Logo
GEICO

Senior Engineer - Cybersecurity Incident Management Job at GEICO in Chevy Chase

GEICO, Chevy Chase, MD, United States


GEICO is seeking a Senior Engineer for the Cybersecurity Incident Management Team who brings deep technical expertise in detecting, analyzing, and responding to sophisticated cyber threats. The ideal candidate will have significant experience in incident response, forensic investigation, and threat analysis, with proven ability to manage complex security incidents. This position is for someone who can provide expert guidance, collaborate effectively across teams, and contribute to the continuous improvement of their security processes and tools. Strong problem-solving skills, technical proficiency, and a commitment to staying current on cybersecurity trends are essential.

Position Description:

This position requires a highly skilled and experienced cybersecurity professional responsible for detecting, analyzing, and responding to complex security incidents. The Senior Engineer will work on the incident management team, providing deep technical expertise to identify vulnerabilities, investigate incidents, and provide suggestions on effective solutions to mitigate risks. Additionally, the Senior Engineer will contribute to the development and enhancement of incident response processes, tools, and technologies to ensure the organization is prepared to handle emerging threats. The Cybersecurity Senior Engineer will work closely with IT, legal, compliance, and other key stakeholders to protect the organization's assets and reputation.

Position Responsibilities

As a Senior Engineer your key responsibilities will include:
  • Incident Response Leadership: Coordinate the response to cybersecurity incidents, ensuring swift action is taken to mitigate impact and prevent future occurrences.
  • Investigation and Analysis: conduct forensic investigations to determine the root cause of incidents, assess the scope of the breach, and develop comprehensive post-incident reports.
  • Communication, Documentation, and Reporting: Act as the primary point of contact during security incidents, providing clear and timely updates to executive leadership and relevant stakeholders. Prepare comprehensive incident reports, detailing findings, actions taken, and recommendations for improvement.
  • Collaboration: Work closely with IT, DevOps, and other relevant teams to remediate security vulnerabilities and implement preventative measures.
  • Technical Expertise: Provide expert-level guidance on cybersecurity best practices, tools, and methodologies to the incident management team.
  • Tool Development and Optimization: Contribute to the development, tuning, and optimization of security monitoring tools and incident response automation.
  • Risk Management: Identify and assess risks related to security incidents and recommend strategies to mitigate them, enhancing the organization's overall cybersecurity posture.
  • Post-Incident Review and Improvement: Lead post-incident reviews, identifying lessons learned and implementing improvements to processes, tools, and technologies.
  • Mentorship and Development: Mentor and guide junior incident commanders, sharing knowledge and expertise, and fostering a culture of continuous learning and professional growth within the team.
  • Policy and Procedure Updates: Refine incident response management policies, procedures, and playbooks to ensure consistent and effective handling of security incidents.
  • Continuous Improvement: Stay updated on the latest cybersecurity threats, trends, and technologies, and recommend improvements to the organization's security posture.
Qualifications:
  • Education: Bachelor's degree in computer science, Information Security, or a related field; equivalent experience will be considered.
  • Experience: 5-7 years of experience in cybersecurity, with a focus on incident response, threat analysis, and forensic investigations.
  • Certifications: Relevant certifications such as CISSP, GCIH, GCFA, or OSCP are highly desirable.
  • Technical Skills: Proficient in using cybersecurity tools, including SIEM, EDR, IDS/IPS, and forensic analysis software.
  • Analytical Skills: Strong problem-solving abilities with a keen eye for detail and a methodical approach to incident investigation.
  • Communication: Excellent verbal and written communication skills, with the ability to clearly explain complex technical issues to both a technical and non-technical audience.
Annual Salary
$80,000.00 - $230,000.00
The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate's work experience, education and training, the work location as well as market and business considerations.

At this time, GEICO will not sponsor a new applicant for employment authorization for this position.

Benefits:

As an Associate, you'll enjoy our Total Rewards Program* to help secure your financial future and preserve your health and well-being, including:
  • Premier Medical, Dental and Vision Insurance with no waiting period**
  • Paid Vacation, Sick and Parental Leave
  • 401(k) Plan
  • Tuition Reimbursement
  • Paid Training and Licensures


*Benefits may be different by location. Benefit eligibility requirements vary and may include length of service.

**Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.

The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled.

GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.