Staff Software Development Engineer - Vulnerability Management(Hybrid)
About The Position
At GEICO, we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company, we want you to feel valued, supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company, Great Culture, Great Rewards and Great Careers. GEICO is seeking an experienced full-stack engineer with a deep technical expertise and passion for building high-performance, low maintenance, zero-downtime, and highly scalable systems. The ideal candidate has a proven track record of design, development, and implementation of scalable solutions in hybrid environments using commercial and open-source products, preferably in Cybersecurity domain. This role will be responsible for leading enterprise initiatives and collaboration with cross-functional teams as well as designing and implementing secure and scalable solutions to drive Vulnerability Management initiatives. As a Staff Engineer, you’re not just a technical expert—you’re a lead, a problem solver, an innovator who thrives in a fast-paced, constantly evolving environment. You will turn complex challenges into elegant, practical solutions while fostering collaboration across teams and stakeholders. You have exposure to Cybersecurity and Vulnerability Management Lifecycle - asset discovery, internal/external scans, contextualization and risk-based assessment, triaging of CVEs, detection authoring, security data pipeline, reporting, and remediation. Staff Engineer works closely with infrastructure, development, product, and other organizations across GEICO to integrate security into the ecosystem from design through deployment to sustainable operations. The Staff Engineer brings in expertise in requirements identification, feasibility analysis, secure infrastructure designs, technology evaluation and selection, and implementation of scalable systems using CI/CD and DevSecOps to raise the bar on engineering excellence and security best practices.
Requirements
- Tech-lead with full-stack software development and experience in a hybrid environment (AWS, Azure, on-prem)
- Development and leadership preferably in Vulnerability Management Engineering
- Specialization with at least one modern language such as Java, Go, Python or C#, and a scripting language
- Extensive knowledge and experience of building data intensive large-scale distributed systems on cloud
- Experience building the architecture and design of new and current systems (architecture, design patterns, reliability, and scaling)
- Fluency in concepts and best practices in CI/CD pipelines and infrastructure as a code
- Experience with application performance monitoring tools and performance assessments
- Ability to design, implement, deploy, and operate systems to solve complex security problems in a fast-paced, startup-like environment
- Knowledge of industry-standard security tools, frameworks, and best practices including MITRE, CIS and NIST is a plus
- Experience working with auditors and demonstrating security controls
- 6+ years of non-internship professional software engineering experience of building large-scale distributed systems
- 4+ years of experience with architecture and design in a tech lead role
- 4+ years of experience with AWS, GCP, Azure, or other cloud providers
- 3+ years of experience in open-source frameworks
- Foundational knowledge of security best practices for system design and development
- Experience of building applications for security domain
- Experience of assessing security vulnerabilities and driving their remediation is a plus
Nice To Haves
- Professional security certification (e.g., CISSP, CCSP, CSSLP) is a plus
Responsibilities
- Provide technical leadership for software development, integration decisions, analyzing design constraints and trade-offs in system and security design
- Lead design, development, and delivery of security solutions in Vulnerability Management domain.
- Deliver automation initiatives, conduct advanced research, and develop proofs of concept to enhance our security capabilities and improve overall efficiency
- Achieve security business outcomes through force multiplication
- Develop, integrate, and maintain multilevel designs, architectures, policies, and procedures
- Provide secure design guidance and recommendations to developers, infrastructure, and product engineers
- Influence and educate partner teams to bring an engineering first approach to develop sustainable security systems.
- Mentor peers and team members in security technologies, enterprise solution design, deployment, and effective customer interaction
- Provide motivating demonstrations and communications to show the value of our security measures to the business, highlighting the low impact on systems, improved operability and resiliency
Benefits
- Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being.
- Financial benefits including market-competitive compensation; a 401K savings plan vested from day one that offers a 6% match; performance and recognition-based incentives; and tuition assistance.
- Access to additional benefits like mental healthcare as well as fertility and adoption assistance.
- Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
