CrawlJobs Logo

Senior Staff Security Engineer – Vulnerability Management

United States, Chevy Chase 130000.00 - 260000.00 USD / Year · Job Posted February 21, 2026
Apply Position
Job Link Share

Job Description

GEICO is seeking a highly experienced Senior Staff Security Engineer to lead the strategy, architecture, and technical execution of Vulnerability Management across a complex, hybrid technology ecosystem. This role blends deep security engineering expertise with strong architectural leadership and the ability to influence engineering practices at scale. You will drive the organization’s vulnerability lifecycle maturity, champion security‑by‑design, and elevate the skills and effectiveness of engineers across multiple teams. This is a high‑impact technical role who maintains a strong connection with both customers and underlying systems for shaping the company’s vulnerability management maturity, influencing engineering culture, and safeguarding critical systems. The Senior Staff Security Engineer will drive meaningful, measurable improvements to security posture while enabling teams to build and ship technology with confidence. They demonstrate a keen ability to dive deep into complex problems to fully understand how systems operate, discerning when to make incremental improvements and when to challenge the status quo to drive impactful results. They are well-versed with Vulnerability Management Lifecycle - asset discovery, internal/external scans, contextualization and risk-based assessment, triaging of CVEs, detection authoring, security data pipeline, reporting, and remediation. This role is an advisor to the Sr Director and is critical to our cybersecurity objectives. The position requires a strong security and engineering background. The successful candidate will play a key role in maintaining a strong security posture for the company through close collaboration with infrastructure, development, product, and other organizations across GEICO to integrate security into the ecosystem from design through deployment to sustainable operations.

Job Responsibility

  • Lead the full vulnerability lifecycle: discovery, validation, risk analysis, prioritization, and remediation measurement
  • Leverage business contextualization, underlying systems, and threat intelligence to perform risk assessment for identifying true risk to drive remediation
  • Build integrations among scanning tools, asset inventory, CMDBs, ticketing, CI/CD, and monitoring pipelines to streamline workflows
  • Evaluate, test, and implement emerging tools and technologies that advance VM automation and intelligence
  • Design automation to reduce manual work, increase accuracy, and accelerate remediation
  • Generate data‑driven insights that help teams understand, prioritize, and resolve vulnerabilities efficiently
  • Collaborate with cloud, infrastructure, DevOps, and product engineering groups to integrate vulnerability management into pipelines and delivery workflows
  • Work closely with risk, compliance, governance, and incident response teams to ensure alignment with organizational and regulatory standards
  • Communicate vulnerability trends, risk implications, and remediation strategies to technical and non‑technical stakeholders
  • Define KPIs, SLAs, dashboards, and reporting models to drive accountability and measurable vulnerability reduction
  • Establish repeatable processes, playbooks, and workflows that ensure consistent VM operations across teams and environments
  • Ensure the reliability, performance, and scalability of VM tools and data pipelines
  • Mentor junior and mid‑level engineers, offering guidance on advanced security concepts, engineering best practices, and career development
  • Serve as a multiplier by elevating skillsets across teams through coaching, pairing, design reviews, and knowledge‑sharing
  • Influence architecture and engineering leadership with clear communication, strong decision‑making, and the ability to simplify complex security issues

Requirements

  • 8+ years of experience in cybersecurity or security engineering roles
  • Deep expertise with vulnerability management tools, methodologies, and industry standards
  • Hands‑on experience with modern infrastructure, cloud services (AWS/Azure/GCP), container platforms, and operating systems
  • Proficiency with a modern programming language (Python, Go, Java, etc.) and scripting for automation at scale
  • Strong understanding of security architecture, networking, operating systems, identity, and cloud services
  • Proven ability to lead, mentor, and inspire engineers across multiple teams
  • Strong communication skills with the ability to influence senior stakeholders and translate complex risks into actionable guidance
  • Hands-on experience implementing cybersecurity frameworks e.g. NIST CSF
  • Hands-on experience with leading compliance initiatives to meet e.g. PCI, SOX, NYDFS, etc.
  • Bachelor’s degree in computer science, Cyber Security, or equivalent education with relevant work experience

