GEICO
Senior Staff Engineer – Cybersecurity Data Protection Engineer (REMOTE)
GEICO, Seattle, Washington, us, 98127
Overview
Senior Staff Engineer – Cybersecurity Data Protection Engineering (REMOTE) at GEICO. This role focuses on data protection management within GEICO’s Cybersecurity Data Security, Protection, and Privacy team. Base pay range
$115,000.00/yr - $260,000.00/yr Responsibilities
Develop and implement data protection strategies and initiatives, including classification and handling, data access controls, inventory, encryption, and retention. Work with stakeholders to enforce data protection policy and respond to regulatory requirements. Develop and maintain data security policies, procedures, standards, and ensure organization-wide adherence. Create and maintain data inventories and data flows, and manage data sharing controls. Drive design and implementation of data access controls to ensure only authorized access to sensitive data. Co-develop and implement data retention policy and procedures; ensure compliance with internal policy and external regulations. Enforce data encryption standards for data at rest and in transit. Lead incident response efforts related to data breaches and coordinate with stakeholders to mitigate impact. Lead regular data risk assessments to identify vulnerabilities and threats to data and information systems. Stay current with developments in cybersecurity and align risk assessment and data security processes with industry standards. Act as an expert and mentor for other data protection engineers; support data protection methodologies and best practices. Manage and supervise the work of other data protection engineers; review and approve their work when needed. Represent the organization in external meetings with clients, stakeholders, and industry experts. Qualifications
Proven experience with data discovery, classification, handling, access, inventory, and retention. Proven experience with data protection technologies such as encryption, tokenization, and data loss prevention tools. Familiarity with programming languages such as Python, Java, or .NET. Experience designing and implementing data security solutions for enterprise environments. Experience managing and supervising other Data Protection Engineers. Experience developing and managing data protection programs focused on data discovery, data inventory, data risk assessments, and encryption for structured and unstructured data. Strong knowledge of cybersecurity laws, regulations, and best practices; knowledge of data security frameworks and protocols. Strong understanding of data privacy laws and regulations (e.g., NYDFS, PCI). Strong analytical and problem-solving skills; excellent communication and presentation skills. Ability to excel in a fast-paced environment. Experience
7+ years of experience in cybersecurity with focus on data protection and privacy. 4+ years of experience with open-source frameworks. 3+ years of experience with architecture and design. 3+ years of experience with AWS, GCP, Azure, or another cloud service. Education
Bachelor’s degree in Computer Science, Information Systems, or equivalent education or work experience. Certifications (highly desired)
Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified in Risk and Information Systems Control (CRISC) Additional notes
GEICO will consider sponsoring a new qualified applicant for employment authorization for this position. The GEICO Pledge outlines Great Company, Great Culture, Great Rewards and Great Careers. EOE and benefits
The GEICO equal employment opportunity policy provides fair and equal employment opportunities for all associates and job applicants in compliance with applicable laws. GEICO reasonably accommodates qualified individuals with disabilities. We promote a respectful, inclusive work environment.
#J-18808-Ljbffr
Senior Staff Engineer – Cybersecurity Data Protection Engineering (REMOTE) at GEICO. This role focuses on data protection management within GEICO’s Cybersecurity Data Security, Protection, and Privacy team. Base pay range
$115,000.00/yr - $260,000.00/yr Responsibilities
Develop and implement data protection strategies and initiatives, including classification and handling, data access controls, inventory, encryption, and retention. Work with stakeholders to enforce data protection policy and respond to regulatory requirements. Develop and maintain data security policies, procedures, standards, and ensure organization-wide adherence. Create and maintain data inventories and data flows, and manage data sharing controls. Drive design and implementation of data access controls to ensure only authorized access to sensitive data. Co-develop and implement data retention policy and procedures; ensure compliance with internal policy and external regulations. Enforce data encryption standards for data at rest and in transit. Lead incident response efforts related to data breaches and coordinate with stakeholders to mitigate impact. Lead regular data risk assessments to identify vulnerabilities and threats to data and information systems. Stay current with developments in cybersecurity and align risk assessment and data security processes with industry standards. Act as an expert and mentor for other data protection engineers; support data protection methodologies and best practices. Manage and supervise the work of other data protection engineers; review and approve their work when needed. Represent the organization in external meetings with clients, stakeholders, and industry experts. Qualifications
Proven experience with data discovery, classification, handling, access, inventory, and retention. Proven experience with data protection technologies such as encryption, tokenization, and data loss prevention tools. Familiarity with programming languages such as Python, Java, or .NET. Experience designing and implementing data security solutions for enterprise environments. Experience managing and supervising other Data Protection Engineers. Experience developing and managing data protection programs focused on data discovery, data inventory, data risk assessments, and encryption for structured and unstructured data. Strong knowledge of cybersecurity laws, regulations, and best practices; knowledge of data security frameworks and protocols. Strong understanding of data privacy laws and regulations (e.g., NYDFS, PCI). Strong analytical and problem-solving skills; excellent communication and presentation skills. Ability to excel in a fast-paced environment. Experience
7+ years of experience in cybersecurity with focus on data protection and privacy. 4+ years of experience with open-source frameworks. 3+ years of experience with architecture and design. 3+ years of experience with AWS, GCP, Azure, or another cloud service. Education
Bachelor’s degree in Computer Science, Information Systems, or equivalent education or work experience. Certifications (highly desired)
Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified in Risk and Information Systems Control (CRISC) Additional notes
GEICO will consider sponsoring a new qualified applicant for employment authorization for this position. The GEICO Pledge outlines Great Company, Great Culture, Great Rewards and Great Careers. EOE and benefits
The GEICO equal employment opportunity policy provides fair and equal employment opportunities for all associates and job applicants in compliance with applicable laws. GEICO reasonably accommodates qualified individuals with disabilities. We promote a respectful, inclusive work environment.
#J-18808-Ljbffr