Greenlight is the leading family fintech company on a mission to help parents raise financially smart kids. We proudly serve more than 6 million parents and kids with our award-winning banking app for families. With Greenlight parents can automate allowance manage chores set flexible spend controls and invest for their family’s future. Kids and teens learn to earn save spend wisely and invest. At Greenlight we believe every child should have the opportunity to become financially healthy and happy. It’s no small task and that’s why we leap out of bed every morning to come to work. Because creating a better brighter future for the next generation depends on it. We are seeking an experienced and motivated Staff Product Security Engineer to join our growing security team. This role will be critical in ensuring the security of our products across the entire software development lifecycle (SDLC). The ideal candidate will be a technical leader capable of driving product security initiatives end to end. You will work closely with engineering product and operations teams to embed security best practices from design through to deployment. As a Staff Product Security Engineer you will be responsible for ensuring the security of Greenlight’s products and services from conception to launch and beyond as well as operating the processes along with the team. You will play a critical role in shaping our security posture embedding security into our development lifecycle and protecting our customers' data. This role reports to the Sr Director Security GRC & Trust### Your day-to-day: + Support in developing and executing a comprehensive product security strategy that aligns with the company's goals and risk appetite. + Foster a culture of security awareness and ownership across the Engineering and Product organizations. + Integrate security best practices and automated tooling into the entire Software Development Lifecycle (SDLC) from design and threat modeling to testing and deployment. + Establish and enforce secure development standards (i.e. API security coding IaC etc.) and best practices across the organization. + Oversee the application security program including static application security testing (SAST) dynamic application security testing (DAST) software composition analysis (SCA) and manual penetration testing. + Partner closely with engineering product and platform teams to prioritize and remediate security vulnerabilities in a timely and efficient manner. + Establish and manage a mature incident response process for product-related security events and vulnerabilities. + Partner with engineering product and platform teams to enhance Greenlight Application’s security features. + Stay current with the latest security threats vulnerabilities and industry best practices to continuously evolve our security controls and processes. ### What you’ll bring to the team: + Deep technical knowledge of web and mobile application security common vulnerabilities (OWASP Top 10) and secure coding practices. + Deep technical knowledge of CI/CD pipeline and relevant tools for web and mobile applications + End to end experience on implementing and managing tools for Product Security (i.e. API Security Mobile Protection SAST runtime scanning etc.) + Hands-on experience with security tools for SAST DAST IAST and penetration testing. + Strong understanding of cloud security principles in AWS environments. + Excellent communication skills with the ability to articulate complex security concepts to both technical and non-technical audiences. + Plus: Experience with security tools such as Burp Suite Metasploit Kali Linux + Plus: Background in financial services fintech or highly regulated industries + Plus: Hands-on certifications (e.g. OSCP Certified Ethical Hacker SANS) and/or demonstrated code projects. Please share your github or public code samples with us! ### Technologies we use: + Node.js Java/Kotlin React Redux Swift SwiftUI + AWS + MySQL DynamoDB Redis + Kubernetes Ambassador Helm Rancher ### Work perks at Greenlight: + Medical dental vision and HSA match + Paid life insurance AD&D and disability benefits + Traditional 401k with company match + Unlimited PTO + Paid company holidays and pop-up bonus holidays + Professional development stipends + Mental health resources + 1:1 financial planners + Fertility healthcare + 100% paid parental and caregiving leave plus cleaning service and meals during your leave + Flexible WFH both remote and in-office opportunities + Fully stocked kitchen catered lunches and occasional in-office happy hours + Employee resource groups Our stance on salaries: Greenlight provides a competitive compensation package with a market-based approach to pay and will vary depending on your location experience and skill set. The total compensation package for this position will also include a discretionary performance bonus equity rewards medical benefits 401K match and more. Greenlight conducts continuous compensation evaluations across departments and geographies to ensure we are keeping our pay current and competitive. The estimated base pay range for this position in (NY CA WA): $165000-200000 The estimated base pay range for this position in (CO): $165000-185000 Who we are: It takes a special team to aim for a never-been-done-before mission like ours. We’re looking for people who love working together because they know it makes us stronger people who look to others and ask “How can I help?” and then “How can we make this even better?” If you’re ready to roll up your sleeves and help parents raise a financially smart generation apply to join our team. Greenlight is an equal opportunity employer and will not discriminate against any employee or applicant based on age race color national origin gender gender identity or expression sexual orientation religion physical or mental disability medical condition (including pregnancy childbirth or a medical condition related to pregnancy or childbirth) genetic information marital status veteran status or any other characteristic protected by federal state or local law. Greenlight is committed to an inclusive work environment and interview experience. If you require reasonable accommodations to participate in our hiring process please reach out to your recruiter directly or email recruiting@greenlight.me.