Nice to have

  • Exposure to comprehensive security assessment, penetration testing, threat modeling, or security research
  • Familiarity with SIEM, SOAR, and asset intelligence integrations
  • Security certifications (CISSP, GCSA, OSCP, cloud security certs) are a plus
  • Experience embedding security controls into CI/CD pipelines and DevSecOps workflows

What we offer

  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Staff Security Engineer – Vulnerability Management

8 matching positions

Senior Staff Security Engineer

Our mission is to protect, defend, and secure Uber’s products, infrastructure, a...
Location
Location
United States , New York; Seattle; San Francisco; Sunnyvale
Salary
Salary:
267000.00 - 297000.00 USD / Year
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree or equivalent in Computer Science, Engineering, Mathematics, or a related field
  • 10+ years of full-time work experience in security engineering and/or software engineering
  • Demonstrable technical expertise in managing complex security programs such as Vulnerability Management, Endpoint Security, or Application Security
  • Proficiency in programming languages like Golang, Python, or Java
  • A track record of successful execution in engineering security and/or product development at cloud-scale
  • Master's Degree or PhD in Computer Science, Engineering, Mathematics, or a related field
  • In-depth knowledge of security software frameworks, EDR solutions, and production services on public cloud providers (GCP, OCI, Azure, or AWS)
  • Experience with AI technologies and frameworks and incorporating them into production systems
  • Experience leading complex technical projects across multiple engineering organizations and locations
  • Ability to solve problems and make complex decisions with incomplete information in ambiguous situations
Job Responsibility
Job Responsibility
  • Define and execute the technical strategy and roadmap for securing the enterprise environment and endpoints
  • Set organizational-level technical direction by identifying priorities and opportunities, managing expectations, and considering tradeoffs
  • Own the platform, architecture, and tools for securing corporate and production endpoints, including macOS, Windows, and Linux
  • Design and build next-generation security platforms and services to automate and scale enterprise security defenses
  • Define and lead the technical strategy for identifying, prioritizing, and remediating security vulnerabilities across all endpoints and applications
  • Champion best software engineering practices and empower engineers to build a strong culture of quality to achieve operational excellence
  • Partner with IT, product, and operations teams to integrate security posture improvements at scale across the entire environment
  • Leverage automation and AI to transform enterprise defense from human-driven to AI-driven
What we offer
What we offer
  • Uber's bonus program
  • equity award
  • 401(k) plan
  • various benefits
  • Fulltime
Read More
Arrow Right

Senior Staff Security Infrastructure Engineer

Bloomreach is building the world’s premier agentic platform for personalization....
Location
Location
Czechia , Bratislava; Brno; Prague
Salary
Salary:
Not provided
bloomreach.com Logo
Bloomreach
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of relevant experience
  • proficiency in cloud security, network security, URL filtering, common security frameworks, and CVE lifecycle management
  • practical IaC and scripting for automation
  • strong cross-functional and external communication
  • experience mentoring junior staff
  • hands-on cloud security for AWS and GCP: design secure architectures, perform threat modeling, apply platform-native controls, and build/validate secure IaC
  • SIEM ownership and detection engineering: deploy, configure, tune, and maintain SIEM
  • author and test detection rules and playbooks
  • integrate data sources
  • and operate with SLA-driven alerting and incident workflows
Job Responsibility
Job Responsibility
  • owns current and target-state data architectures and reporting
  • designing, implementing, and monitoring cloud (AWS/GCP) infrastructure security controls
  • deploying, securing, configuring, and operating SIEM and other security resources
  • identifying, triaging, and remediating infrastructure and web vulnerabilities
  • leading incident triage and external-researcher engagement
  • mentoring junior staff
What we offer
What we offer
  • A great deal of freedom and trust
  • flexible working hours
  • virtual-first work with several Bloomreach Hubs
  • company events
  • 5 paid days off to volunteer
  • People Development Program
  • communication coach available
  • Leader Development Program
  • $1,500 professional education budget annually
  • Employee Assistance Program with counselors
  • Fulltime
Read More
Arrow Right

