Apply on Employer Site

GEICO · 1 day ago

Sr. Staff Security Engineer – Vulnerability Management (HYBRID)

Chevy Chase, MD

Full-time

Hybrid

Senior Level, Lead/Staff

$130K/yr - $260K/yr

8+ years exp

GEICO is a leading insurance company committed to innovation and customer satisfaction. They are seeking a Senior Staff Security Engineer to lead the strategy and execution of Vulnerability Management, enhancing the company's security posture while collaborating with various teams to integrate security practices into their technology ecosystem.

Auto InsuranceFinancial ServicesGovernmentInsuranceInternetMobile

H1B Sponsored

Responsibilities

Lead the full vulnerability lifecycle: discovery, validation, risk analysis, prioritization, and remediation measurement

Leverage business contextualization, underlying systems, and threat intelligence to perform risk assessment for identifying true risk to drive remediation

Build integrations among scanning tools, asset inventory, CMDBs, ticketing, CI/CD, and monitoring pipelines to streamline workflows

Evaluate, test, and implement emerging tools and technologies that advance VM automation and intelligence

Design automation to reduce manual work, increase accuracy, and accelerate remediation

Generate data‑driven insights that help teams understand, prioritize, and resolve vulnerabilities efficiently

Collaborate with cloud, infrastructure, DevOps, and product engineering groups to integrate vulnerability management into pipelines and delivery workflows

Work closely with risk, compliance, governance, and incident response teams to ensure alignment with organizational and regulatory standards

Communicate vulnerability trends, risk implications, and remediation strategies to technical and non‑technical stakeholders

Define KPIs, SLAs, dashboards, and reporting models to drive accountability and measurable vulnerability reduction

Establish repeatable processes, playbooks, and workflows that ensure consistent VM operations across teams and environments

Ensure the reliability, performance, and scalability of VM tools and data pipelines

Mentor junior and mid‑level engineers, offering guidance on advanced security concepts, engineering best practices, and career development

Serve as a multiplier by elevating skillsets across teams through coaching, pairing, design reviews, and knowledge‑sharing

Influence architecture and engineering leadership with clear communication, strong decision‑making, and the ability to simplify complex security issues

Qualification

Vulnerability ManagementCybersecurity frameworksCloud servicesSecurity architectureProgramming PythonProgramming GoProgramming JavaCompliance initiativesSecurity certificationsMentoringCommunication skillsTeam collaboration

Required

8+ years of experience in cybersecurity or security engineering roles

Deep expertise with vulnerability management tools, methodologies, and industry standards

Hands-on experience with modern infrastructure, cloud services (AWS/Azure/GCP), container platforms, and operating systems

Proficiency with a modern programming language (Python, Go, Java, etc.) and scripting for automation at scale

Strong understanding of security architecture, networking, operating systems, identity, and cloud services

Proven ability to lead, mentor, and inspire engineers across multiple teams

Strong communication skills with the ability to influence senior stakeholders and translate complex risks into actionable guidance

Hands-on experience implementing cybersecurity frameworks e.g. NIST CSF

Hands-on experience with leading compliance initiatives to meet e.g. PCI, SOX, NYDFS, etc

Bachelor's degree in computer science, Cyber Security, or equivalent education with relevant work experience

Preferred

Exposure to comprehensive security assessment, penetration testing, threat modeling, or security research

Familiarity with SIEM, SOAR, and asset intelligence integrations

Security certifications (CISSP, GCSA, OSCP, cloud security certs) are a plus

Experience embedding security controls into CI/CD pipelines and DevSecOps workflows

Benefits

Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being.

Financial benefits including market-competitive compensation; a 401K savings plan vested from day one that offers a 6% match; performance and recognition-based incentives; and tuition assistance.

Access to additional benefits like mental healthcare as well as fertility and adoption assistance.

Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year.

Company

GEICO

Glassdoor2.7

GEICO, Government Employees Insurance Company, has been providing affordable auto insurance since 1936. It is a sub-organization of Berkshire Hathaway.

Founded in 1936

Chase, Maryland, USA

10001+ employees

http://www.geico.com

H1B Sponsorship

GEICO has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (128)

2024 (277)

2023 (338)

2022 (212)

2021 (148)

2020 (205)

Funding

Current Stage

Late Stage

Total Funding

unknown

1996-01-01Acquired

Leadership Team

Todd Combs

Chairman, President, and Chief Executive Officer

Clayton Johnson

Sr. Director of Product Management

Recent News

Business Wire

NerdWallet Announces its 2026 Best-Of Awards Winners

2026-01-07

Investing.com

Warren Buffett’s successor Greg Abel had steady rise at Berkshire

2025-12-15

The Motley Fool

Todd Combs, Key Investment Manager, Just Left Berkshire Hathaway for JPMorgan Chase. Does the Shakeup Bode Well For the Stock?

2025-12-15

Company data provided by crunchbase