At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. GEICO is seeking an experienced Senior Staff Engineer to solve complex Network Security-related challenges. You will help drive our insurance business transformation as we redefine our Identity Access Management and Governance strategies. Position Description Our Senior Staff Engineer works with our Distinguished Engineers and Staff Engineers to innovate and build new systems improve and enhance existing systems and identify new opportunities to apply your knowledge to solve critical problems. You will lead the execution of a technical roadmap that will increase the speed of delivering products and unlock new engineering capabilities. The ideal candidate has good technical expertise ensuring secure authentication and communication across the organization. Position Responsibilities As a Senior Staff Engineer you will: Collaborate with product managers team members customers and other engineering teams to solve our toughest problems Develop and execute technical Network Security strategies across all network access-related services and systems while optimizing for performance and efficiency Own accountability for the quality usability and performance of the solutions Consistently share best practices and improve processes within and across teams Take on-call and operational support Qualifications Extensive experience in security access services products and protocols such as MFA and Kerberos as well as Proxy and VPN clients. Extensive experience in designing and optimizing complex firewall ACL configurations. Experience communicating and presentation to senior and junior staff with the ability to influence stakeholders. Experience in a multi-platform environment with Linux Mac Windows. Experience in ZTNA technologies from companies such as Zscaler Private Access (ZPA) Experience in implementing administering and troubleshooting web access firewall and network proxy solutions. Experience in implementing a remote access solution leveraging least privilege principles providing access based upon a person's role in the organization. Experience with solving security control requirements with engineering approaches. Ability to excel in a fast-paced startup-like environment. Ability to design perform experiments and influence security detection and protection solutions. Strong knowledge of industry-standard security tools frameworks and best practices including MITRE CIS and NIST. Fluency and specialization with at least one modern language such as Python or Go. Experience in cryptographic protocols digital certificates and encryption standards such as X.509 Transport Layer Security (TLS) and Advanced Encryption Standard (AES). Experience working with auditors and demonstrating security controls. Experience 4+ years of professional experience in technology or identity engineering 3+ years of experience with security identity architecture and design 2+ years of experience with open-source frameworks is desired 3+ years of experience with AWS GCP Azure or another cloud service Education Bachelor's degree in computer science Information Systems or equivalent education or work experience Annual Salary $130000.00 - $260000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. At this time GEICO will not sponsor a new applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. GEICO is looking for a highly skilled Security Analytics Engineers at multiple levels to join our security team. In this role you will be responsible for building and optimizing our Security Data Platform and Data Lake leveraging advanced analytics data engineering and AI/ML for security use cases. You will work with cutting-edge SIEM solutions (Google Chronicle) and other data analytics tools to drive insights threat detection and security intelligence. Key Responsibilities: Design develop and maintain security data platforms for data analytics data modeling and data engineering. Implement data quantization and data vectorization techniques to optimize & enhance security analytics. Develop AI/ML-driven security solutions to improve threat detection and response capabilities. Work with SIEM platforms (Google Chronicle) to ingest normalize and analyze security event data. Design scalable and efficient security data pipelines to collect and process large datasets. Develop and optimize queries using Kusto Query Language (KQL) and SQL for data analysis and security insights. Write efficient maintainable and scalable code in Python and Go to support security data analytics and automation. Collaborate with security analysts data engineers and software developers to ensure the security data ecosystem meets organizational needs. Ensure compliance with security best practices and policies for secure transmission encryption hashing and encoding of security data. Utilize Git and SDLC principles to ensure robust version control and efficient software development workflows. Required Skills & Experience: Strong knowledge of security concepts including TCP/UDP protocols secure data transmission and encryption techniques. Experience with system design & architecture for security data platforms. Proficiency in Python and Go for security data processing and automation. Experience with Kusto Query Language (KQL) SQL and other data query languages. Hands-on experience with SIEM platforms (Google Chronicle preferred). Understanding of SDLC Git and version control best practices. Nice to have: Eager and ability to learn & leverage AI/ML for security use cases. Strong problem-solving skills and ability to work in a fast-paced environment. Preferred Qualifications: Prior experience in security analytics detection engineering or threat intelligence. Familiarity with big data processing tools and cloud-based security analytics platforms. Experience working in large-scale security data environments. Why Join Us? Work with cutting-edge security analytics technologies. Be part of a team building an advanced Security Data Platform ground up. Opportunity to leverage AI/ML for security innovations. Competitive salary benefits and career growth opportunities. If you are passionate about security analytics and data-driven security engineering we’d love to hear from you! Apply now and help us shape the future of security intelligence. Annual Salary $105000.00 - $230000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. GEICO will consider sponsoring a new qualified applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. As a Senior Staff Engineer of Offensive Security you'll be at the forefront of our cybersecurity strategy for penetration testing advanced attack simulations and enabling organization to prevent detect and respond to cyber threats. Your role is pivotal in shaping our security posture