Senior Manager, Product Security Tools (REMOTE)
MD Chevy Chase (Office) - JPS
GEICO
Get insurance from a company that's been trusted since 1936. See how much you can save with GEICO on insurance for your car, motorcycle, and more.GEICO is seeking a Senior Manager of Product Security Tooling who is a highly skilled security leader that will streamline the secure design, testing, and implementation of advanced and comprehensive tooling to support a frictionless application and services deployment lifecycle. This role requires a high level of expertise in Product Security testing, application security, cybersecurity, remediation and management. The individual will lead a team of senior and junior development and security engineers to ensure that the company's developed applications and systems are secure from potential threats and vulnerabilities from inception to decommission.
This role will report to the Sr Director of Product and Application Security and is critical to our cybersecurity objectives. The position requires a strong development background, solid leadership skills, and a deep experience of secure software development, development practices, and DevSecOps. The successful candidate will play a key role in ensuring the security and integrity of the company's data, applications, and systems. This position will also be a key player in establishing and maintaining successful partnerships with our technology and business partners.
Responsibilities:
As a Senior Manager of Product Security Tooling, you will:
Develop and maintain a comprehensive application and product security tooling roadmap that not only aligns with security industry practices but also provides an innovative experience that both increases security risk remediation and increases developer efficiency.
Lead a team of developers and security engineers in the execution of GEICO’s security strategies and action plans.
Collaborate with engineering, product management, business, and other technology stakeholders to integrate security into the software development lifecycle (SDLC).
Oversee the validation and prioritization of vulnerabilities within services, applications and products.
Provide additional expertise in security during the design, implementation, and the continual support of our products.
Enhance security awareness and enhance content to train developers and other relevant staff in secure coding practices.
Establish metrics and regular reporting mechanisms for measuring team status and the effectiveness of the application and product security tooling program.
Respond to security incidents and provide post-mortem analysis to illuminate the root cause and prevent recurrence as necessary.
Be accountable in the selection and implementation of security tools and developer remediation processes.
Keep abreast of the latest security legislations, regulations, advisories, alerts, and vulnerabilities pertaining to the company and its mission.
Serve as a trusted advisor to GEICO’s technology leadership on the advancement of product security tooling and review mechanisms.
Qualifications:
8+ years of experience in application security, product security, or a related role, with at least 7 years in a managerial position.
Strong understanding of application security frameworks, standards, and best practices (e.g., OWASP, SANS, NIST).
Experience with secure coding practices, ethical hacking, and threat modeling.
Knowledge of scripting and programming languages such as Python, Java, or C++, JavaScript, PHP, .NET; GoLang, and Rust languages are a plus.
Understanding of threats, threat modeling, and the applicability to business systems.
Intimate understanding and knowledge of application development life cycle methodologies such as agile software development, rapid prototyping, incremental, synchronize and stabilize, and DevSecOps
Strong leadership and team management skills.
Excellent communication skills, both verbal and written.
Ability to work under pressure and make decisions independently in challenging situations.
Strong problem-solving skills, ability to think critically and ethically.
Security-related certifications (such as CISSP, CISM, or CompTIA Security+) are a plus.
Education:
Bachelor's or Masters Degree in Computer Science, Information Systems, Cybersecurity or related field is preferred
Annual Salary
$130,000.00 - $300,000.00The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate’s work experience, education and training, the work location as well as market and business considerations.
Benefits:
As an Associate, you’ll enjoy our Total Rewards Program* to help secure your financial future and preserve your health and well-being, including:
- Premier Medical, Dental and Vision Insurance with no waiting period**
- Paid Vacation, Sick and Parental Leave
- 401(k) Plan
- Tuition Reimbursement
- Paid Training and Licensures
*Benefits may be different by location. Benefit eligibility requirements vary and may include length of service.
**Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.
The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled.
GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.
Tags: Agile Application security C CISM CISSP Compliance CompTIA Computer Science DevSecOps Ethical hacking Golang Java JavaScript NIST OWASP PHP Product security Prototyping Python Rust SANS Scripting SDLC Vulnerabilities
Perks/benefits: Health care Insurance Medical leave Parental leave
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.