Senior Staff Security Infrastructure Engineer

Bloomreach is building the world’s premier agentic platform for personalization....
Location
Location
Slovakia , Bratislava; Brno; Prague
Salary
Salary:
5000.00 EUR / Month
bloomreach.com Logo
Bloomreach
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of relevant experience
  • proficiency in cloud security, network security, URL filtering, common security frameworks, and CVE lifecycle management
  • practical IaC and scripting for automation
  • strong cross-functional and external communication
  • experience mentoring junior staff
  • Hands-on cloud security for AWS and GCP: design secure architectures, perform threat modeling, apply platform-native controls, and build/validate secure IaC
  • SIEM ownership and detection engineering: deploy, configure, tune, and maintain SIEM
  • author and test detection rules and playbooks
  • integrate data sources
  • and operate with SLA-driven alerting and incident workflows
Job Responsibility
Job Responsibility
  • Owns current and target-state data architectures and reporting
  • designing, implementing, and monitoring cloud (AWS/GCP) infrastructure security controls
  • deploying, securing, configuring, and operating SIEM and other security resources
  • identifying, triaging, and remediating infrastructure and web vulnerabilities
  • leading incident triage and external-researcher engagement
  • and mentoring junior staff
What we offer
What we offer
  • Restricted stock units
  • company performance bonus
  • great deal of freedom and trust
  • flexible working hours
  • work virtual-first
  • company events
  • 5 paid days off to volunteer
  • People Development Program
  • communication coach available
  • Leader Development Program
  • Fulltime
Read More
Arrow Right

Senior Staff Cloud Security Engineer

GEICO is seeking a Senior Staff Cloud Security Engineer to provide strategic and...
Location
Location
United States , Chevy Chase; Palo Alto; Seattle
Salary
Salary:
130000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep technical expertise in public and private cloud compute infrastructure and cloud native technologies
  • Previous successful projects that iteratively transitioned legacy security models to next generation solutions
  • Deep technical knowledge of security threats, risks, and vulnerabilities within IaaS, PaaS, and SaaS environments and integrations
  • Experience in offensive and defensive security roles, with a strong hacker approach to guiding cloud security decisions
  • Experience communicating and presenting to senior and junior staff with the ability to influence stakeholders
  • Experience in a multi-platform environment with containerized or VM-based Linux and Windows
  • Experience with Container risk monitoring at both build and runtime
  • Experience with solving security control requirements with engineering approaches
  • Ability to excel in a fast-paced, startup-like environment
  • Ability to design, perform experiments, and influence security detection and protection solutions
Job Responsibility
Job Responsibility
  • Provide strategic and technical security direction in designing, implementing, and managing secure cloud infrastructures
  • Develop and maintain expertise in cloud-native security solutions, including container security, Kubernetes, Istio, and cloud networking and security services
  • Define and implement roadmaps for security enhancements, ensuring alignment with business objectives and minimal disruption to operations
  • Develop strong relationships with key stakeholders, including development teams, operations teams, and executive sponsors
  • Collaborate with various teams to design, deploy, troubleshoot, and enhance security measures, while balancing usability and security
  • Influence and educate staff at all levels on cloud security best practices, promoting a culture of cloud security awareness across the organization
  • Proactively identify opportunities to enhance security measures, streamline processes, and optimize tooling, leveraging an offensive security mindset
  • Support continuous improvement of our cloud security posture through innovative solutions
  • Mentor/train growing security engineers and provide technical direction and project leadership
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Senior Staff Identity and Access Management Engineer

