GEICO is seeking an experienced Principal Engineer with a passion for continuously researching, assessing, and prioritizing cyber threats based on internal and external relevance, and impact. You will lead capturing our portfolio of historical threat activity, trends and common attack vectors to predict and detect future threats. Our Principal Engineer partners with Cyber Security teams to detect and isolate advanced threats that are lurking undetected in the network having evaded existing security solutions. You will also be a thought leader for Analytics team's creation of hypotheses leveraging internal and external sources, private sources and trusted partners like BRK-ISAC, FSISAC.

　　You will help us build a high-performance Analytics program covering enterprise security and applications. You will help drive our insurance business transformation and detection engineering domain forward, as we redefine secure experiences for our customers.

　　As a Principal Engineer you will work with our Senior Engineers to innovate and build new systems, improve, and enhance existing systems as well as identify new opportunities to solve critical problems. You will lead the strategy and execution of the analytics roadmap that to increase the velocity of delivering detections and protections, while unlocking new engineering capabilities. The ideal candidate has deep technical expertise in the Open-Source platform domain.

　　 Position Responsibilities

　　As a Principal Engineer, you will: Provide technical and thought leadership to the enterprise and team Collaborate with CSIRT, Analytics, CTI, Insider Threat, Vulnerability, Pen testers, product managers, team members, customers, and other engineering teams to solve our toughest security and automation problems Accountable for the quality, usability & performance of the solutions. Deep hands-on experience in complex system design and data pipeline and architectures, scale, performance, and tuning Fluent in at least two of the following languages: Python, C, Go, PHP, Perl, Java, JavaScript, Shell script, PowerShell, etc. Understand open-source security products such as to Security Onion, Elasticsearch, Logstash, Wazuh, Suricata, Snort, IDS/IPS, OpenVAS, Grafana, CloudSploit, etc. Be a role model and mentor, helping to coach and strengthen the technical expertise and know-how of our engineering and product community. Influence and educate executives Deep familiarity of MITRE Threat Informed Defense framework. Experience leveraging TID for the understanding of adversary tradecraft and technology to protect against, detect and mitigate cyber-attacks Consistently share best practices and improve processes within and across teams. Determine and support resource requirements, evaluate operational processes, measure outcomes to ensure desired results, demonstrate adaptability and sponsor continuous learning. Qualifications: Exemplary ability to design, perform experiments, and influence engineering direction and product roadmap Experience partnering with engineering teams and transferring research to production Experience with continuous delivery and detection as code Experience solving analytical problems with quantitative approaches Ability to excel in a fast-paced, startup-like environment Knowledge of developer tooling across the software development life cycle (task management, source code, building, deployment, test automation and related tools, operations, real-time communication) Knowledge in ML and AI technologies Knowledge of Open-source monitoring software like Elastic, Grafana and Prometheus Ability to think critically and analyze abstract data. One or more of the following Cybersecurity certifications are preferred: CISSP CEH SANS GIAC Experience: 6+ years of professional software development experience 4+ years of experience with AWS, GCP, Azure, or another cloud service 4+ years of experience in security engineering and technology 3+ years of experience with architecture and design 3+ years of experience in open-source frameworks 1+ years of people management experience Education: Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or equivalent education or work experience #LI-AW1

　　At this time, GEICO will not sponsor a new applicant for employment authorization for this position.

　　Benefits:

　　As an Associate, you'll enjoy our Total Rewards Program * to help secure your financial future and preserve your health and well-being, including:Premier Medical, Dental and Vision Insurance with no waiting periodPaid Vacation, Sick and Parental Leave401(k) PlanTuition ReimbursementPaid Training and Licensures*Benefits may be different by location. Benefit eligibility requirements vary and may include length of service.

　　Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.

　　The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled.

　　GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.