GEICO is seeking an experienced Engineer to provide enterprise support for application security in our hybrid, multi-cloud environments. The Application Security Engineer proactively and holistically leads and supports Application Security activities that guide the design, development and security of code and code repositories for cloud-hosted and open-source applications. Solutions include CICD integrations, SAST, DAST, IAST, SCA, secure cloud platform engineering, automated threat modeling.
Position Description:
Our Application Security Senior Engineer provides the necessary technical skills, analysis and design tasks related to support the development of secure applications that meet business solution needs and aligns with the organization's architectural governance and standards. The ideal candidate assists with creation of deliverables for managing the organization's portfolio of "to be" and "as is" cloud application security capabilities including systems (applications, processes, information, and technology), shared infrastructure services, shared application services, and components to enable and drive targeted business outcomes.
Position Responsibilities:
As a Senior Engineer, you willConduct security assessments of our applications and open-source softwareDevelop and implement security policies and proceduresIdentify and mitigate security risksCollaborate with development teams to ensure secure coding practices are followedStay up to date with the latest security threats and trendsParticipate in incident response and vulnerability remediation effortsProvide guidance and mentorship to junior engineersHands on experience in application and product security tooling and technology such as SAST, DAST, SCA, API, container security, and cloud security posture managementSupport developers and testers in security activities during product lifecycle such as secure design reviews and threat modeling, security code reviews, security test planning, and security code hardening, to help identify potential vulnerabilitiesQualifications:Proficiency in programming languages such as Java, Python, .NET, JavaScript, or C++Experience with security tools such as vulnerability scanners, penetration testing tools, and SIEM systemsKnowledge of web application security, network security, and cloud securityStrong analytical and problem-solving skillsExcellent communication and collaboration skillsUnderstanding of threats, threat modeling, and the applicability to our business systemsKnowledge of various managed and database technologies like such as Cosmos, SQL, MySQL, MongoDBExcellent understanding and knowledge of application development life cycle methodologies such as waterfall, spiral, rapid prototyping, incremental, synchronize and stabilize, and DevOpsFamiliar with strategic and emerging security, cloud, and application trends and the practical application of existing and emerging technologies to new and evolving business and operating modelsUnderstanding and applied use of OWASP Top 10, NIST CSF, PCI-DSS, etc.Experience:5+ years of experience in application and open-source security2+ years of experience working with CICD integrations for Static/Dynamic/Interactive Security Testing, Software Composition Analysis for web and mobile applicationsEducation:Bachelor's degree in Computer Science, Information Systems, or equivalent education or work experienceBenefits:
At GEICO, we make sure you have the support and resources to leverage and develop your skills, secure your financial future, and take care of your health and well-being. GEICO continually seeks to provide a workplace where everyone can be their authentic self. To help achieve this goal, we support associate-led Employee Resource Groups that foster a true sense of community. Through GEICO's competitive benefits offerings and various training and development opportunities, we have you covered with our Total Rewards Program * that includes: Premier Medical, Dental and Vision Insurance with no waiting period Paid Vacation, Sick and Parental Leave 401(k) Plan Tuition Assistance including Direct Billing and Reimbursement payment plan options Paid Training, Licensures and Certificates *Benefits may be different by location. Benefit eligibility requirements vary and may include length of service.
Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire coverage to take effect.
GEICO is proud to be an equal opportunity employer. We are committed to cultivating an environment where equal employment opportunities are available to all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO celebrates diversity and believes it is critical to our success. As such, we are committed to recruit, develop and retain the most talented individuals to join our team.
#LI-AW1
At this time, GEICO will not sponsor a new applicant for employment authorization for this position.
Benefits:
As an Associate, you'll enjoy our Total Rewards Program * to help secure your financial future and preserve your health and well-being, including:Premier Medical, Dental and Vision Insurance with no waiting periodPaid Vacation, Sick and Parental Leave401(k) PlanTuition ReimbursementPaid Training and Licensures*Benefits may be different by location. Benefit eligibility requirements vary and may include length of service.
Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.
The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled.
GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.