collaborating closely with senior leadership to influence risk decisions and ensure regulatory readiness. We seek a hands-on engineer with deep technical expertise in penetration testing real-world adversary tactics and risk frameworks capable of driving measurable improvements in our cyber resilience. Candidates are expected to have hands-on penetration testing experience while leading the team to perform overall offensive security functions including red and purple teaming. The ideal candidate must possess a highly technical skillset and the ability to collaborate with stakeholders across the company to integrate penetration testing and other offensive security functions within company processes. You'll challenge the status quo identifying opportunities to elevate our security engineering excellence through automation and innovative approaches. Your ability to think big anticipate and adapt change and address root causes will be key to delivering greater business value while proactively examining actions and refining approaches. In this high-stakes environment you'll ensure implementation of industry best practices and execution of offensive security functions while meeting regulatory compliance requirements. This role offers a unique opportunity to expand your influence forge critical alliances and lead the evolution of offensive security in a fast-paced environment. Your impact will be felt across the organization as you strengthen our defenses against ever-evolving cyber threats through simulation of real-world cyberattacks and attempts to breach the organization's defenses. Responsibilities: Strategic and tactical leadership for highly effective penetration testing simulating real-world cyber-attacks (red teaming) and collaborating with defensive security teams (purple teaming). Conduct tactical security penetration test assessments to validate the security of company applications (web mobile APIs and AI products) against OWASP Top 10 threats and work with the Application Security team to provide feedback and recommendations to increase automated capabilities. Design and execute advanced threat emulation scenarios including physical social and digital attack vectors. Ensure penetration testing activities are meeting security business and compliance objectives and outcomes. Guide the team on risk assessment prioritization reporting and remediation of vulnerabilities through automation. Collaborate with Blue Teams Threat Intelligence and Risk Management to ensure comprehensive attack coverage and feedback loops. Ensure operations align with industry regulations and compliance standards such as NIST PCI DSS and NYDFS. Champion continuous improvement and innovation in penetration testing adversary simulation techniques tools and methodologies. Represent the Offensive Security functions in senior leadership and audit discussions as a subject matter expert. Offer technical leadership for 3rd party penetration testing programs by setting a high bar and overseeing vendor testing activities. Required Qualifications: Mastery of vulnerability discovery and exploitation across applications networks and cloud using tools (e.g. Burp Suite Metasploit) and custom scripts (Python PowerShell). Advanced understanding of OWASP MITRE ATT&CK framework software development lifecycle (SDLC) threat modeling red/purple teaming and attack path development. Hands-on experience with tools like Cobalt Strike Mythic BloodHound and AutoSploit. Relevant professional security certifications (e.g. from GIAC or others). Proven experience in achieving results efficiently through automation and establishing best practices. Proven track record to deliver business outcomes for meeting regulatory and compliance obligations. Ability to force multiply through coaching and mentorship to offensive security engineers across all functions (penetration testing red teaming purple teaming). Preferred Qualifications: OSCP OSCE CRTO CISSP or relevant Red Team/offensive security certs. GIAC Penetration Testing Red Team certifications (GCTI GPEN GXPN) a plus. Breadth and depth of knowledge in security of operating systems networking and protocols firewalls databases and middleware applications forensics scripting and programing. Advanced level knowledge of Linux/Mac/Windows operating systems AWS/Azure cloud environments and cloud-native resources (ex. Containers Kubernetes microservices serverless functions) Experience with conducting reverse engineering on mobile applications including applications with anti-emulator and obfuscation protections. Required Experience: 10+ years in engineering focused role preferably in the tech industry. 8+ years of experience in offensive security (penetrating testing red team and purple team). 5+ years of hands-on experience performing penetration-testing red teaming and purple teaming activities. 4+ years of experience with Azure AWS GCP or other cloud providers. Senior role influencing company direction on security. Experience applying security controls to exceed third party attestation requirements (PCI NYDFS SOX …). Education: Bachelor’s degree in Cybersecurity Computer Science or a related field Annual Salary $120000.00 - $260000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. At this time GEICO will not sponsor a new applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. GEICO is seeking an experienced Sr. Staff Engineer Operations Engineer with a passion for managing complex programs across multiple departments and team to build Vulnerability Management & Offensive Security operational excellence from the ground up. You will help drive our business transformation as we transition from a traditional IT model to a tech organization with engineering excellence as its mission. The Sr. Staff Engineer Operations is a key member of the Vulnerability Management & Offensive Security leadership team working across the organization to ensure successful delivery of effective security controls and prioritization of initiatives and issue management. In this role you will own a portfolio of initiatives such as compliance security engineering operational excellence and vendor engagement. This is beyond technical project management and requires a background in Vulnerability Management and Offensive Security driving deliveries of solutions and proving success with KPIs and visible metrics. The ideal candidate will have excellent communication skills real world examples in engaging the right technical partners and leadership to drive towards solutions and get people working together. As a Sr Staff Engineer you will lead efforts to identify plan and deliver program security outcomes by independently engaging a broad set of internal and external stakeholders. This also includes the following: Monitor and