Identity Security Sr Staff Engineer (REMOTE)

Senior Staff Engineer – Cyber Security Identity and Access Management

Position Summary

GEICO is seeking an experienced Senior Staff Engineer to solve complex Identity and Access Management-related challenges. You will help drive our insurance business transformation as we redefine our Identity, Access Management, and Governance strategies.

Position Description

Our Senior Staff Engineer works with our Distinguished Engineers and Staff Engineers to innovate and build new systems, improve, and enhance existing systems and identify new opportunities to apply your knowledge to solve critical problems. You will lead the execution of a technical roadmap that will increase the speed of delivering products and unlock new engineering capabilities. The ideal candidate has good technical expertise ensuring secure authentication and communication across the organization.

Position Responsibilities

As a Senior Staff Engineer, you will:

• Collaborate with product managers, team members, customers, and other engineering teams to solve our toughest problems
• Develop and execute technical IAM strategies across all Identity-related security services and systems, while optimizing for performance and efficiency
• Own accountability for the quality, usability, and performance of the solutions
• Consistently share best practices and improve processes within and across teams
• Take on-call and operational support

Qualifications

• Extensive experience in identity products and protocols products such as Active Directory, Kerberos, LDAP, SAML, SCIM, OAuth, and OIDC.
• Deep skills in privileged access management tools and services (build/buy).
• Experience building and designing (architecture, design patterns, reliability, and scaling) of security systems with micro-services and extensible REST APIs.
• Experience communicating and presentation to senior and junior staff with the ability to influence stakeholders.
• Experience in a multi-platform environment with Linux, Mac, Windows.
• Experience with multiple IaaS platforms from top tier providers.
• ​Experience with solving security control requirements with engineering approaches.
• ​Ability to excel in a fast-paced, startup-like environment.
• Ability to design, perform experiments, and influence security detection and protection solutions.
• Strong knowledge of industry-standard IAM security tools and services such as IGA, PAM, JIT access, ITDR, EPM, etc.
• Strong knowledge of industry frameworks, and best practices including MITRE, CIS and NIST.
• Demonstrated fluency and specialization with at least one modern language such as Python or Go.
• Experience working with auditors and demonstrating security controls

Experience

• 4+ years of professional experience in technology or identity engineering
• 3+ years of experience with security, identity, architecture, and design
• 2+ years of experience with open-source frameworks is desired
• 3+ years of experience with AWS, GCP, Azure, or another cloud service

Education

• Bachelor's degree in computer science, Information Systems, or equivalent education or work experience

Annual Salary

The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate’s work experience, education and training, the work location as well as market and business considerations.

Benefits:

As an Associate, you’ll enjoy our Total Rewards Program* to help secure your financial future and preserve your health and well-being, including:

• Premier Medical, Dental and Vision Insurance with no waiting period**
• Paid Vacation, Sick and Parental Leave
• 401(k) Plan
• Tuition Assistance
• Paid Training and Licensures

*Benefits may be different by location.  Benefit eligibility requirements vary and may include length of service.

**Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.

The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled.

GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.