Geico - Chevy Chase, MD

posted about 2 months ago

Full-time - Senior
Chevy Chase, MD
Insurance Carriers and Related Activities

About the position

GEICO is seeking an experienced Senior Manager with a passion for helping to defend and protect our business, brands, and customers from cybersecurity threats. You will be responsible for managing GEICO's Cybersecurity Operations Center (SOC) and for leading your team in responding to and mitigating cybersecurity threats, including containing and eradicating adversarial threats on information systems and networks. You will build and manage a team of forensic engineers and investigators, and work as part of GEICO's Cyber Fusion Center to drive the transformation of GEICO's cybersecurity program. Our Senior Manager will have a broad understanding of technology, attack and defensive techniques, and incident management, and demonstrated experience in leading teams to hunt for cybersecurity threats across systems and networks, investigate and forensically analyze and assess suspicious security events, and respond to contain and eradicate confirmed threats. They will be data-driven and seek to apply an engineering mindset to the problems of scale, automation, and effectiveness, and look to continually assess and improve the efficiency and effectiveness of their team's response. They will work closely with other Cyber Fusion Center leaders to deliver on our vision for a unified operating picture that merges threat intelligence, security telemetry, behavioral analytics, and other signals into clear, actionable intelligence and business insights that drive timely and effective response, blocking threat vectors before harm can occur, and ensuring timely mitigation and recovery when it does occur.

Responsibilities

  • Lead the Cybersecurity Incident Response Team (CSIRT) to detect, investigate, and mitigate cybersecurity threats to closure.
  • Provide actionable business insights to business, engineering, security, and support teams based on learnings from threat responses.
  • Identify and address issues with technical or analytical skill gaps that could jeopardize future response effectiveness.
  • Collaborate with Cyber Fusion Center partner teams to understand challenges in response operations and formulate sustainable strategies.
  • Define, report, and meet measurable metrics focused on improving efficiency, effectiveness, and timeliness of response.
  • Facilitate an inclusive team culture that encourages knowledge sharing and learning of new technologies.
  • Support, assess, and grow the performance of team members, fostering a culture of trust and motivation.
  • Motivate and coach team members and peers to be receptive to feedback for personal and professional growth.
  • Act as a visible and inclusive thought leader in cybersecurity detection and response.
  • Maintain a high degree of on-call availability outside of normal business hours.

Requirements

  • 8+ years of experience in leadership positions.
  • 5+ years' experience supervising and leading cybersecurity response teams within a 24x7 Security Operations Center (SOC) or similar.
  • 5+ years' experience with incident response and digital forensics, including substantial experience in threat hunting or threat intelligence.
  • 5+ years' experience in operating and working within security response operations systems, such as SIEM and SOAR systems.
  • Demonstrated experience in leading an incident team through the incident lifecycle to closure and after-action review.
  • Demonstrated experience in coaching and mentoring engineers and analysts for improved performance and team dynamics.
  • Knowledge of cloud computing technologies and concepts (SaaS, PaaS, IaaS, etc.), and infrastructure functions including network, distributed compute, storage, and server infrastructure.
  • Knowledge of business continuity, disaster recovery, and resiliency.
  • Demonstrated ability to work under pressure and make decisions in challenging situations, along with critical thinking, judgment, and problem-solving skills.
  • Demonstrated high level written and oral communication skills.

Benefits

  • Premier Medical, Dental and Vision Insurance with no waiting period
  • Paid Vacation, Sick and Parental Leave
  • 401(k) Plan
  • Tuition Reimbursement
  • Paid Training and Licensures
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service