track signals of security gaps initiative delays compliance risks due to system issues and drive resolution. Create visuals on current performance and risk indicators related to Vulnerability Management & Offensive Security initiatives and operations. Help to develop standards on reporting Vulnerability Management & Offensive Security tool effectiveness maturity resilience and other factors in determining risks as they come up. Help drive automation of routine tasks to drive growth in security protection and detection technologies. Provide expert guidance demonstrations and lead discussions on security best practices to stakeholders and leadership. Works in lockstep with our CSIRT GRC Platform Security Development/Product organizations and Technology partner teams to ensure protection coverages proper detection event notifications documentation and standards we can all use. Organize store and manage operational best practices documentation for security solutions to protect our business products and assets in a hybrid environment (on-prem and multi-cloud). Partner with the project sponsors delivery teams and stakeholders to deliver quality solutions on time and within budget by coordinating project activities across multiple systems departments and teams. Create maintain and actively manage a detailed project schedule change control process and documentation. Identify and raise appropriate security risks in addition to presenting detailed and implementable solutions or alternatives and drive those campaigns to resolution. Drive vendor management Manage by identifying vendors coordinating vendor activities and working with Sourcing to develop statement of work and procure services. Qualifications Demonstrated understanding of vulnerability management and offensive security tooling and practices including – vulnerability scanning of infrastructure penetration testing red/purple teaming risk assessment prioritization and remediation of vulnerabilities. Familiar with CVEs CWEs CVSS and OWASP projects - Web Top Ten API Top Ten Mobile Top Ten and OWASP AI. Knowledge of data access languages such as SQL and GraphQL and the ability to construct queries against data sources. Extensive experience in engineering and solution delivery in a dynamic service provider environment. Strong knowledge of project management methodologies and best practices. Proven track record of successfully managing large/complex projects across cross-functional teams building processes and coordinating delivery Working knowledge of security services and their impact on production systems including runtime protection services detective and protective agents and/or daemon sets vulnerability and application scanning etc. Experience in a multi-cloud environment including AWS Azure and/or Google Cloud. Experience communicating and presenting to senior and junior staff with the ability to influence development partners and stakeholders. Detail and deadline oriented with effective organizational and analytic skills Strong critical thinking problem solving decision making and analytical skills Outstanding time management skills and attention to detail Excellent verbal/written communication skills including the ability to clearly document findings proposals issues and status Self-motivated and able to work independently while coordinating activities with cross-divisional teams Effective leadership qualities ability to influence without direct management authority Ability to excel in a fast-paced startup-like environment Knowledge of industry-standard security control frameworks and compliance standards including NIST PCI SOX NYDFS. Preferred Qualifications: Knowledge in a hybrid cloud environment such including Containerization VMs CI/CD pipeline IaC Experience defining KPI’s/SLAs used to drive multi-million-dollar businesses and reporting to senior leadership. Experience 10+ years in engineering focused role preferably in the tech industry 4+ years of experience with AWS GCP Azure or other cloud providers 4+ years in a senior role influencing company direction Experience applying engineering to meet or exceed third party attestation requirements (PCI SOX …). Education Bachelor’s degree in Computer Science Cyber Security or equivalent education with work experience Third party certifications on security or engineering related technologies Annual Salary $120000.00 - $260000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. At this time GEICO will not sponsor a new applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. GEICO is seeking an experienced Sr. Staff Engineer Operations Engineer with a passion for managing complex programs across multiple departments and team to build Product Security operational excellence from the ground up. You will help drive our business transformation as we transition from a traditional IT model to a tech organization with engineering excellence as its mission. The Sr. Staff Engineer Operations is a key member of the Product Security leadership team working across the organization to ensure successful delivery of effective security controls and prioritization of initiatives and issue management. In this role you will own a portfolio of initiatives such as compliance engineering and operational excellence and vendor engagement. This is beyond technical project management and requires a background in building teams delivering solutions and proving success with KPIs and visible metrics. The ideal candidate will have excellent communication skills real world examples in engaging the right technical partners and leadership to drive towards solutions and get people working together. As a Sr Staff Engineer you will lead efforts to identify plan and deliver program security outcomes by independently engaging a broad set of internal and external stakeholders. This also includes the following: Monitor and track signals of security gaps initiative delays compliance risks due to system issues and drive resolution. Create visuals on current performance and risk indicators related to product security initiatives and operations. Help to develop standards on reporting product security tool effectiveness maturity resilience and other factors in determining risks as they come up. Help drive automation of routine tasks to drive growth in security protection and detection technologies. Provide expert guidance demonstrations and lead discussions on security best practices to stakeholders and leadership. Works in lockstep with our CSIRT GRC Platform Security Development/Product organizations and Technology partner teams to ensure protection coverages proper detection event notifications documentation and standards we can all use. Organize store and manage operational best practices documentation for security solutions