years of experience managing Enterprise Security and Product Security Programs.
• Experience with SOC 1, SOC 2, ISO 27001, PCI, or equivalent preferred.
• Familiarity with application of the NIST Cyber Security Framework towards security program maturity.
• Influence program direction and plans by demonstrating end-to-end ownership of enterprise program management across various teams.
• Strong business acumen with excellent organizational, problem-solving, and negotiating skills.
• Demonstrated ability to embrace AI and apply it to your role as well as use data-driven insights to drive innovation, productivity, and continuous improvement.

Key skills/competency

• Enterprise Security
• Product Security
• Program Management
• IAM/Zero Trust
• SSDL (Security Development Lifecycle)
• Threat Modeling
• Data Protection
• NIST Cyber Security Framework
• Stakeholder Management
• Process Improvement