GEICO is seeking an experienced Engineer with a passion for building high perfor...
Location
Location
United States , Chevy Chase; Palo Alto; Dallas; Seattle
Salary
Salary:
120000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of professional experience in technology or identity engineering
  • 8+ years of experience with security, identity, architecture, and design
  • 4+ years of experience with open-source frameworks is desired
  • 4+ years of experience with AWS, GCP, Azure, or another cloud service
  • 1+ years of people management experience
  • Bachelor’s degree in computer science, Information Systems, or equivalent education or work experience
  • Experience building the architecture and design (architecture, design patterns, reliability, and scaling) of new and current systems
  • Fluency in DevOps Concepts, Cloud Architecture, and the Software Development Lifecycle
  • Experience in security protocols and products: Understanding of Active Directory, Kerberos, LDAP, SAML, OAuth, and OIDC
  • Experience with continuous delivery and infrastructure as code
Job Responsibility
Job Responsibility
  • Lead execution and adoption of modern authentication and authorization mechanisms (SAML, OIDC/OAUTH2)
  • Engage peers and leaders at all levels
  • Consistently share best practices and improve processes within and across teams
  • Determine and support resource requirements, evaluate operational processes, measure outcomes to ensure desired results, and demonstrate adaptability and sponsoring continuous learning
  • Own the complete project lifecycle for application integrations of both on-premises and SaaS applications with our IGA platform
  • Collaborate with application team to implement tokenization solutions that reduce sensitive data exposure, thereby enhancing data security and minimizing the risk of unauthorized access
  • Stay at the forefront of emerging identity trends, technologies, and best practices, and apply this knowledge to enhance GEICO’s data protection strategies
  • Provide technical guidance and mentorship to the team, fostering a culture of innovation, collaboration, and continuous improvements
  • Collaborate with cross-functional teams, including security, compliance, and application teams to ensure the seamless integration and alignment of solutions with organizational goals
  • Build resilient and scalable architecture, driving innovation and cost efficiency
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Security Operations

The senior security engineer role provides a unique opportunity to shape the sec...
Location
Location
United States , REMOTE; SAN FRANCISCO; ROSEVILLE; LEHI; WEST PALM BEACH; IRVINE
Salary
Salary:
146000.00 - 170000.00 USD / Year
goodleap.com Logo
GoodLeap
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences
  • Expertise in security event management, monitoring, threat hunting, incident response, playbook creation, orchestration/automations
  • Experience with threat modeling methodologies
  • Expertise with EDR solutions/platforms, such as CrowdStrike, S1, Palo Alto Cortex EDR
  • Experience with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus)
  • Proven ability to establish credibility and build trust with business, engineers, and operational staff
  • Experience designing, configuring, and implementing security and fraud monitoring for core enterprise systems, e.g., ERP, HCM, Salesforce
  • Experience working with and creating solutions based AI and ML toolsets – e.g., creation of AI skills, agents, MCP clients, vibe coding
  • Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases
  • Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK
Job Responsibility
Job Responsibility
  • Lead, participate in, and contribute to security and fraud monitoring, detection, and response activities, inclusive of investigations, threat hunting,etc. Create playbooks for specific incident response scenarios
  • Identify potential misuse and abuse cases in enterprise systems, propose solutions to detect these scenarios, and identify and implement monitoring and detection solutions for such scenarios
  • Support or develop components of the security analytics platform
  • Support embedded (product) security team
  • Support general security operations team with vulnerability management, tools management, and more
What we offer
What we offer
  • bonus
  • equity
  • Fulltime
Read More
Arrow Right