to protect our business products including applications services code and associated repositories infrastructure as code (IaC) and code related to deployment pipelines. Partner with the project sponsors delivery teams and stakeholders to deliver quality solutions on time and within budget by coordinating project activities across multiple systems departments and teams. Create maintain and actively manage a detailed project schedule change control process and documentation. Identify and raise appropriate security risks in addition to presenting detailed and implementable solutions or alternatives and drive those campaigns to resolution. Qualifications Demonstrated understanding of application security tooling and testing including SAST DAST SCA etc. as well as cross-functional awareness of security operations including SOC Incident Response Privacy Legal Vulnerability Management and Data Protection. Familiar with OWASP projects and implementation within the product security organization such as Web Top Ten API Top Ten Mobile Top Ten and ASVS. Knowledge of data access languages such as SQL and GraphQL and the ability to construct queries against data sources. Extensive experience in engineering and solution delivery in a dynamic service provider environment. Strong knowledge of project management methodologies and best practices. Proven track record of successfully managing large/complex projects across cross-functional teams building processes and coordinating delivery Working knowledge of security services and their impact on production systems including runtime protection services detective and protective agents and/or daemon sets vulnerability and application scanning etc.. Experience in a multi-cloud environment including AWS Azure and/or Google Cloud. Experience communicating and presenting to senior and junior staff with the ability to influence development partners and stakeholders. Detail and deadline oriented with effective organizational and analytic skills Strong critical thinking problem solving decision making and analytical skills Outstanding time management skills and attention to detail Excellent verbal/written communication skills including the ability to clearly document findings proposals issues and status Experience with continuous delivery Self-motivated and able to work independently while coordinating activities with cross-divisional teams Effective leadership qualities ability to influence without direct management authority Ability to excel in a fast-paced startup-like environment. Knowledge of industry-standard security control frameworks including NIST PCI SOX NYDFS. Preferred Qualifications: Knowledge in a hybrid cloud environment such including Containerization VMs CI/CD pipeline IaC Experience defining KPI’s/SLA’s used to drive multi-million-dollar businesses and reporting to senior leadership. Experience 8+ years in engineering focused role preferably in the tech industry 4+ years of experience with AWS GCP Azure or other cloud providers 4+ years in a senior role influencing company direction Experience applying engineering to meet or exceed third party attestation requirements (PCI SOX …). Education Bachelor’s degree in Computer Science Cyber Security or equivalent education with work experience Third party certifications on engineering related technologies. Annual Salary $115000.00 - $260000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. At this time GEICO will not sponsor a new applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

"At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. GEICO is seeking a highly skilled and experienced Staff Security Engineer to lead our Vulnerability Management program. The ideal candidate will be a seasoned security professional with deep expertise in identifying analyzing and remediating vulnerabilities across a large-scale complex enterprise environment. This role is a key leadership position within our Cybersecurity team responsible for defining the strategic direction of our vulnerability management initiatives mentoring junior engineers and driving a culture of security awareness and proactive risk reduction. As a Staff Security Engineer you will: Own and lead the end-to-end Vulnerability Management lifecycle including discovery prioritization remediation and reporting. Develop and execute a long-term strategy for vulnerability management incorporating emerging threats industry best practices and new technologies. Serve as a subject matter expert on vulnerability scanning tools (e.g. Tenable.io Qualys CrowdStrike) penetration testing methodologies and threat modeling. Conduct in-depth analysis of vulnerability data to identify critical risks and provide actionable recommendations to engineering and business teams. Drive the automation of vulnerability discovery and remediation processes to improve efficiency and reduce manual effort. Partner with development DevOps and infrastructure teams to integrate security into the SDLC (Software Development Life Cycle) and foster a ""shift-left"" security approach. Create and present clear concise reports on the state of the vulnerability program to senior leadership highlighting key risks progress and strategic initiatives. Mentor and guide junior security engineers sharing knowledge and expertise to help them grow their skills and careers. Collaborate with the Incident Response team to provide critical context and support during security incidents. Ensure the vulnerability management program meets regulatory and compliance requirements (e.g. PCI DSS SOX). Qualifications: 6+ years of experience in cybersecurity with at least 4 years specifically focused on vulnerability management. Expertise with leading vulnerability scanning platforms (e.g. Tenable.io Qualys Rapid7). Strong understanding of network protocols operating systems (Windows Linux) and cloud environments (AWS Azure GCP). Proficiency in scripting languages (e.g. Python PowerShell) for automation. Knowledge of secure coding practices and common web application vulnerabilities (OWASP Top 10). Excellent written and verbal communication skills with the ability to articulate complex technical issues to both technical and non-technical audiences. Proven leadership and mentorship abilities. Strong analytical and problem-solving skills. Ability to work effectively in a fast-paced dynamic environment. Professional security certification (e.g. CISSP CCSP CSSLP) is a plus Education: Bachelor's degree in Computer Science Information Technology Cybersecurity or a related field or equivalent practical experience. Annual Salary $115000.00 - $230000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. GEICO will consider sponsoring a new qualified applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants."

