×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Security Manager

Offensive Security Engineer; HYBRID

Job in Austin, Travis County, Texas, 78716, USA
Listing for: GEICO
Full Time position
Listed on 2026-01-12
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Security Manager
Job Description & How to Apply Below
Position: Staff Offensive Security Engineer (HYBRID)

Staff Offensive Security Engineer (HYBRID)

Apply for the Staff Offensive Security Engineer (HYBRID) role at GEICO
.

This role offers a base pay range of $/yr - $/yr, and actual pay will be based on your skills and experience.

At GEICO, we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose.

When you join our company, we want you to feel valued, supported and proud to work here. That’s why we offer The GEICO Pledge:
Great Company, Great Culture, Great Rewards and Great Careers.

As a Staff Engineer of Offensive Security
, you'll be at the forefront of our cybersecurity strategy for penetration testing, advanced attack simulations, and enabling organization to prevent, detect, and respond to cyber threats. Your role is pivotal in shaping our security posture, collaborating closely with senior leadership to influence risk decisions and ensure regulatory readiness. We seek a hands‑on offensive security engineer with deep technical expertise in penetration testing, real‑world adversary tactics, and risk frameworks, capable of driving measurable improvements in our cyber resilience.

Candidates are expected to have hands‑on penetration testing experience while driving security and compliance initiatives to perform overall offensive security functions including red and purple teaming.

You’ll challenge the status quo, identifying opportunities to elevate our security engineering excellence through automation and innovative approaches. Your ability to think big, anticipate change, and address root causes will be key to delivering greater business value while proactively examining actions and refining approaches.

In this high‑stakes environment, you’ll ensure implementation of industry best practices and execution of offensive security functions while meeting regulatory compliance requirements. This role offers a unique opportunity to expand your influence, forge critical alliances, and lead the evolution of offensive security in a fast‑paced environment.

Responsibilities
  • Lead highly effective large‑scale penetration testing initiatives.
  • Participate in simulating real‑world cyber‑attacks (red teaming) and collaborating with defensive security teams (purple teaming).
  • Conduct tactical security penetration test assessments to validate the security of company applications (web, mobile, APIs, and AI products) against OWASP Top 10 threats and work with the Application Security team to provide feedback and recommendations to increase automated capabilities.
  • Ensure penetration testing activities meet security, business, and compliance objectives.
  • Design and execute advanced threat emulation scenarios, including physical, social, and digital attack vectors.
  • Collaborate with Blue Teams, Threat Intelligence, and Risk Management to ensure comprehensive attack coverage and feedback loops.
  • Ensure operations align with industry regulations and compliance standards such as NIST, PCI DSS, and NYDFS.
  • Champion continuous improvement and innovation in penetration testing, adversary simulation techniques, tools, and methodologies.
Required Qualifications
  • Mastery of vulnerability discovery and exploitation across applications, networks, and cloud using tools (e.g., Burp Suite, Metasploit) and custom scripts (Python, Power Shell).
  • Advanced understanding of OWASP, MITRE ATT&CK framework, SDLC, threat modeling, red/purple teaming, and attack path development.
  • Hands‑on experience with tools like Cobalt Strike, Mythic, Blood Hound, and Auto Sploit.
  • Relevant professional security certifications (e.g., from GIAC or others).
  • Proven experience achieving results efficiently through automation and establishing best practices.
  • Proven track record delivering business outcomes for regulatory and compliance obligations.
  • Ability to force‑multiply through coaching and mentorship to offensive security engineers across all functions (penetration testing, red…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search