Senior Information Security Engineer

About The Position

Requirements

• Thorough understanding of Integrated Development Environment (IDE) and Continuous integration / Continuous Delivery (CI/CD) Pipeline tools and processes
• Proven experience with software development methodologies and secure coding practices
• 5+ years of industry experience in security engineering, with meaningful focus on cloud security and application security
• Excellent problem-solving and analytical skills. Strong communication skills, both written and verbal, for collaborating with technical and non-technical teams.
• Ability to work independently, prioritize tasks, and manage multiple security projects simultaneously.

Nice To Haves

• Solid understanding of LLMs, AI architecture patterns, machine learning models, and related technologies (e.g., MCP, RAG, agentic frameworks)
• Experience with container security, kernel-level hardening, and modern isolation techniques.
• AWS Certifications

Responsibilities

• Identify security issues and risks with Guild’s systems and environments. Develop and execute remediation/mitigation plans that provide long term risk reduction.
• Collaborate with cross-functional engineering teams to integrate and advance security standards within a comprehensive enterprise application security program.
• You will serve as a strategic partner to engineering squads, providing expert guidance on the integration and remediation of findings from SAST, DAST, and SCA tools.
• You will design and enforce robust security architectures across the company’s AWS ecosystem.
• Architect and implement security controls for agentic AI systems, including identity, network, and runtime-level defenses (e.g., sandboxing, policy enforcement).
• Develop comprehensive threat models and conduct realistic threat simulations across Guild's offerings, including LLMs, AI agents, and MCP components.
• Develop and tune security policy within various security tools and platforms (CNAPP, EDR, Email Gateway, Vulnerability Management, SIEM, etc…).
• Maintain SOC-2 compliance and assist with audit/client related requests. Assist with incident response and investigation activities.
• Fulfill regular on-call responsibilities as part of a team rotation.

Benefits

• Access to low-cost, high-quality health care options through Collective Health and Kaiser (due to coverage limitations, Kaiser is currently only available in CA & CO)
• Access to a 401k to help save for the future
• Vacation policy to rest and recharge
• 8 days of fully-paid sick leave, to take the time to heal and or recover
• Family-friendly benefits, including 12 weeks of parental leave for non-birthing parents and 18-20 weeks for birthing parents; 4-week ramp-up period for when employees return from a leave of 6 weeks or more; as well as employer-paid short-term and long-term disability, employer-sponsored life insurance, fertility and caregiving benefits.
• Well-rounded wellness benefits including free and low cost mental health resources and financial wellbeing support services
• Education benefits and tuition assistance to help your future development and growth