Geico - Chevy Chase, MD

posted about 2 months ago

Full-time - Senior
Remote - Chevy Chase, MD
5,001-10,000 employees
Insurance Carriers and Related Activities

About the position

The Senior Manager of Product Security Tooling at GEICO is a pivotal role focused on enhancing the security of applications and systems throughout their lifecycle. This position requires a seasoned security leader to develop and implement advanced tooling that supports secure design, testing, and deployment processes. The successful candidate will lead a team of engineers, ensuring that security is integrated into the software development lifecycle while maintaining strong partnerships with technology and business stakeholders.

Responsibilities

  • Develop and maintain a comprehensive application and product security tooling roadmap.
  • Lead a team of developers and security engineers in executing GEICO's security strategies.
  • Collaborate with various stakeholders to integrate security into the software development lifecycle (SDLC).
  • Oversee the validation and prioritization of vulnerabilities within services, applications, and products.
  • Provide expertise in security during the design, implementation, and support of products.
  • Enhance security awareness and train developers in secure coding practices.
  • Establish metrics and reporting mechanisms for measuring team status and effectiveness of the security tooling program.
  • Respond to security incidents and conduct post-mortem analyses.
  • Select and implement security tools and developer remediation processes.
  • Stay updated on security legislations, regulations, and vulnerabilities.

Requirements

  • 8+ years of experience in application security, product security, or a related role, with at least 7 years in a managerial position.
  • Strong understanding of application security frameworks, standards, and best practices (e.g., OWASP, SANS, NIST).
  • Experience with secure coding practices, ethical hacking, and threat modeling.
  • Knowledge of scripting and programming languages such as Python, Java, C++, JavaScript, PHP, .NET; GoLang, and Rust are a plus.
  • Understanding of threats, threat modeling, and their applicability to business systems.
  • Intimate understanding of application development life cycle methodologies such as agile and DevSecOps.
  • Strong leadership and team management skills.
  • Excellent communication skills, both verbal and written.
  • Ability to work under pressure and make independent decisions.
  • Strong problem-solving skills and critical thinking abilities.
  • Security-related certifications (such as CISSP, CISM, or CompTIA Security+) are a plus.

Nice-to-haves

  • Bachelor's or Master's Degree in Computer Science, Information Systems, Cybersecurity or related field is preferred.

Benefits

  • Premier Medical, Dental and Vision Insurance with no waiting period.
  • Paid Vacation, Sick and Parental Leave.
  • 401(k) Plan.
  • Tuition Reimbursement.
  • Paid Training and Licensures.
Job Description Matching

Match and compare your resume to any job description

Start Matching
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service