Senior Manager, Product Security Tools - Driving Secure Software Development & DevSecOps Excellence Remotely

Unlock Your Potential as a Senior Manager, Product Security Tools at GEICO

GEICO, one of the nation's largest and fastest-growing auto insurers, is seeking a highly skilled Senior Manager of Product Security Tools to join our team on a remote basis. As a wholly owned subsidiary of Berkshire Hathaway, we offer a financially stable and rewarding workplace with opportunities for career advancement and professional growth. If you're a seasoned security leader with a passion for driving secure software development and DevSecOps excellence, we invite you to explore this exciting opportunity.

About the Role

As a Senior Manager, Product Security Tools, you will play a critical role in streamlining the secure design, testing, and implementation of advanced tooling to support a frictionless application and services deployment lifecycle. You will lead a team of senior and junior development and security engineers to ensure that our developed applications and systems are secure from potential threats and vulnerabilities from inception to decommission. This role requires a strong development background, solid leadership skills, and deep experience in secure software development, development practices, and DevSecOps.

Key Responsibilities

• Develop and maintain a comprehensive application and product security tooling roadmap that aligns with security industry practices and provides an innovative experience that increases security risk remediation and developer efficiency.
• Lead a team of developers and security engineers in the execution of GEICO's security strategies and action plans.
• Collaborate with engineering, product management, business, and other technology stakeholders to integrate security into the software development lifecycle (SDLC).
• Oversee the validation and prioritization of vulnerabilities within services, applications, and products.
• Provide additional expertise in security during the design, implementation, and continual support of our products.
• Enhance security awareness and develop content to train developers and other relevant staff in secure coding practices.
• Establish metrics and regular reporting mechanisms for measuring team status and the effectiveness of the application and product security tooling program.
• Respond to security incidents and provide post-mortem analysis to illuminate the root cause and prevent recurrence as necessary.
• Be accountable for the selection and implementation of security tools and developer remediation processes.
• Stay abreast of the latest security legislations, regulations, advisories, alerts, and vulnerabilities pertaining to the company and its mission.
• Serve as a trusted advisor to GEICO's technology leadership on the advancement of product security tooling and review mechanisms.

Essential Qualifications

To be successful in this role, you should possess:

• 8+ years of experience in application security, product security, or a related role, with at least 7 years in a managerial position.
• Strong understanding of application security frameworks, standards, and best practices (e.g., OWASP, SANS, NIST).
• Experience with secure coding practices, ethical hacking, and threat modeling.
• Knowledge of scripting and programming languages such as Python, Java, or C++, JavaScript, PHP, .NET; GoLang, and Rust languages are a plus.
• Understanding of threats, threat modeling, and the applicability to business systems.
• Intimate understanding and knowledge of application development life cycle methodologies such as agile software development, rapid prototyping, incremental, synchronize and stabilize, and DevSecOps.
• Strong leadership and team management skills.
• Excellent communication skills, both verbal and written.
• Ability to work under pressure and make decisions independently in challenging situations.
• Strong problem-solving skills, ability to think critically and ethically.

Preferred Qualifications

To further enhance your candidacy, you may possess:

• Security-related certifications (such as CISSP, CISM, or CompTIA Security+).
• A Bachelor's or Master's Degree in Computer Science, Information Systems, Cybersecurity, or a related field.

What We Offer

As an Associate at GEICO, you'll enjoy our Total Rewards Program, which includes:

• Premier Medical, Dental, and Vision Insurance with no waiting period.
• Paid Vacation, Sick, and Parental Leave.
• 401(k) Plan.
• Tuition Reimbursement.
• Paid Training and Licensures.

Our compensation package is competitive, with a salary range of $130,000 - $300,000 per annum, depending on your experience and qualifications.

Our Culture and Work Environment

At GEICO, we pride ourselves on our inclusive and diverse work environment. We are committed to providing equal employment opportunities for all associates and job applicants, regardless of their background, culture, or identity. Our remote work setup allows you to work from anywhere, at any time, as long as you have a stable internet connection.

Why Join GEICO?

For over 75 years, GEICO has been a leader in the insurance industry, known for our low rates, outstanding service, and clever marketing. As a wholly owned subsidiary of Berkshire Hathaway, we offer a financially stable and rewarding workplace with opportunities for career advancement and professional growth. If you're looking for a challenging and rewarding role that allows you to make a real impact, we encourage you to apply.

Take the Next Step

Are you ready for this exciting opportunity? Apply now and let's discuss how you can become a vital part of our success story. As a Senior Manager, Product Security Tools, you will play a critical role in driving secure software development and DevSecOps excellence at GEICO. We look forward to hearing from you!