At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. Staff Security Engineer (Cyber Governance Engineering) A Staff Security Engineer works with GEICO engineering teams to innovate and build new processes systems improve and enhance existing systems and identify new opportunities to apply your knowledge to solve critical problems. You will lead the development of an Automated Continuous compliance platform for GEICO Cybersecurity Governance team which enables real time evidence collection identifying non-compliance with policies early and provides the team with remediation guidelines in an automated scalable way to reduce the audit fatigue and improve the developer experience. You will collaborate with developers engineers and compliance & security teams across GEICO to institute the programmatic controls vital for the program. You will partner with application security platform security SRE central security and compliance groups at GEICO to craft and roll out controls processes automate collection of evidence and create dashboard on the security posture of GEICO. Lead the Cyber Governance automation for automated evidence collection and reporting on automated adherence to information security policies Design the Automated Governance Solution including creating requirements and partner with key stakeholders to implement the solution Maintain mature and enhance the Automated Governance Solution to attain a high NPS scores. Provide technical leadership for Cyber Governance program strategy automation integration with Cyber and IT technologies/Services. Execute on the Automated Governance Platform with understanding of the information security policies security standards security technologies GEICOs environment (multi-cloud on-prem) structure and compliance obligations. Collaborate with engineering teams to define the overall system architecture ensuring scalability and performance optimization. Collaborate across teams and across the organization to solve our toughest problems Solve audit fatigue and improve operational rigor Ensure we meet regulatory compliance with evidence in a scalable manner Determine complimentary products and solutions to scale and expedite overall automation goals Partner with cloud technical teams (Azure GCP AWS etc.) to deliver a successful outcome Influence and educate partner teams to bring an engineering first approach to develop sustainable processes to adhere to policies Comfortable rolling up your sleeves to design and code for automated continuous compliance Solve specific security and business problems through automation utilizing code and integrating cloud-native and tools via API. Work closely with various teams to drive feature innovation based upon customer needs. Utilize programming languages like Python C# or other object-oriented languages SQL and NoSQL databases Container Orchestration services including Docker and Kubernetes and a variety of Azure tools and services Follow GEICOs developer standards and guidelines Triage product or system issues and debug/track/resolve by analyzing the sources of issues and the impact dependent systems Be a role model and mentor helping to coach and strengthen the technical expertise and know-how of our engineering and product community Influence and educate executives Consistently share best practices and improve processes within and across teams Determine and support resource requirements evaluate operational processes measure outcomes to ensure desired results demonstrate adaptability and sponsor continuous learning Qualifications Programming experience with at least one modern language such as Java C++ or C# including object-oriented design Experience contributing to the architecture and design (architecture design patterns reliability and scaling) of new and current systems Understanding of existing Operational Portals such as Azure Portal Understanding of HTML-5 JavaScript/TypeScript XML and JSON Understanding of Azure Network such as security zones VNETs and Public Peered Services Understanding of Azure PaaS and IaaS services Understanding of AWS cloud environment Understanding of security protocols and products such as of Active Directory Windows Authentication SAML OAuth 5+ years of security compliance framework experience Expertise with security standards such as SOX PCI-DSS ISO27K SOC or NIST (some combination of these is ideal) Technical acumen required. Understanding of cloud open-sourced distributed systems are ideal Great at both collaboration and independent problem solving Superb written communication and technical research skills Ability to develop relationships and work effectively with different teams at all levels and across functions relative to technical policy and business concerns Ability to resolve conflicts and drive issues to resolution Work independently with little or no supervision while maintaining a high level of efficiency Education Bachelor's Degree or equivalent experience preferred. Experience & Security Certifications 6+ years of professional software engineering experience 3+ years of experience with architecture and design 2+ years of experience with AWS GCP Azure or another cloud service 2+ years of experience in open-source frameworks Professional security certifications (e.g. CISSP CCSP CSSLP) is a plus Annual Salary $110000.00 - $230000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. At this time GEICO will not sponsor a new applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

At GEICO we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive through relentless innovation to exceed our customers’ expectations while making a real impact for our company through our shared purpose. When you join our company we want you to feel valued supported and proud to work here. That’s why we offer The GEICO Pledge: Great Company Great Culture Great Rewards and Great Careers. GEICO is seeking a Sr Staff DLP Security Engineer to provide strategic and technical direction for our user development and production environments. You will proactively and holistically drive lead and support Security detection and prevention strategies with proof and validation of our controls in the various messaging platforms and data loss prevention technologies. We see collaboration as a combination of traditional email modern chat and conferencing systems our users and partners use every day. From users third-party production systems or elsewhere to integrations and governing our identified policies. We need an expert to join our team and apply high confidence low friction security across the collaboration spectrum. Our Sr Staff Engineer works with Staff and Sr. Engineers to innovate and lead new initiatives improve Security and enhance existing systems while also identifying new opportunities with an insider threat mindset to find critical risk and solve at a rapid pace. You will help lead the confirmation our systems are protected through continuous improvement