GEICO is seeking an experienced Staff Engineer to solve complex Network Security-related challenges. You will help drive our insurance business transformation as we redefine our Identity, Access Management, and Governance strategies.

Position Description

Our Staff Engineer works with our Distinguished Engineers and Sr Staff Engineers to innovate and build new systems, improve, and enhance existing systems and identify new opportunities to apply your knowledge to solve critical problems. You will lead the execution of a technical roadmap that will increase the speed of delivering products and unlock new engineering capabilities. The ideal candidate has good technical expertise ensuring secure authentication, connectivity and communication across the organization.

Position Responsibilities

As a Cyber Security Staff Networking Engineer, you will:

• Collaborate with product managers, team members, customers, and other engineering teams to solve our toughest problems
• Review, develop and execute technical Network Security strategies across all network access-related services and systems, balancing security with performance and efficiency
• Own accountability for the quality, usability, and performance of the solutions
• Consistently share best practices and improve processes within and across teams
• Take on-call and operational support responsibilities as needed and assigned.

Qualifications

• Extensive experience in security access services, products and protocols such as MFA and Kerberos, as well as Proxy and VPN clients.
• Extensive experience in designing and optimizing complex firewall ACL configurations.
• Experience communicating and presentation to senior and junior staff with the ability to influence stakeholders.
• Experience in a multi-platform environment with Linux, Mac, Windows.
• Experience in ZTNA technologies from companies such as Zscaler, Palo Alto, Cisco, Cloudfare, etc.
• Experience in implementing, administering and troubleshooting web access firewall and network proxy solutions.
• Experience in implementing a remote access solution leveraging least privilege principles, providing access based upon a person's role in the organization.
• Experience with solving security control requirements with engineering approaches.
• Ability to excel in a fast-paced, startup-like environment.
• Ability to design, perform experiments, and influence security detection and protection solutions.
• Strong knowledge of industry-standard security tools, frameworks, and best practices including MITRE, CIS and NIST.
• Fluency and specialization with at least one modern language such as Python or Go.
• Experience in cryptographic protocols, digital certificates, and encryption standards such as X.509, Transport Layer Security (TLS), and Advanced Encryption Standard (AES).
• Experience working with auditors and demonstrating security controls.

Experience

• 4+ years of professional experience in network engineering
• 3+ years of experience with network security, architecture, and design
• 2+ years of experience with open-source frameworks is desired
• 3+ years of experience with AWS, GCP, Azure, or another cloud service

Education

• Bachelor's degree in computer science, Information Systems, or equivalent education or work experience

Annual Salary
$110,000.00 - $230,000.00
The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate's work experience, education and training, the work location as well as market and business considerations.

At this time, GEICO will not sponsor a new applicant for employment authorization for this position.