×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Cloud Computing IT Consultant

Staff Engineer - Product Security; HYBRID

Job in Austin, Travis County, Texas, 78716, USA
Listing for: GEICO
Full Time position
Listed on 2026-01-07
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Cloud Computing, IT Consultant
Job Description & How to Apply Below
Position: Staff Engineer - Product Security (HYBRID)

At GEICO, we offer a rewarding career where your ambitions are met with endless possibilities.

Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose.

When you join our company, we want you to feel valued, supported and proud to work here. That’s why we offer The GEICO Pledge:
Great Company, Great Culture, Great Rewards and Great Careers.

GEICO is seeking an experienced Staff Engineer to provide enterprise support for product security in our hybrid, multi-cloud environments. You will proactively and holistically lead and support Product Security activities that guide the design, development, security of code, and code repositories for cloud, hybrid, and open-source applications.

Position Description

Our Product Security Staff Engineer is a senior level position that reports to the Manager of Secure Product Design and works closely with development teams, product teams, and others across the organization to integrate security into the product lifecycle. The Product Security Staff Engineer is a subject matter expert in defining security requirements, defining secure application design, performing application security assessments, threat modeling, and providing developers with remediation guidance and solutions.

On any given day, the Product Security Staff Engineer can be pulled in to evaluate a new system, review a proposed application design, or provide solutions for application security/coding best practices.

Position Responsibilities

As a Staff Engineer, you will:

  • Work independently with developers, system/network engineers, product owners, and other engineers to ensure secure design, development, and implementation of cloud-based applications
  • Define and document secure architecture patterns and anti-patterns
  • Perform security architecture design reviews of our products including web applications, services, and mobile applications.
  • Define security best practices and standards and partner with Product Development teams to implement them.
  • Provide remediation guidance and recommendations to developers and engineers.
  • Serve as a technical advisor and consultant to colleagues and/or GEICO leadership on the implementation of the Cybersecurity application security policy and standards.
  • Provide technical thought leadership for integration decisions, analyzing design constraints and trade-offs in system and security design, and ensuring integrity of GEICO mission objectives, while protecting GEICO assets from cyber threats and vulnerabilities.
  • Work with Product Development teams to help prioritize and validate urgency of mitigation of identified product vulnerabilities and security feature enhancement requests
  • Interface with the Product and Cyber Security teams to track security feature enhancement requests
  • Help develop actionable insights, prioritizing the work, based on risk, and impact, and allocate resources effectively, using Geico specific large data sets.
Qualifications
  • Hands-on product development experience, with strict SLA and SLR, using a mature S-SDLC.
  • Direct experience working with development teams to define, develop and document secure solutions
  • Experience breaking down complex systems and applications to find flaws with analysis and threat modeling
  • Strong familiarity with common vulnerabilities and attack vectors
  • Knowledge of web service technologies, load balancer services (i.e., Nginx, Cloudflare, F5, etc.) and RESTful APIs
  • Knowledge of ubiquitous encryption technologies (PGP, SSH, SSL, etc.) and common authentication protocols (OpenID Connect, OAUTH, SAML, RADIUS, LDAP, KERBEROS, etc.)
  • Solid understanding of secure network, system, and service design in cloud (Azure, AWS etc.) and conventional environments
  • Understanding and applied use of OWASP Top 10, NIST SP800 Series, NIST CSF, FIPS 140-2, ISO 27001, PCI-DSS, etc.
  • Knowledge of various aspects of a technology architecture like integration, network, and security
  • Advanced understanding and knowledge of application development life cycle…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search