Security Testing Analyst II

Helping careers take flight. Reshaping an industry. Enable your career to be Made on Duck Creek.

WHO WE ARE:

Duck Creek Technologies is the intelligent solutions provider defining the future of the property and casualty (P&C) and general insurance industry. We are the platform upon which modern insurance systems are built, enabling the industry to capitalize on the power of the cloud to run agile, intelligent, and evergreen operations. Our modern SaaS solutions help insurers set a new standard and revolutionize how consumers interact with insurance companies.

Authenticity, purpose, and transparency are core to Duck Creek, and we believe insurance should be there for individuals and businesses when, where, and how they need it most. Our market-leading solutions are available on a standalone basis or as a full suite, and all are available via Duck Creek OnDemand. With more than 1,000 successful implementations to date, Duck Creek removes the IT burden for insurers so they can focus on the business of insurance.

We have a flock of more than 1,700 employees across the globe and are proud to be a Flexible-First employer. We empower our employees with the choice to work from an office, from home, or on a hybrid schedule. Our flexible-first environment fosters productivity, inclusion, collaboration, and ensures a consistent employee experience regardless of location.

If working in a fast-paced, rapidly evolving company that is transforming one of the world's oldest and largest industries sounds exciting, let us know. We are excited you are considering Duck Creek as a future employer and hope you decide to join "The Flock"

To learn more about us, visit and follow us on our social channels for the latest information – LinkedIn and Twitter.

TITLE
: Security Testing Analyst II

WHAT YOU'LL DO:
The Security Testing Analyst will focus on validating the effectiveness of security solutions developed and integrated by the Security Engineering team. Working closely with Security Automation and Integration Developers, this role ensures that new implementations meet functional, security, and compliance requirements. The analyst also supports red team activities by assisting in testing attack simulations and validating detection and response capabilities.

• Execute defined test cases and use cases to validate new security solutions developed by the Security Engineering team. Document results and share observations with senior staff to support functionality, performance, and security alignment.
• Prepare test reports summarizing coverage and findings, and maintain documentation of test plans, methodologies, and outcomes for audit and compliance support.
• Develop or enhance automation scripts to support repeatable and scalable testing processes.
• Follow established procedures to ensure testing activities align with enterprise security architecture and compliance requirements. Assist in collecting evidence for audits and assessments.
• Support red team exercises by executing assigned tasks and documenting results from offensive security activities to inform defensive control improvements.

WHAT YOU'VE DONE:

• Bachelor's or Masters Degree and/or equivalent experience relevant to functional area.
• 1-2 years of experience in security testing, QA, or vulnerability assessment. Familiarity with security automation and integration workflows.
• Experience with security testing tools and scripting languages (e.g., Python, Bash).

Knowledge, Skills, Abilities & Behaviors

• Understanding of CI/CD pipelines and DevSecOps practices.
• Familiarity with Agile methodologies and SDLC.

WHAT ADDITIONAL INFORMATION YOU MAY WANT TO KNOW:

Travel: 0-10%

Location: Remote Poland or Remote India

Work Authorization: Legally authorized to work in the country of job location. The Company does not sponsor visa petitions for this position.

WHAT WE STAND FOR:

Our global company celebrates & leverages the differences each employee brings to the table. Our success is a direct result of an inclusive culture where opportunities to learn from one another occur regardless of title, seniority, or background. This collaborative and team-oriented approach is at the core of how we operate and continuously improve our products, services, and systems. As such, Duck Creek is committed to providing equal opportunity to all employees and applicants – to recruit, hire, train, and reward employees for their individual abilities, achievements, and experience without regard to race, color, gender, religion, sexual orientation, age, national origin, disability, marital, military, or any other protected status.

We strive to be an example to the world of inclusion, diversity, and equity in all things – where employees are free to be their authentic selves in the workplace and in the communities in which we live. We believe in leading by example and are proud of the diversity of our team and our shared commitment to our Core Values: We Prioritize Respect; We Listen; We Care; We Add Value; and We Lead.

To learn more about our inclusive company culture, values, DE&I initiatives, and people, please visit:

Please let us know if you encounter accessibility barriers with our web content by sending an email to

Privacy Notice:
By submitting your application, you acknowledge that Duck Creek Technologies may collect and process your personal data for recruitment purposes in accordance with our Privacy Notice and applicable data protection laws.

Duck Creek Technologies does not accept, nor will we pay a fee for any hires resulting from unsolicited headhunter or agency resumes.