GEICO
Senior Staff Operations Engineer - Product Security (REMOTE)
GEICO, Washington, District of Columbia, us, 20022
Overview
Senior Staff Operations Engineer - Product Security (REMOTE) at GEICO. This role focuses on building Product Security operational excellence across the organization, transitioning from a traditional IT model to a tech organization with engineering excellence as its mission. The Sr. Staff Engineer, Operations is a key member of the Product Security leadership team and works across the organization to ensure delivery of effective security controls, prioritization of initiatives, and issue management. This role owns a portfolio of initiatives including compliance, engineering and operational excellence, and vendor engagement. It requires leadership to build teams, deliver solutions, and prove success with KPIs and visible metrics. Base pay range:
$115,000.00/yr - $260,000.00/yr . GEICO is seeking an experienced
Sr. Staff Engineer, Operations Engineer
with a passion for managing complex programs across multiple departments to drive Product Security operational excellence. Responsibilities
Monitor and track signals of security gaps, initiative delays, and compliance risks due to system issues; drive resolution. Create visuals on current performance and risk indicators related to product security initiatives and operations. Help develop standards for reporting product security tool effectiveness, maturity, resilience, and related risk factors. Drive automation of routine tasks to enhance security protection and detection capabilities. Provide expert guidance, demonstrations, and lead discussions on security best practices with stakeholders and leadership. Collaborate with CSIRT, GRC, Platform Security, Development/Product teams, and Technology partners to ensure protection coverage, proper detection event notifications, documentation, and standards. Organize, store, and manage operational best practices documentation for security solutions protecting applications, services, code, repositories, IaC, and deployment pipelines. Partner with sponsors, delivery teams, and stakeholders to deliver quality solutions on time and within budget by coordinating activities across systems and teams. Create, maintain, and actively manage a detailed project schedule, change control process, and documentation. Identify and raise relevant security risks and present detailed, implementable solutions; drive campaigns to resolution. Qualifications
Demonstrated understanding of application security tooling and testing (SAST, DAST, SCA) and awareness of security operations (SOC, Incident Response, Privacy, Legal, Vulnerability Management, Data Protection). Familiar with OWASP projects and implementations (Web Top Ten, API Top Ten, Mobile Top Ten, ASVS). Knowledge of data access languages (SQL, GraphQL) and ability to construct queries. Extensive experience in engineering and solution delivery in dynamic environments; strong project management skills. Experience with security services affecting production systems (runtime protection, detection, vulnerability scanning, etc.). Experience in multi-cloud environments (AWS, Azure, Google Cloud). Proven ability to influence development partners and stakeholders through effective communication. Detail- and deadline-oriented with strong organizational, analytical, and problem-solving skills. Experience with continuous delivery; self-motivated and able to work independently while coordinating with cross-divisional teams. Leadership qualities; ability to influence without direct management authority. Ability to excel in a fast-paced, startup-like environment; knowledge of security control frameworks (NIST, PCI, SOX, NYDFS). Preferred Qualifications
Knowledge of hybrid cloud environments including containerization, VMs, CI/CD pipelines, and IaC. Experience defining KPIs/SLA metrics for multi-million-dollar businesses and reporting to senior leadership. Experience
8+ years in an engineering-focused role, preferably in tech. 4+ years of experience with AWS, GCP, Azure, or other cloud providers. 4+ years in a senior role influencing company direction. Experience aligning engineering with third-party attestation requirements (PCI, SOX, etc.). Education
Bachelor’s degree in Computer Science, Cyber Security, or equivalent work experience. Third-party certifications related to engineering technologies. Annual Salary
$115,000.00 - $260,000.00 The above range is a general guideline; final offer depends on factors including scope, responsibilities, experience, education, and location. At this time, GEICO will not sponsor a new applicant for employment authorization for this position. The GEICO Pledge
Great Company:
GEICO supports customers through lifes twists and turns, aims to protect people when they need it most, and continually evolves to meet needs. Great Careers:
GEICO offers opportunities to learn, grow, and thrive with development programs, mentorship, and coaching. Great Culture:
An inclusive culture rooted in integrity, action, and performance, with a focus on belonging and collaboration. Great Rewards:
Compensation and benefits to support physical, mental, and financial well-being, including Total Rewards, 401K with match, tuition assistance, and flexible work options with GEICO Flex. Equal employment opportunity: GEICO hires and promotes based on qualifications and offers accommodations for qualified individuals with disabilities as required by law.