and automated testing to raise the bar and foster a proactive security culture which also enables the business without impact. The ideal candidate has deep technical expertise in this domain and an attacker/defender adversarial background. As a Sr Staff Engineer you will: Design implement and develop advanced email security solutions to protect email systems from cyber threats including phishing malware data exfiltration and other attacks. Monitor and analyze traffic for signs of malicious activity employing advanced threat detection techniques. Help to develop and enforce messaging security policies standards and procedures with automation and the support your team. Conduct regular security assessments without disrupting the operational excellence of various messaging systems. Provide expert guidance and recommendations on collaboration security best practices to stakeholders. Works in lockstep with our CSIRT teams to ensure protection coverages proper detection event notifications documentation and standards we can all use. Determine and implement DLP improvements and enhancements to increase data security and efficiency. Ensure compliance with data protection laws regulations and standards such as GDPR CCPA HIPAA and PCI DSS. Generate and deliver reports and metrics to management and stakeholders on the effectiveness of our protective solutions in messaging and data loss prevention. Define roadmaps for securing collaboration system with purposeful and functional security without impacting or unnecessary overhead. Proactively identify opportunities to enhance security measures streamline processes and optimize tooling to fortify our environment against emerging threats. Help develop and implement policies standards and guidelines to ensure compliance with industry regulations and frameworks promoting security as an integral part of our operation by partnering with external teams and their leadership. Deliver automation initiatives conduct advanced research and develop proofs of concept to enhance our security capabilities and improve overall efficiency. Qualifications Extensive experience in security products and frameworks: SEG O365 CASB DLP DSPM and related endpoint controls. Experience with data protection laws regulations and standards. Experience communicating and presentation to senior and junior staff with the ability to influence stakeholders. Experience in a multi-platform environment with Linux Mac Windows. In-depth knowledge of email security protocols (e.g. SMTP DMARC DKIM SPF) and encryption technologies. Proficiency with email CASB and DLP security tools and platforms (e.g. Proofpoint Mimecast Abnormal ForcePoint Microsoft Defender Zscaler) Experience with multiple IaaS platforms from top tier providers. Experience with solving security control requirements with engineering approaches. Ability to excel in a fast-paced startup-like environment. Ability to design perform experiments and influence security detection and protection solutions. Strong knowledge of industry-standard security tools frameworks and best practices including Mitre CIS and NIST. Demonstratable proficiency in common scripting languages with examples of automation at scale. Strong understanding of cyber threat intelligence and incident response processes Experience 5+ years in a dedicated security role preferably in the tech industry 3+ years in email security with a strong focus on threat detection and mitigation 3+ years of experience in DLP administration or data security 3+ years in a senior role influencing company direction on security Knowledge of the monitoring and analysis of alerts and events using related detection tools and dashboards Knowledge of investigation and resolution of technology related incidents and breaches and escalation procedures Experience applying security controls to exceed third party attestation requirements (PCI SOC …). Education Bachelor’s degree in Computer Science Cyber Security or equivalent education with work experience. Third party certifications such as: Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Ethical Hacker (CEH) or similar are highly desirable. Penetration testing/ethical hacking exploit detection and evasion techniques and related experience preferred. Annual Salary $130000.00 - $260000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include but are not limited to the scope and responsibilities of the role the selected candidate’s work experience education and training the work location as well as market and business considerations. GEICO will consider sponsoring a new qualified applicant for employment authorization for this position. The GEICO Pledge: Great Company: At GEICO we help our customers through life’s twists and turns. Our mission is to protect people when they need it most and we’re constantly evolving to stay ahead of their needs. We’re an iconic brand that thrives on innovation exceeding our customers’ expectations and enabling our collective success. From day one you’ll take on exciting challenges that help you grow and collaborate with dynamic teams who want to make a positive impact on people’s lives. Great Careers: We offer a career where you can learn grow and thrive through personalized development programs created with your career – and your potential – in mind. You’ll have access to industry leading training certification assistance career mentorship and coaching with supportive leaders at all levels. Great Culture: We foster an inclusive culture of shared success rooted in integrity a bias for action and a winning mindset. Grounded by our core values we have an an established culture of caring inclusion and belonging that values different perspectives. Our teams are led by dynamic multi-faceted teams led by supportive leaders driven by performance excellence and unified under a shared purpose. As part of our culture we also offer employee engagement and recognition programs that reward the positive impact our work makes on the lives of our customers. Great Rewards: We offer compensation and benefits built to enhance your physical well-being mental and emotional health and financial future. Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being. Financial benefits including market-competitive compensation a 401K savings plan vested from day one that offers a 6% match performance and recognition-based incentives and tuition assistance. Access to additional benefits like mental healthcare as well as fertility and adoption assistance. Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program which offers the ability to work from anywhere in the US for up to four weeks per year. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race color religious creed national origin ancestry age gender pregnancy sexual orientation gender identity marital status familial status disability or genetic information in compliance with applicable federal state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.

