Identity Security Distinguished Engineer

Description: • Provide security specific strategic and technical direction for our identity and access management solutions. • Play a lead role within GEICO’s Cybersecurity team. • Focus on defensive and protective controls, compliance and governance automation. • Drive modernization in our identity strategy. • Act as the technical and engineering lead for a team of engineers. • Deliver secure IAM configuration, threat detection, and strategic partnership on the IAM roadmap. • Create automated proof and validation of our controls. • Innovate and lead new initiatives, improve Security, and enhance existing systems. • Identify new opportunities with an offensive security mindset. • Help lead the confirmation our systems are protected through automated testing and continuous improvement. • Foster a proactive security culture which enables the business without impact. Requirements: • Extensive experience in identity products and protocols products Active Directory, Kerberos, LDAP, SAML, SCIM, OAuth, and OIDC. • Deep skills in privileged access management tools and services (build/buy). • Extensive experience in offensive and defensive security roles, with a strong hacker mindset. • Experience building and designing (architecture, design patterns, reliability, and scaling) of security systems with micro-services and extensible REST APIs. • Experience communicating and presentation to senior and junior staff with the ability to influence stakeholders. • Experience in a multi-platform environment with Linux, Mac, Windows. • Experience with multiple IaaS platforms from top tier providers. • Experience with solving security control requirements with engineering approaches. • Ability to excel in a fast-paced, startup-like environment. • Ability to design, perform experiments, and influence security detection and protection solutions. • Strong knowledge of industry-standard security tools, frameworks, and best practices including ITDR, EPM, MITRE, CIS and NIST. • Demonstrated fluency and specialization with at least one modern language such as Python or Go. • In depth expertise in cryptographic protocols, digital certificates, and encryption standards such as X.509, Transport Layer Security (TLS), and Advanced Encryption Standard (AES). • Experience working with auditors and demonstrating security controls. Benefits: • Premier Medical, Dental and Vision Insurance with no waiting period** • Paid Vacation, Sick and Parental Leave • 401(k) Plan • Tuition Assistance • Paid Training and Licensures Apply Job!