#J-18808-Ljbffr
Senior Staff Operations Engineer - Product Security (REMOTE) at GEICO. This role focuses on building Product Security operational excellence across the organization, transitioning from a traditional IT model to a tech organization with engineering excellence as its mission. The Sr. Staff Engineer, Operations is a key member of the Product Security leadership team and works across the organization to ensure delivery of effective security controls, prioritization of initiatives, and issue management. This role owns a portfolio of initiatives including compliance, engineering and operational excellence, and vendor engagement. It requires leadership to build teams, deliver solutions, and prove success with KPIs and visible metrics. Base pay range:
$115,000.00/yr - $260,000.00/yr . GEICO is seeking an experienced
Sr. Staff Engineer, Operations Engineer
with a passion for managing complex programs across multiple departments to drive Product Security operational excellence. Responsibilities
Monitor and track signals of security gaps, initiative delays, and compliance risks due to system issues; drive resolution. Create visuals on current performance and risk indicators related to product security initiatives and operations. Help develop standards for reporting product security tool effectiveness, maturity, resilience, and related risk factors. Drive automation of routine tasks to enhance security protection and detection capabilities. Provide expert guidance, demonstrations, and lead discussions on security best practices with stakeholders and leadership. Collaborate with CSIRT, GRC, Platform Security, Development/Product teams, and Technology partners to ensure protection coverage, proper detection event notifications, documentation, and standards. Organize, store, and manage operational best practices documentation for security solutions protecting applications, services, code, repositories, IaC, and deployment pipelines. Partner with sponsors, delivery teams, and stakeholders to deliver quality solutions on time and within budget by coordinating activities across systems and teams. Create, maintain, and actively manage a detailed project schedule, change control process, and documentation. Identify and raise relevant security risks and present detailed, implementable solutions; drive campaigns to resolution. Qualifications
Demonstrated understanding of application security tooling and testing (SAST, DAST, SCA) and awareness of security operations (SOC, Incident Response, Privacy, Legal, Vulnerability Management, Data Protection). Familiar with OWASP projects and implementations (Web Top Ten, API Top Ten, Mobile Top Ten, ASVS). Knowledge of data access languages (SQL, GraphQL) and ability to construct queries. Extensive experience in engineering and solution delivery in dynamic environments; strong project management skills. Experience with security services affecting production systems (runtime protection, detection, vulnerability scanning, etc.). Experience in multi-cloud environments (AWS, Azure, Google Cloud). Proven ability to influence development partners and stakeholders through effective communication. Detail- and deadline-oriented with strong organizational, analytical, and problem-solving skills. Experience with continuous delivery; self-motivated and able to work independently while coordinating with cross-divisional teams. Leadership qualities; ability to influence without direct management authority. Ability to excel in a fast-paced, startup-like environment; knowledge of security control frameworks (NIST, PCI, SOX, NYDFS). Preferred Qualifications
Knowledge of hybrid cloud environments including containerization, VMs, CI/CD pipelines, and IaC. Experience defining KPIs/SLA metrics for multi-million-dollar businesses and reporting to senior leadership. Experience
8+ years in an engineering-focused role, preferably in tech. 4+ years of experience with AWS, GCP, Azure, or other cloud providers. 4+ years in a senior role influencing company direction. Experience aligning engineering with third-party attestation requirements (PCI, SOX, etc.). Education
Bachelor’s degree in Computer Science, Cyber Security, or equivalent work experience. Third-party certifications related to engineering technologies. Annual Salary
$115,000.00 - $260,000.00 The above range is a general guideline; final offer depends on factors including scope, responsibilities, experience, education, and location. At this time, GEICO will not sponsor a new applicant for employment authorization for this position. The GEICO Pledge
Great Company:
GEICO supports customers through lifes twists and turns, aims to protect people when they need it most, and continually evolves to meet needs. Great Careers:
GEICO offers opportunities to learn, grow, and thrive with development programs, mentorship, and coaching. Great Culture:
An inclusive culture rooted in integrity, action, and performance, with a focus on belonging and collaboration. Great Rewards:
Compensation and benefits to support physical, mental, and financial well-being, including Total Rewards, 401K with match, tuition assistance, and flexible work options with GEICO Flex. Equal employment opportunity: GEICO hires and promotes based on qualifications and offers accommodations for qualified individuals with disabilities as required by law.
#J-18808-Ljbffr