Remote United StatesTechnology – Security /Full Time /Remote As a Staff Security Engineer for Identity and Access Management (IAM) at Aledade you will play a central role in enhancing the security posture of our enterprise cloud-native environments and applications. We are seeking a dedicated professional with in-depth knowledge of IAM principles standards and best practices to help safeguard our systems and support our security compliance initiatives. In this role you will work to design implement and maintain robust IAM solutions managing authentication authorization and provisioning across diverse platforms. You will also collaborate closely with various teams to ensure alignment between IAM solutions and organizational security requirements enabling secure and seamless access across the enterprise. Your ability to partner cross-functionally will be key to driving impactful outcomes and further strengthening our digital landscape.### Primary Duties: + Lead the development implementation and ongoing maintenance of comprehensive security strategies and solutions. + Design and deploy advanced security controls to safeguards networks systems and applications. + Work across disciplines to shape our security services strategy and execution + Mentor and galvanize new engineers to do their best work + Set and uphold the standard for security processes to support high-quality engineering ### Minimum Qualifications: + BS/BTech (or higher) in Computer Science Information Technology Cybersecurity or a related field 10 years security domain experience without degree + 8+ years of experience in software or security engineering within Cloud Native environments. ### Preferred Knowledge Skills and/or Abilities: + Experience architecting developing and deploying enterprise-wide IAM and IGA solutions and aligning them with business objectives + Experience with cloud technologies e.g. AWS Azure GCP + 4+ years of experience acting as a trusted technical decision-maker in a team setting solving for short-term and long-term business value + You have experience in taking ownership of the technology decisions while delegating and empowering team members. + You have experience communicating analysis and establishing confidence among audiences who do not share your disciplinary background or training. + You have strong communication and relationship building skills with experience influencing and aligning multiple stakeholders + Adaptability to rapidly evolving technologies and regulations + Experience with various compliance standards and frameworks: SOC 2 HIPAA CCPA ISO 27001 SOX ITGC are required + Domain Specific: + Identity & Access Management + Experience with Identity & Access Management (IaM) systems and practices + In-depth knowledge of authentication protocols authorization mechanisms and directory services + Strong proficiency implementing IaM solutions within very complex environments + Familiarity with regulatory compliance and security standards + Experience generating automated metrics to measure service and program effectiveness and consistency + Strong communication skills both written and verbal with the capability to articulate complex security issues to a diverse audience + Experience with tools in the security stack strongly preferred: Federated Identity - Okta/Auth0/Entra ID/Ping Identity IGA - Sailpoint/Saviynt/Omada Cloud Platforms - AWS/Azure/GCP etc. + AWS Certified Security – Specialty or other relevant AWS certifications are a plus Who We Are: Aledade a public benefit corporation exists to empower the most transformational part of our health care landscape - independent primary care. We were founded in 2014 and since then we've become the largest network of independent primary care in the country - helping practices health centers and clinics deliver better care to their patients and thrive in value-based care. Additionally by creating value-based contracts across a wide variety of health plans we aim to flip the script on the traditional fee-for-service model. Our work strengthens continuity of care aligns incentives and ensures primary care physicians are paid for what they do best - keeping patients healthy. If you want to help create a health care system that is good for patients good for practices and good for society - and if you're eager to join a collaborative inclusive and remote-first culture - you've come to the right place. What Does This Mean for You? At Aledade you will be part of a creative culture that is driven by a passion for tackling complex issues with respect open-mindedness and a desire to learn. You will collaborate with team members who bring a wide range of experiences interests backgrounds beliefs and achievements to their work - and who are all united by a shared passion for public health and a commitment to the Aledade mission. In addition to time off to support work-life balance and enjoyment we offer the following comprehensive benefits package designed for the overall well-being of our team members: Flexible work schedules and the ability to work remotely are available for many roles Health dental and vision insurance paid up to 80% for employees dependents and domestic partners Robust time-off plan (21 days of PTO in your first year) Two paid volunteer days and 11 paid holidays 12 weeks paid parental leave for all new parents Six weeks paid sabbatical after six years of service Educational Assistant Program and Clinical Employee Reimbursement Program 401(k) with up to 4% match Stock options And much more! At Aledade we don’t just accept differences we celebrate them! We strive to attract develop and retain highly qualified individuals representing the diverse communities where we live and work. Aledade is committed to creating a diverse environment and is proud to be an equal opportunity employer. Employment policies and decisions at Aledade are based on merit qualifications performance and business needs. All qualified candidates will receive consideration for employment without regard to age race color national origin gender (including pregnancy childbirth or medical conditions related to pregnancy or childbirth) gender identity or expression religion physical or mental disability medical condition legally protected genetic information marital status veteran status or sexual orientation. Privacy Policy: By applying for this job you agree to Aledade's Applicant Privacy Policy available at https://www.aledade.com/privacy-policy-applicants