Identity Security Distinguished Engineer - Technical Leader in Identity and Access Management (Remote)

Unlock Your Potential as a Technical Leader in Identity Security at GEICO

GEICO is on a mission to revolutionize the insurance industry, and we're seeking a highly skilled Identity Security Distinguished Engineer to join our team as a remote-based professional. As a technical leader in our Cybersecurity team, you will play a pivotal role in shaping our identity and access management strategy, driving innovation, and ensuring the security of our systems and data.

About GEICO and the Role

GEICO is a leading insurance provider that is committed to leveraging technology to drive business success. Our Cybersecurity team is at the forefront of protecting our organization's assets, and we're looking for a talented Identity Security Distinguished Engineer to help us stay ahead of emerging threats. As a Distinguished Engineer, you will be responsible for providing strategic and technical direction for our identity and access management solutions, collaborating with cross-functional teams, and driving modernization in our identity strategy.

Key Responsibilities

• Influence and educate staff at all levels to bring a security-minded approach to challenging problems, balancing usability and security.
• Provide technical guidance and mentorship to the team, fostering a culture of innovation, collaboration, and continuous improvement.
• Collaborate with cross-functional leaders, team members, IAM engineering, and peer security teams to solve complex problems with minimal business impact.
• Proactively identify opportunities to enhance security measures, streamline processes, and optimize tooling to fortify our environment against emerging threats.
• Deliver automation initiatives, conduct advanced research, and develop proofs of concept to enhance our security capabilities and improve overall efficiency.
• Help develop and implement engineered automation to ensure compliance with industry regulations and frameworks, demonstrating compliance without manual efforts.
• Work with business partners to derive and validate mitigation techniques for identified threats and/or non-compliance.
• Define roadmaps for securing various identities with purposeful and functional security without impacting or unnecessary overhead.
• Conduct automated adversarial testing of our identity systems to ensure detection mechanisms function appropriately and efficiently.
• Provide motivating demonstrations and communications to show the value of our security measures to the business, highlighting low impact on systems, improved operability, and resiliency.

Essential Qualifications

To be successful in this role, you should possess:

• Extensive experience in identity products and protocols, including Active Directory, Kerberos, LDAP, SAML, SCIM, OAuth, and OIDC.
• Deep skills in privileged access management tools and services (build/buy).
• Extensive experience in offensive and defensive security roles, with a strong hacker mindset.
• Experience building and designing security systems with micro-services and extensible REST APIs.
• Experience communicating and presenting to senior and junior staff, with the ability to influence stakeholders.
• Experience in a multi-platform environment with Linux, Mac, and Windows.
• Experience with multiple IaaS platforms from top-tier providers.
• Ability to excel in a fast-paced, startup-like environment.
• Strong knowledge of industry-standard security tools, frameworks, and best practices, including ITDR, EPM, MITRE, CIS, and NIST.
• Demonstrated fluency and specialization with at least one modern language, such as Python or Go.
• In-depth expertise in cryptographic protocols, digital certificates, and encryption standards, such as X.509, Transport Layer Security (TLS), and Advanced Encryption Standard (AES).

Preferred Qualifications

To further enhance your candidacy, you should have:

• 8+ years of experience in a dedicated security role, preferably in the tech industry.
• 5+ years of experience with security, identity, architecture, and design.
• 5+ years of experience with open-source frameworks.
• 3+ years of experience with AWS, GCP, Azure, or other cloud providers.
• 3+ years of experience in a senior security role, preferably in architecture, influencing company direction on security strategy.
• Education with practical examples in penetration testing, writing test scripts, and determining countermeasures.
• Experience applying security controls to exceed third-party attestation requirements (PCI, SOC, etc.).
• Desired certifications: CISSP, CISA, CISM, CCSK, CCSP, CEH, C|CISO, and related GIAC certifications.

What We Offer

As a valued member of our team, you will enjoy:

• A competitive salary range of $150,000 - $300,000 per annum, commensurate with experience.
• A comprehensive benefits package, including premier medical, dental, and vision insurance, paid vacation, sick leave, and parental leave.
• A 401(k) plan and tuition reimbursement program to support your long-term financial goals.
• Paid training and licensures to help you stay up-to-date with industry developments.
• A dynamic and inclusive work environment that fosters collaboration, innovation, and continuous learning.

Career Growth and Development

At GEICO, we're committed to helping you grow and develop your skills. As an Identity Security Distinguished Engineer, you will have opportunities to:

• Take on new challenges and responsibilities, driving innovation and growth in our identity security domain.
• Collaborate with cross-functional teams to develop and implement new security solutions and strategies.
• Stay up-to-date with industry trends and developments, sharing your knowledge and expertise with colleagues.
• Participate in training and development programs to enhance your skills and stay current with industry best practices.

Company Culture

At GEICO, we pride ourselves on our inclusive and dynamic work environment. As a remote-based professional, you will be part of a distributed team that values collaboration, innovation, and continuous learning. We offer:

• Flexible working arrangements to support work-life balance.
• A culture of recognition and reward, acknowledging your contributions and achievements.
• Opportunities for professional growth and development.
• A commitment to diversity, equity, and inclusion, fostering a workplace where everyone feels valued and respected.

Join Our Team

If you're a motivated and experienced Identity Security Distinguished Engineer looking to drive innovation and growth in a dynamic organization, we want to hear from you. Apply now to join our team and take the next step in your career.

GEICO is an equal employment opportunity employer, committed to diversity, equity, and inclusion. We welcome applications from qualified candidates of all backgrounds.