Senior Engineering Manager - Cybersecurity (Remote)

GEICO is seeking a Senior Engineering Manager - Cybersecurity, who is a highly skilled thought leader to drive massive engineering initiatives in Cybersecurity from inception to launch. This role requires deep understanding of engineering and security best practices for leading design, architecture, and DevOps of highly scalable systems in a hybrid environment. This role will be responsible for leading a team of software, security, and system engineers to build and implement security systems for Vulnerability Management and Offensive Security to protect enterprise wide assets through collaboration with cross-functional teams.

The ideal candidate for this role is a deeply technical leader who maintains a strong connection with both customers and the underlying architecture and design of systems. This individual excels at coaching their team to develop scalable solutions while fostering collaboration across the organization by engaging with key leaders to leverage collective expertise. They demonstrate a keen ability to dive deep into complex problems to fully understand how systems operate, discerning when to make incremental improvements and when to challenge the status quo to drive impactful results. They are well-versed with Vulnerability Management Lifecycle - asset discovery, internal/external scans, contextualization and risk-based assessment, triaging of CVEs,  detection authoring,  security data pipeline, reporting, and remediation.

This role reports to the Sr Director and is critical to our cybersecurity objectives. The position requires a strong engineering background, solid leadership skills, and a deep understanding of secure software development, development practices, and DevSecOps. The successful candidate will play a key role in maintaining a strong security posture for the company through close collaboration with infrastructure, development, product, and other organizations across GEICO to integrate security into the ecosystem from design through deployment to sustainable operations.

At GEICO Technology Solutions, we are on a journey to revolutionize the Insurtech space with our technology offerings in the Insurance market and provide excellent service with better efficiency to our Customers and Associates. To achieve our vision and mission, we are focusing on transforming our existing tech to deliver products and capabilities that are marketplace ready and are agnostic of the Line of Business or the Channel utilized.

Responsibilities:

As a Senior Manager, you will:

• Develop and maintain a comprehensive Vulnerability Management engineering roadmap that aligns with industry best practices.
• Lead a team of software developers and security engineers in the execution of GEICO’s security strategies and action plans.
• Collaborate with technology engineering, product management, and other stakeholders to integrate security tooling into the software development lifecycle (SDLC).
• Oversee the validation and prioritization of security vulnerabilities within services, applications and products.
• Provide expertise as required in security during the design, implementation, and the continual support of our products.
• Participate in the enhancement of security awareness and train developers and other relevant staff in secure coding practices.
• Establish metrics and regular reporting mechanisms for measuring security status and the effectiveness of the application and product security tooling.
• Respond to security incidents and provide post-mortem analysis to illuminate the root cause and prevent recurrence as necessary.
• Keep abreast of the latest security legislations, regulations, advisories, alerts, and vulnerabilities pertaining to the company and its mission.

• Identify and raise appropriate project risks, in addition to presenting detailed and implementable solutions or alternatives
• Understand how requirements and design choices may impact systems across multiple areas
• Report on your team’s progress for project and other key metrics, in addition to presenting detailed and implementable ideas for areas to further improve or influence product or project delivery
• Initiate and support performance evaluation of team members
• Cultivate a culture that motivates all levels of performers to higher levels of achievement
• Execute change management processes and best practices, adapting approach as necessary

What you will need…

• Proven success implementing large scale projects across multiple disciplines
• Reputation as someone who engages with team members effectively
• Identified as someone who genuinely cares about others and invests time and attention in career counseling others, focusing time and energy in encouraging associates to continue to grow and stretch into new roles or gain experience or skillsets needed to prepare for future roles
• Deep understanding of multiple business domains as well as the application ecosystems they depend upon
• Constructing, interpreting, and applying metrics to your work and decision making, able to use those metrics to identify correlation between drivers and results, and using that information to drive prioritization and action
• Initiative and creativity in solving problems and driving innovation through others
• Delivery of information in a clear and concise manner appropriate to the audience
• Embracing ownership of both successes and failures, demonstrating leadership maturity
• Ability to balance multiple assignments distributed across multiple teams and dependency areas
• Confidence with decision making
• Clearly able to see how projects interrelate and have a strategic impact
• Ability to build and maintain a network of contacts
• Continued understanding of and growth in emotional intelligence

Qualifications:

• 10+ years of professional software engineering experience, including software development lifecycle best practices 
• 5+ years of development in a large-scale, mission-critical environment 
• 5+ years of hands-on work experience supervising personnel in a technical environment 
• Experience in building highly scalable systems preferably in security domain in a hybrid cloud environment.
• Demonstrated experience with engineering excellence including secure coding practices, threat modeling, and DevSecOps.
• Excellent understanding and knowledge of application development life cycle methodologies such as agile software development, rapid prototyping, incremental value-add, synchronize, and stabilize.
• Strong leadership and team management skills.
• Excellent communication skills, both verbal and written.
• Ability to work under pressure and make decisions in challenging situations.
• Strong problem-solving skills, ability to think critically and ethically.
• Knowledge of at least a programming and scripting language such as Python, Java, C languages, JavaScript, GoLang, Rust.
• Expert understanding of application security frameworks, standards, and best practices (e.g., OWASP, SANS, NIST).
• Experience with vulnerability scanning, CVE triaging, detection, risk assessment, prioritization, and remediation is a plus.
• Security-related certifications (such as CISSP, CISM, or CompTIA Security+) are a plus.

Education

• Bachelor’s degree in Computer Science, Cyber Security, or equivalent education with work experience

 

Annual Salary

$140,000.00 - $300,000.00

The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate’s work experience, education and training, the work location as well as market and business considerations.

 

GEICO will consider sponsoring a new qualified applicant for employment authorization for this position.

 

Benefits:

As an Associate, you’ll enjoy our Total Rewards Program* to help secure your financial future and preserve your health and well-being, including:

• Premier Medical, Dental and Vision Insurance with no waiting period**
• Paid Vacation, Sick and Parental Leave
• 401(k) Plan
• Tuition Assistance
• Paid Training and Licensures

*Benefits may be different by location.  Benefit eligibility requirements vary and may include length of service.

**Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.

The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled.

GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.