The GEICO Cybersecurity Organization has an exciting opportunity for an accomplished Senior Identity Engineer. This individual will play a key role within GEICO Cybersecurity Identity Security team as a Senior Engineer.

　　The Cybersecurity Identity Engineering Team is at the forefront of initiatives to modernize Identity and Access programs and practices at GEICO. The team members lead engineering and design activities and act as product SME of initiatives to modernize Identity programs and services within a well-established scrum practice. They serve a critical role within cross-functional teams to understand functional requirements, shape business processes and technical requirements, and drive team results.

　　Cybersecurity Modern Authentication is presently engaged in numerous initiatives to improve end user experience and service resiliency, while strengthening our security posture and improving governance and compliance. The Engineer will provide critical strategic guidance as the organization modernizes how GEICO utilizes key Identity services within the realm of Azure Active Directory, Conditional Access Policies, Azure Multi-Factor Authentication, Federated Authentication, and Cloud Identity and Access Lifecycle Management.

　　The ideal Engineer will be well versed in Azure Active Directory capabilities and be able to guide the team to design how to best deliver a secure and seamless process to internal GEICO services. The Engineer will have a desire to work in a dynamic environment, have an excellent work ethic, great communication skills, and be a self-starter. The Engineer must also be a team player with a positive attitude who is motivated to work towards common goals and shared responsibilities.

　　Responsibilities:Help guide and prioritize the engineering, architecture, and design of Identity solutions and how they work holistically with other systems, both Identity systems and others within GEICOProvide guidance on the architecture and design of solutions that are highly available and fault tolerantAlong with your Scrum Master and Scrum Team members, ensure that the product backlog for each scrum is prioritized properly to meet customer demandsEnsure that User Stories are constructed properly and are well definedParticipate in development and reporting of proper metrics that measure project progress, as well as metrics that illustrate the efficacy of how the Modern Authentication Scrum is operating within IdentityAlong with Scrum team members, lead customer-facing and stakeholder engagement efforts for IdentityBe an advocate for Agile and ScrumOptimize and support the infrastructure with tier 3 supportDesired Experience:Have an expert-level understanding of Authentication, Authorization, and Auditing as they relate to Identity and Access ManagementHave an expert-level understanding with Federation principles and protocols, to include SAML and Open ID ConnectHave an expert-level understanding with how identities function in various mainstream directories, to include Azure Active Directory, Active Directory, RACF, and have an expert-level understanding with Multifactor Authentication principles and how they can be effectively implementedHave an expert-level understanding with Privileged Access Management principles, to include Least Privilege and Just-In-Time accessPerform expert-level security solution design, implementation, and maintenance activities under minimal directionResearch and evaluate new security solutions, frameworks, and techniques to provide recommendations to the divisionProvide strategic guidance on identity security gaps and maintain compliance with industry security standardsPerform expert-level documentation and maintain and develop solution requirements - understanding and experience of an Architecture and Engineering lifecycleMentor less experienced engineers5+ years relative experience with industry standard security tools and technologies including: Azure Active Directory, Active Directory, SAML, Open ID Connect, LDAP/Kerberos, ADFS, Multi-Factor Authentication, Password-less Authentication, Single Sign on, Role-based access controls, PKI, DNS, PowerShell, Azure DevOps/VSTS, Agile, ScrumQualifications:Possess or obtain CISSP, CCSP, or Security+ certification within 6 months (equivalent or higher cybersecurity certification can be accepted)Azure Certifications a plus#LI-AW1

　　At this time, GEICO will not sponsor a new applicant for employment authorization for this position.

　　Benefits:

　　As an Associate, you'll enjoy our Total Rewards Program * to help secure your financial future and preserve your health and well-being, including:Premier Medical, Dental and Vision Insurance with no waiting periodPaid Vacation, Sick and Parental Leave401(k) PlanTuition ReimbursementPaid Training and Licensures*Benefits may be different by location. Benefit eligibility requirements vary and may include length of service.

　　Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.

　　The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled.

　　GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.