Senior Staff Engineer – Cybersecurity Data Protection Engineer

GEICO’s Cybersecurity organization has an exciting opportunity for an accomplish...
Location
Location
United States , Chevy Chase; Palo Alto; Seattle
Salary
Salary:
115000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience with data discovery, classification, handling, access, inventory, and retention
  • Proven experience with data protection technologies, such as encryption, tokenization and data loss prevention tools
  • Familiar with programming languages such as Python, Java, or .NET
  • Experience with designing and implementing data security solutions for enterprise environments
  • Experience in managing and supervising other Data Protection Engineers
  • Experience in developing and managing data protection programs focused on data discovery, data inventory, data risk assessments, and encryption for both structured and unstructured data
  • Strong knowledge of cybersecurity laws, regulations, and best practices
  • Knowledge of data security frameworks, standards, and protocols
  • Strong understanding of data privacy laws and regulations (i.e. NYDFS, PCI, etc.)
  • Strong analytical and problem-solving skills
Job Responsibility
Job Responsibility
  • Develop and Implement data protection strategies and initiatives, including classification and handling, data access controls, inventory, encryption, and retention
  • Work closely with other stakeholders to enforce data protection related policy and respond to regulatory requirements
  • Develop and maintain data security policies, procedures, standards, and ensure that they are followed by the entire organization
  • Create and maintain data inventories and data flows, and manage data sharing controls
  • Drive the design and implementation of data access controls, ensuring only authorized access to sensitive data
  • CO-develop and implement data retention policy and procedures, ensure compliance with internal policy and external regulations
  • Enforce data encryption standards and strategies to secure data at rest and in transit
  • Lead incident response efforts related to data breach and work with stakeholders to mitigate impact
  • Lead and conduct regular data risk assessments to identify potential vulnerabilities and threats to the organization's data and information systems
  • Stay abreast of new developments in the field of cybersecurity and ensure that the organization's risk assessment and data security processes are aligned with industry standards and best practices
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

As a Senior Corporate Security Engineer, you will lead the design and operation ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
deliveroo.co.uk Logo
DELIVER
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience
  • 5+ years’ experience in Security Engineering, Corporate Security, Detection & Response, or a related field
  • Hands-on experience administering IAM platforms (e.g. Okta, GoogleWorkspace)
  • Deep hands-on experience with GoogleWorkspace products
  • Practical hands-on experience with Cloud platforms (e.g AWS, GCP)
  • Relevant and practical experience with Infrastructure-as-code (e.g Terraform)
  • Experience implementing modern authentication standards (FIDO2, WebAuthn, SAML, OAuth 2.0, OpenID Connect)
  • Practical experience securing macOS, Windows and Linux endpoints using MDM and EDR/XDR tooling
  • Experience operating SIEM and/or SOAR platforms and tuning detection logic
  • Experience with vulnerability management and patch governance
Job Responsibility
Job Responsibility
  • Architecture & Control Implementation: Design, deploy, and maintain core corporate security controls, including phishing-resistant MFA, Just-In-Time (JIT) access, strict role-based access control (RBAC), zero-trust architectures, device and identity bound proofing and modern network isolation
  • Tooling Ownership: Serve as the technical owner for a broad suite of corporate security systems, managing deployments, configurations, and API integrations for tools across the corporate environment
  • Technical Leadership: Lead and implement the technical strategy for Endpoint Device trust, Data Loss Prevention, Intellectual property storage, and SaaS application security, alongside wider corporate security technical controls
  • Automation & Engineering: Write scripts and build tools to automate security workflows, incident response tasks, and audit evidence collection for compliance
  • Cross-Functional Collaboration: Work with IT and business operations to integrate security tools into everyday workflows, and guide non-security teams to adopt secure baselines (e.g., CIS Benchmarks) as standard practice
  • Mentorship: Mentor junior and mid-level engineers, explain technical concepts clearly to non-technical staff, and help improve the team's engineering standards
What we offer
What we offer
  • Competitive and comprehensive compensation and benefits package
  • Up to 5% matched pension contributions
  • Eligibility for share awards
  • Free Deliveroo Plus
  • Team lunches from the best local restaurants
  • 25 days annual leave plus bank holidays, increasing with length of time spent working at Deliveroo
  • One day of paid leave per year to volunteer with a registered charity
  • Funded single cover healthcare on our core plan, with the option to add family members at own cost
  • On-site gym (HQ), discounted external gym membership
  • Access to wellbeing apps such as LesMills+, Strava, Headspace, Yogaia via GymPass
  • Fulltime
Read More
Arrow Right