Staff Security Engineer - Vulnerability Management - GEICO

Key Responsibilities

• Architect and maintain a comprehensive vulnerability management program, integrating tools such as Nessus, Qualys, and custom scripts to identify, prioritize, and remediate security weaknesses.
• Lead penetration testing initiatives, including network, web, and cloud assessments, and produce actionable findings for engineering and product teams.
• Develop and refine threat models and risk assessments for new and existing systems, ensuring alignment with industry best practices and regulatory requirements.
• Collaborate with incident response and security operations teams to investigate and remediate security incidents, providing root‑cause analysis and preventive recommendations.
• Drive continuous improvement of security controls, policies, and processes, and mentor junior staff on vulnerability management and security engineering practices.

Requirements

• 5+ years of experience in security engineering with a focus on vulnerability management and penetration testing.
• Proficiency with vulnerability scanners (Nessus, Qualys), SIEM platforms, and scripting languages (Python, Bash).
• Strong understanding of threat modeling frameworks (MITRE ATT&CK, STRIDE) and risk assessment methodologies.
• Experience with cloud security (AWS, Azure) and secure architecture design.
• Excellent communication skills and ability to translate technical findings into actionable business recommendations.